716 Commits

Author	SHA1	Message	Date
Owen Mansel-Chan	e10333bf2b	Merge pull request #14919 from github/java/jdk-model-autogeneration ... Java: add dataflow-generated models for JDK17	2024-04-04 21:12:55 +01:00
github-actions[bot]	ec97d9a304	Release preparation for version 2.17.0	2024-04-01 13:46:57 +00:00
Owen Mansel-Chan	fdafaa2ff4	Change note: update numbers of models added	2024-04-01 14:04:01 +01:00
Owen Mansel-Chan	e3fb40a842	Adjust change note	2024-04-01 14:03:53 +01:00
Owen Mansel-Chan	a5979e209a	Add change note	2024-04-01 14:03:47 +01:00
Jami Cogswell	e90f55a05f	Java: move change note to lib	2024-03-27 20:56:19 -04:00
Tony Torralba	d786ea90a4	Java: Add more neutrals ... Adds more neutral models to help the model generator ignore certain callables. Also improves the precision of certain URL models by using synthetic fields so that the parts of a URL are tainted separately.	2024-03-26 17:31:11 +01:00
Henry Mercer	0646744928	Merge branch 'main' into henrymercer/merge-back-rc-3.13	2024-03-26 12:59:12 +00:00
github-actions[bot]	71ab804274	Release preparation for version 2.16.6	2024-03-25 16:58:08 +00:00
Chris Smowton	bc0724e2b3	Add change note	2024-03-25 16:31:37 +00:00
Ian Lynagh	1b3605754f	Java: Add a changenote for dropping ODASA_SNAPSHOT support	2024-03-21 13:38:54 +00:00
Dave Bartolomeo	311ba8ea1b	Merge from main to resolve conflicts	2024-03-19 10:41:31 -04:00
github-actions[bot]	0a6243d07b	Release preparation for version 2.16.5	2024-03-18 10:14:07 +00:00
Ed Minnix	76aeee2820	Change note	2024-03-11 10:34:15 -04:00
github-actions[bot]	2f058ffb4d	Release preparation for version 2.16.4	2024-03-06 20:56:51 +00:00
Angela P Wen	ce31f8641a	Revert "Release preparation for version 2.16.4"	2024-03-06 12:07:33 -08:00
github-actions[bot]	661e68dab5	Release preparation for version 2.16.4	2024-03-05 18:13:58 +00:00
Angela P Wen	967963a653	Revert "Release preparation for version 2.16.4"	2024-03-05 08:53:33 -08:00
github-actions[bot]	a67218a027	Release preparation for version 2.16.4	2024-03-04 17:42:08 +00:00
Chris Smowton	051d63a5a9	Merge pull request #15740 from smowton/smowton/feature/call-and-type-telemetry ... Java: add extraction quality telemetry; improve stringification of some erroneous expressions	2024-02-29 16:51:51 +00:00
Tony Torralba	47bf556223	Merge pull request #15709 from atorralba/atorralba/java/enable-widget-taint-steps ... Java: Re-enable Widget.qll flow steps	2024-02-29 17:33:05 +01:00
Chris Smowton	ef82ea7541	Add change note	2024-02-29 14:59:46 +00:00
Chris Smowton	aedd3badf7	Add change note for https://github.com/github/codeql/pull/15646	2024-02-27 15:41:43 +00:00
Tony Torralba	759b74791c	Java: Re-enable Widget.qll flow steps ... The library Widget.qll was accidentally removed from the global context when its sources were migrated to models-as-data in #13136. This re-adds it so that its flow steps are enabled again.	2024-02-23 13:07:35 +01:00
github-actions[bot]	6d061fbc35	Release preparation for version 2.16.3	2024-02-20 14:26:23 +00:00
Tony Torralba	cf7091ae5f	Merge branch 'main' into atorralba/java/open-redirect-sanitizer	2024-02-12 10:31:52 +01:00
Max Schaefer	93990ec9df	Merge pull request #15486 from github/java/update-mad-decls-after-triage-2024-01-31T11-16-45 ... Java: Update MaD Declarations after Triage	2024-02-09 11:18:17 +00:00
Tony Torralba	4c0d535cc2	Merge pull request #12886 from atorralba/atorralba/java/path-injection-mad-sinks ... Java: Refactor path injection sinks	2024-02-09 10:48:49 +01:00
Tony Torralba	34f74869c8	Java: Add extension point and default sanitizer to Open Redirect query	2024-02-09 09:11:07 +01:00
Max Schaefer	082754a3d8	Remove problematic Kotlin model.	2024-02-07 13:21:59 +00:00
Max Schaefer	705a377060	Address review comments.	2024-02-06 12:54:29 +00:00
github-actions[bot]	c1b35fbf47	Release preparation for version 2.16.2	2024-02-05 17:58:57 +00:00
Max Schaefer	6c6f402fa5	Merge branch 'main' into java/update-mad-decls-after-triage-2024-01-31T11-16-45	2024-01-31 11:29:33 +00:00
Max Schaefer	ad8038bade	Update MaD Declarations after Triage	2024-01-31 11:28:10 +00:00
Edward Minnix III	4602f8933d	Merge pull request #15292 from egregius313/egregius313/java/dataflow/common-sanitizers/uuid-and-date ... Java: Add `java.util.UUID` and `java.util.Date` to the `SimpleTypeSanitizer` class	2024-01-26 13:16:18 -05:00
Tony Torralba	b8cb514dc4	Rename the other change note	2024-01-26 12:46:51 +01:00
Tony Torralba	19cb7adb6d	Migrate path injection sinks to MaD ... Deprecate and stop using PathCreation Path creation sinks are now summaries	2024-01-26 12:19:54 +01:00
Tony Torralba	52d7bd93a5	Merge pull request #15420 from github/java/update-mad-decls-after-triage-2024-01-24T10-05-04 ... Java: Update MaD Declarations after Triage	2024-01-26 08:42:49 +01:00
Stephan Brandauer	4e63cbc993	Merge branch 'main' into java/update-mad-decls-after-triage-2024-01-24T10-05-04	2024-01-24 14:55:20 +01:00
Stephan Brandauer	d5bcbcddab	Update MaD Declarations after Triage	2024-01-24 11:05:07 +01:00
Ed Minnix	ef884fa721	Change note	2024-01-23 22:35:05 -05:00
github-actions[bot]	7ef611e6dc	Release preparation for version 2.16.1	2024-01-23 19:45:16 +00:00
Edward Minnix III	3c8b09307d	Merge pull request #15291 from egregius313/egregius313/java/dataflow/default-sanitizers ... Java: Introduce a common sanitizer type for types which cannot realistically carry taint.	2024-01-23 13:28:03 -05:00
Erik Krogh Kristensen	f1d6f56621	Merge pull request #15393 from erik-krogh/deps-jan-2024 ... All: delete outdated deprecations	2024-01-23 13:52:38 +01:00
Tony Torralba	fcd9a5ed71	Update java/ql/lib/change-notes/2023-12-21-new-models.md	2024-01-23 11:18:12 +01:00
Stephan Brandauer	95b439bf31	Merge branch 'main' into java/update-mad-decls-after-triage-2023-12-21T14-39-02	2024-01-23 09:40:50 +01:00
Ed Minnix	fcbee1994b	Update change note	2024-01-22 23:57:31 -05:00
Ed Minnix	ec3d683186	Change change note category to feature	2024-01-22 23:39:23 -05:00
Ed Minnix	38828672a9	Update change note	2024-01-22 23:38:33 -05:00
Ed Minnix	32fe8e02fb	Change note	2024-01-22 23:38:31 -05:00