1506 Commits

Author	SHA1	Message	Date
Ed Minnix	bd0137a721	Deprecated direct use of RemoteFlowSource and use ThreatModelFlowSource instead	2024-02-29 12:02:55 -05:00
Michael Nebel	14d046ef18	Merge pull request #15710 from michaelnebel/csharp/refreadonlyparameters ... C# 12: Ref readonly parameters.	2024-02-29 09:59:12 +01:00
Tom Hvitved	297a17975d	Merge pull request #15665 from hvitved/csharp/variable-capture ... C#: Adopt shared variable capture library	2024-02-28 15:13:03 +01:00
Michael Nebel	692d7036a0	C#: Add extractor and QL library support for ref readonly parameters.	2024-02-28 13:44:28 +01:00
Michael Nebel	4bbaf687ad	Merge pull request #15723 from michaelnebel/csharp/experimentalattribute ... C# 12: Experimental attribute.	2024-02-28 13:06:09 +01:00
Michael Nebel	95dc2f71d3	C#: Add ExperimentalAttribute class.	2024-02-28 11:20:43 +01:00
Michael Nebel	e6f4263eff	C#: Do not print compiler generated statements.	2024-02-26 13:51:06 +01:00
Michael Nebel	bf4e3a7d1c	C#: Merge expr_compiler_generated and compiler_generated and add compiler generated statements.	2024-02-26 13:51:06 +01:00
Tom Hvitved	606a8fed0c	Merge pull request #15406 from hvitved/csharp/no-stats-experiment ... C#: Remove all DB stats	2024-02-26 13:40:37 +01:00
Tom Hvitved	5f5bcf686d	Update csharp/ql/lib/semmle/code/csharp/AnnotatedType.qll ... Co-authored-by: Michael Nebel <michaelnebel@github.com>	2024-02-26 11:35:28 +01:00
Tom Hvitved	acd52192d1	C#: Adopt shared variable capture library	2024-02-26 09:53:30 +01:00
Michael Nebel	1a155b3a30	Merge pull request #15667 from michaelnebel/csharp/syntheticconstructorbody ... C#: Add synthetic bodies and inititializers for default constuctors.	2024-02-23 11:14:00 +01:00
Tom Hvitved	ea7d9c97fd	C#: Use separate newtype branch for AssignableDefinitionNode	2024-02-22 21:04:55 +01:00
Michael Nebel	cf9c3d5dd1	C#: Remove un-needed code as we extract synthetic default constructors.	2024-02-22 13:33:29 +01:00
Michael Nebel	f2c849c737	C#: Simplify.	2024-02-22 11:19:34 +01:00
Michael Nebel	2afcc611ce	C#: Fix formatting.	2024-02-22 11:18:00 +01:00
Michael Nebel	21aa025db2	Update csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll ... Co-authored-by: Tom Hvitved <hvitved@github.com>	2024-02-22 10:40:54 +01:00
Michael Nebel	b76a27bba2	C#: Make a store step from explicit parameter nodes on primary constructors to the property of the same name for record types.	2024-02-21 10:57:22 +01:00
Michael Nebel	132b8baa57	C#: Delete summarized callable implementation for record flow and update expected output.	2024-02-21 10:33:19 +01:00
Michael Nebel	e4d41194b4	C#: Include store steps into readonly properties.	2024-02-20 15:55:19 +01:00
Michael Nebel	d83687125c	C#: Add postupdate nodes for all instance parameter accesses - otherwise we get missing post update nodes to to reverseRead in the data flow consistency queries.	2024-02-19 13:04:13 +01:00
Michael Nebel	28d5c11b6f	C#: Synthesize an empty body for primary constructors.	2024-02-19 13:04:13 +01:00
Erik Krogh Kristensen	7c0557269a	Merge pull request #15596 from erik-krogh/url-san ... C#: Add a few more sanitizers to `cs/web/unvalidated-url-redirection`	2024-02-15 12:09:06 +01:00
erik-krogh	a2bd45d0cb	apply suggestions from code review	2024-02-14 13:50:27 +01:00
Tom Hvitved	7c59c7b28c	C#: Update QLdoc	2024-02-13 14:00:26 +01:00
Tom Hvitved	7bdc2c57f0	C#: Simplify primaryConstructorParameterStore	2024-02-13 13:59:14 +01:00
Tom Hvitved	3f43f45437	C#: Assume captured variables are live at exit in SSA construction	2024-02-13 13:59:08 +01:00
Michael Nebel	91bbbe262d	C#: Address more review comments.	2024-02-13 13:15:17 +01:00
erik-krogh	d31bfc06c2	add type requirement to the new Uri sanitizers	2024-02-13 13:13:43 +01:00
erik-krogh	4dae8d0bb4	add host comparisons as a sanitizer for url-redirect	2024-02-13 13:13:43 +01:00
erik-krogh	f4dd3e9aa1	treat relative URLs as safe for url-redirects	2024-02-13 13:13:18 +01:00
erik-krogh	3f8de82ea3	add a sanitizer for List.Contains() in url-redirect	2024-02-13 13:13:06 +01:00
Michael Nebel	69c0f0cb6a	C#: Address review comments.	2024-02-13 11:39:21 +01:00
Tom Hvitved	15cf695188	C#: Fix various bad joins	2024-02-12 19:49:53 +01:00
Michael Nebel	42f4656667	C#: Data flow for primary constructors.	2024-02-12 13:27:39 +01:00
Tom Hvitved	b27b89bff7	Merge pull request #15567 from hvitved/csharp/cache-module ... C#: Actually cache module `Cached`	2024-02-12 09:15:49 +01:00
Tom Hvitved	9634511ac5	Merge pull request #15489 from hvitved/csharp/lambda-field-flow ... C#: Additional tracking of lambdas through fields and properties	2024-02-12 09:14:21 +01:00
Tom Hvitved	9785ce4936	C#: Actually cache module Cached	2024-02-09 12:29:56 +01:00
Anders Schack-Mulligen	b7d4a6926f	Dataflow: Add empty provenance column to PathGraph.	2024-02-09 11:27:30 +01:00
Anders Schack-Mulligen	dfc9c4d079	C#: Simplify, getASuccessor is pruned now.	2024-02-08 10:36:55 +01:00
Tamas Vajk	c2c7826936	C#: Extract dependency restore telemetry data	2024-02-05 13:09:04 +01:00
Michael Nebel	9191acc412	C#: Prevent flow out of non ref fields in ref structs used as arguments.	2024-02-01 15:04:06 +01:00
Michael Nebel	4a89cbe8ea	C#: Add postupdate nodes for arguments of struct type.	2024-02-01 15:04:06 +01:00
Tom Hvitved	bfe4a4bf0b	C#: Additional tracking of lambdas through fields and properties	2024-02-01 11:51:00 +01:00
Tamas Vajk	fddbb1a722	C#: Extract expanded compiler arguments	2024-01-31 08:32:16 +01:00
Michael Nebel	63c06b72b1	C#: Chop dataflow of spread into smaller steps and make sure to only propagate element flow for the spread operator.	2024-01-29 14:34:57 +01:00
Michael Nebel	168f5b5554	C#: Add dataflow support for collection expressions.	2024-01-26 14:18:16 +01:00
Michael Nebel	74cb1ea584	C#: Add QL library expression support for collection expressions.	2024-01-26 11:50:20 +01:00
Michael Nebel	1252d3ee89	C#: Rename CollectionExpr to EnumerableCollectionExpr.	2024-01-25 19:53:51 +01:00
Michael Nebel	2be1ee8b34	Merge pull request #15394 from michaelnebel/csharp/urlredirect-sanitizer ... C#: Add more santizers to the `cs/web/unvalidated-url-redirection` query.	2024-01-24 08:42:05 +01:00