codeql

mirror of https://github.com/github/codeql.git synced 2025-12-19 18:33:16 +01:00

Author	SHA1	Message	Date
Ed Minnix	2d6cdff14b	Add period to alert message	2023-03-08 12:12:10 -05:00
Ed Minnix	0ec4df28f5	Add query metadata	2023-03-08 12:12:10 -05:00
Ed Minnix	3f589722c2	Refactor query to change returned source	2023-03-08 12:12:10 -05:00
Ed Minnix	618b608962	Arbitrary APK Installation MVP	2023-03-08 12:12:10 -05:00
Anders Schack-Mulligen	2288eab0fd	Java: Refactor BrokenCryptoAlgorithm, MaybeBrokenCryptoAlgorithm	2023-03-07 13:53:36 +01:00
Anders Schack-Mulligen	50935899fa	Java: Refactor XSS.ql	2023-03-07 13:33:00 +01:00
Anders Schack-Mulligen	d839b4038e	Java: Refactor TaintedPath.ql	2023-03-07 11:53:03 +01:00
Anders Schack-Mulligen	cc75a1a97e	Java: Refactor RequestForgery.ql	2023-03-07 11:39:03 +01:00
Anders Schack-Mulligen	35beadc3bb	Java: Refactor SensitiveInfoLog.ql	2023-03-07 11:31:49 +01:00
Anders Schack-Mulligen	4408482699	Java: Refactor NumericCastTainted, NumericCastTaintedLocal	2023-03-07 10:42:00 +01:00
Anders Schack-Mulligen	d4e6e77200	Java: Refactor StackTraceExposure, XSS.qll	2023-03-07 10:38:00 +01:00
Anders Schack-Mulligen	c4cf2febfb	Java: Refactor ResponseSplitting, ResponseSplittingLocal	2023-03-07 10:37:45 +01:00
github-actions[bot]	af61b45785	Post-release preparation for codeql-cli-2.12.4	2023-03-04 14:16:55 +00:00
github-actions[bot]	462da63970	Release preparation for version 2.12.4	2023-03-03 14:11:51 +00:00
Tony Torralba	59bd1e5ab1	Merge pull request #12228 from github/java/mad-decls-triage-request-2276 Java: Update MaD sink decls after triage	2023-03-01 17:08:38 +01:00
Ed Minnix	ed1aac1aa5	Remove unneeded example file	2023-02-27 12:16:14 +01:00
Ed Minnix	6de946ef00	Remove experimental files	2023-02-27 12:16:14 +01:00
Ed Minnix	d71386e001	Add example file for documentation	2023-02-27 12:16:14 +01:00
Michael Nebel	cf659f9a5e	Merge pull request #12261 from michaelnebel/csharpjava/refactorissupported C#/Java: Re-factor the `isSupported` predicate.	2023-02-23 10:06:11 +01:00
Michael Nebel	47c69d924b	C#: Update comment on the isSupported predicate.	2023-02-22 09:05:28 +01:00
Joe Farebrother	1fb27354b9	Merge pull request #12242 from joefarebrother/testgen-improvements Java: Test generator fixes	2023-02-20 13:53:18 +00:00
Michael Nebel	86888b894a	Java: Re-factor isSupported for the telemetry queries.	2023-02-20 13:53:18 +01:00
Michael Nebel	813ffa440c	Java: Consider ai-generated flow summaries to as generated summaries in dataflow.	2023-02-20 12:11:48 +01:00
Jami	f72cb5f650	Merge pull request #12215 from jcogs33/jcogs33/move-awt-swing-from-isJdkInternal Java: move java.awt and javax.swing from `isJdkInternal` to `isInfrequentlyUsed`	2023-02-17 15:48:39 -05:00
Joe Farebrother	a9f1436930	Test generator fixes - Revert previous change to constructor return values; as constructors are supposed to be modeled using Argument[-1] rather than ReturnValue - Fix generation of ambiguous calls when one of the conflicting methods is overridden	2023-02-17 15:30:06 +00:00
Nick Rolfe	3e5534f0ba	Merge branch 'main' into post-release-prep/codeql-cli-2.12.3	2023-02-17 14:39:26 +00:00
github-actions[bot]	8eb8daa4d4	Post-release preparation for codeql-cli-2.12.3	2023-02-16 17:23:25 +00:00
Jami Cogswell	94fd412809	Java: move awt and swing to isInfrequentlyUsed predicate	2023-02-16 09:02:41 -05:00
github-actions[bot]	b0315119c6	Release preparation for version 2.12.3	2023-02-16 11:49:06 +00:00
Joe Farebrother	430b432add	Merge pull request #12195 from joefarebrother/testgen-improvements Java: Test generator improvements	2023-02-16 11:20:55 +00:00
Joe Farebrother	d9e5c6c48a	Fix typo	2023-02-15 17:21:03 +00:00
Joe Farebrother	95a131d0d3	Update help text	2023-02-15 16:18:47 +00:00
Joe Farebrother	8ee36a5278	Test generator improvements - Accept yml files as input - Output the correct type for constructors	2023-02-15 16:11:22 +00:00
Chris Smowton	7f76d8ae55	Replace redundant use of `Class or Interface`	2023-02-14 17:21:24 +00:00
Chris Smowton	82a2f4349a	Resolve a newly-introduced ambiguity Also fix a simple redundancy noticed while debugging	2023-02-14 17:21:24 +00:00
Jami	029e1d47fe	Merge pull request #12081 from jcogs33/jcogs33/update-some-Files-sinks Java: update `createTempDirectory` and `copy` "create-file" sinks	2023-02-14 10:53:17 -05:00
Joe Farebrother	f68083872d	Merge pull request #12174 from joefarebrother/stubgen-name-conflicts Java: Stub generator: Use fully qualified names to avoid conflicts	2023-02-14 10:10:24 +00:00
Tony Torralba	935e22d10d	Merge pull request #12139 from atorralba/atorralba/java/xxe-local-query Java: Add local version of the XXE query	2023-02-14 09:54:36 +01:00
Joe Farebrother	0b722bfe30	Stub generator: Use fully qualified names to avoid conflicts	2023-02-13 17:09:32 +00:00
Michael Nebel	80628596dd	Java: Exclude interface members from model generation.	2023-02-13 10:21:32 +01:00
Tony Torralba	4fad01a739	Further refactoring Avoid having two taint tracking configurations in the same file	2023-02-13 09:18:05 +01:00
Tony Torralba	422eb0d1bb	Add change note	2023-02-13 09:18:05 +01:00
Tony Torralba	5555b5cd19	Add local version of the XXE query	2023-02-13 09:18:05 +01:00
Jami Cogswell	ce1c814daa	Java: update path-injection query to use new 'read-file' sink kind	2023-02-11 17:10:58 -05:00
Michael Nebel	02364d072e	Java: Fix bad join in TestLibrary characteristic predicate.	2023-02-08 11:59:59 +01:00
Michael Nebel	f8dbbe006e	C#/Java: Materialize sink/source/summary predicates to avoid join on input/output before filtering.	2023-02-08 10:04:43 +01:00
Anders Schack-Mulligen	3c580896dc	Merge pull request #11712 from aschackmull/java/constant-guards Java: Apply deadcode guard to data flow nodes.	2023-02-07 09:14:20 +01:00
Anders Schack-Mulligen	b4607d3fab	Java: Add change notes.	2023-02-06 13:55:34 +01:00
Anders Schack-Mulligen	2d6d8aaa74	Java: Account for additional constants in ArrayIndexOutOfBounds query.	2023-02-03 16:16:39 +01:00
github-actions[bot]	faf21f3edb	Post-release preparation for codeql-cli-2.12.2	2023-02-02 23:01:04 +00:00

... 26 27 28 29 30 ...

5747 Commits