codeql

mirror of https://github.com/github/codeql.git synced 2025-12-20 18:56:32 +01:00

Author	SHA1	Message	Date
Asger F	2a194a53af	raw test output	2025-02-28 13:29:39 +01:00
Asger F	f5911c9e5a	JS: Accept raw test output	2025-02-28 13:27:38 +01:00
erik-krogh	37a1727043	fix example in clear-text-logging qhelp to actually be bad	2025-01-27 11:31:28 +01:00
Asger F	f8dc7eb25b	JS: Update output from tests that changed on main	2024-12-19 15:25:47 +01:00
Asger F	1243188825	JS: Update CleartextLogging with fixed FP	2024-10-29 08:32:11 +01:00
Asger F	12e316b99d	JS: Update test output after merging in 'main' - Paths are now relative to the test case, not the qlpack - Paths going through an implicit reads have changed slightly	2024-10-08 10:11:15 +02:00
Asger F	2e2181be2c	JS: Update test output that only affects nodes/edges/subpaths	2024-08-27 11:35:33 +02:00
Asger F	53efb5837b	JS: Update some tests with provenance columns Only includes the changes that purely contain the new provenance columns	2024-06-26 13:51:44 +02:00
Asger F	b8a6f81669	JS: Port CleartextLogging	2023-10-13 13:15:04 +02:00
erik-krogh	23add8a72b	recognize `passcode` as sensitive	2022-11-09 11:30:57 +01:00
erik-krogh	e0bcfe2afb	add failing test	2022-11-09 11:30:31 +01:00
erik-krogh	368f84785b	fix some more style-guide violations in the alert-messages	2022-10-07 11:22:22 +02:00
erik-krogh	24f2e3cc07	update alert-messages of the sensitive data queries to match #10314	2022-09-06 12:25:36 +02:00
erik-krogh	aa56ca37ae	make the alert messages of taint-tracking queries more consistent	2022-09-05 14:04:52 +02:00
Erik Krogh Kristensen	431c995131	add support for the debug library	2021-06-02 23:11:15 +02:00
Asger Feldthaus	7393844699	JS: Update some queries that used data as source	2020-03-18 11:55:13 +00:00
Erik Krogh Kristensen	a59a414e0b	update expected output	2019-11-16 15:20:42 +01:00
Erik Krogh Kristensen	8ff515a58d	address review feedback on MaskingReplacer	2019-11-16 15:20:42 +01:00
Erik Krogh Kristensen	4ec2070e48	remove property reads on process.env as a taint step, and add a barrier for masking replace calls	2019-11-16 15:20:42 +01:00
Erik Krogh Kristensen	92dc759cf9	remove type cast, and fix expected test results	2019-11-16 15:20:42 +01:00
Erik Krogh Kristensen	850278c62f	some changes based on review. And change to only flag unknown reads of process.env	2019-11-16 15:20:42 +01:00
Erik Krogh Kristensen	68c30aaef3	add flowlabels to js/clear-text-logging	2019-11-16 15:20:42 +01:00
Erik Krogh Kristensen	14e4decffa	changes based on review feedback. No flow-labels yet	2019-11-16 15:20:42 +01:00
Erik Krogh Kristensen	297c71a64b	add process.env as source for js/clear-text-logging	2019-11-16 15:20:41 +01:00
Max Schaefer	b42026a90a	JavaScript: Update expected output.	2019-10-29 15:36:24 +00:00
Max Schaefer	dc1d1c2f22	JavaScript: Update expected output.	2019-10-29 15:30:06 +00:00
Esben Sparre Andreasen	b780f82869	JS: sharpen `js/clear-text-logging` (ODASA-7485)	2018-11-22 13:38:43 +01:00
Max Schaefer	9221b62ded	JavaScript: Update expectd test output for security path queries to include `nodes` and `edges` query predicates.	2018-11-14 09:32:31 +00:00
Esben Sparre Andreasen	2b9f5c3fa2	JS: remove check for test-environment in js/clear-text-logging	2018-08-21 22:32:52 +02:00
Esben Sparre Andreasen	3636708d30	JS: extract and expose StringConcatenationTaintStep in TaintTracking	2018-08-21 22:32:52 +02:00
Esben Sparre Andreasen	0c4fb15651	JS: add query js/cleartext-logging	2018-08-20 08:34:16 +02:00

31 Commits