codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00

Author	SHA1	Message	Date
Nora Dimitrijević	c77875d834	Java: convert TemplateInjection test to .qlref	2025-06-24 16:41:56 +02:00
Nora Dimitrijević	b8c7bd29c3	Java: convert SpelInjection test to .qlref	2025-06-24 16:41:54 +02:00
Nora Dimitrijević	2a837b208b	Java: convert MvelInjection test to .qlref	2025-06-24 16:41:52 +02:00
Nora Dimitrijević	1b61cb660a	Java: convert JexlInjection test to .qlref	2025-06-24 16:41:50 +02:00
Nora Dimitrijević	1cc91e964d	Java: convert GroovyInjection test to .qlref	2025-06-24 16:41:48 +02:00
Nora Dimitrijević	8e53da285f	Java: convert XSS test to .qlref	2025-06-24 16:41:46 +02:00
Nora Dimitrijević	199eabdd20	Java: convert XsltInjection test to .qlref Also, split off into separate directory from JndiInjectionTest because their $Alerts were interfering with each other.	2025-06-24 16:41:43 +02:00
Nora Dimitrijević	3f9e0fee81	Java: convert JndiInjection test to .qlref	2025-06-24 16:41:41 +02:00
Nora Dimitrijević	e1ddce8456	Java: convert PartialPathTraversalFromRemote test to .qlref	2025-06-24 16:41:39 +02:00
Nora Dimitrijević	588efe4b2b	Java: Convert TaintedPath test to .qlref	2025-06-24 16:41:35 +02:00
Tamas Vajk	60e726bdf2	Java: Add `java/javautilconcurrentscheduledthreadpoolexecutor` query for zero thread pool size	2025-06-23 12:52:45 +02:00
Owen Mansel-Chan	79453cc103	Add test showing correct usage	2025-05-22 14:30:32 +01:00
Jami	4483a24133	Merge pull request #19075 from jcogs33/jcogs33/java/do-not-use-finalizers Java: Add new quality query to detect `finalize` calls	2025-04-22 14:11:14 -04:00
Jami	72d49f21ee	Merge branch 'main' into jcogs33/java/do-not-use-finalizers	2025-04-21 09:57:53 -04:00
Jami	02ded89d84	Merge branch 'main' into jcogs33/java/junit5-missing-nested-annotation	2025-04-21 09:46:49 -04:00
Owen Mansel-Chan	e1c5517de7	Keep COMPLIANT and NON_COMPLIANT comments in test	2025-04-10 12:21:05 +01:00
Owen Mansel-Chan	04ec1d7830	Update test expectations	2025-04-10 12:21:03 +01:00
Owen Mansel-Chan	042fe07494	Adjust alert message	2025-04-10 11:47:19 +01:00
Owen Mansel-Chan	b5b252b10f	Convert test to inline expectations	2025-04-10 11:47:15 +01:00
Owen Mansel-Chan	041adcd63a	Java: Add initial version of string replaceAll with no regex query	2025-04-10 11:46:59 +01:00
Jami Cogswell	e621f9fd49	Java: update comments in tests	2025-04-01 15:48:52 -04:00
Chris Smowton	3c555fce11	Add basic test for SQL injection vs Jakarta Persistence	2025-04-01 17:13:23 +01:00
Jami	e458aca806	Merge branch 'main' into jcogs33/java/junit5-missing-nested-annotation	2025-03-27 21:31:09 -04:00
Jami Cogswell	ed22a16f32	Java: exclude overloads of finalize	2025-03-27 19:35:46 -04:00
Jami Cogswell	f73eda0c38	Java: add previous-id and change 'use' to 'call'	2025-03-27 19:35:44 -04:00
Jami Cogswell	c689a0e9b7	Java: add more test cases	2025-03-27 19:35:37 -04:00
Jami Cogswell	d9482ae334	Java: update tests to use inline expectations	2025-03-27 19:35:35 -04:00
Jami Cogswell	9a6e241f54	Java: update to only find 'finalize' calls and add 'super.finalize' exclusion	2025-03-27 19:35:34 -04:00
Jami Cogswell	56ea9b6523	Java: move original files	2025-03-27 19:35:32 -04:00
Tamás Vajk	b21968c495	Merge pull request #18947 from tamasvajk/tamasvajk/java_empty_method Java: Add new quality query to detect empty methods	2025-03-26 09:33:47 +01:00
Jami Cogswell	0f002624d6	Java: remove mention of abstract classes from qhelp	2025-03-23 19:51:37 -04:00
Jami Cogswell	35b647839c	Java: include RepeatedTest, ParameterizedTest, TestFactory, and TestTemplate when identifying JUnit 5 test methods	2025-03-23 19:49:55 -04:00
Jami Cogswell	4d7bed6181	Java: exclude anonymous, local, and private classes	2025-03-23 19:49:53 -04:00
Jami Cogswell	3e13f0ed41	Java: remove redundant 'non-static' wording and update qhelp	2025-03-23 19:49:41 -04:00
Jami Cogswell	ed57bc7858	Java: exclude abstract classes	2025-03-23 19:48:18 -04:00
Jami Cogswell	b08c8d020d	Java: tests to inline expectations	2025-03-23 19:48:17 -04:00
Jami Cogswell	ccbe77eb09	Java: move original files	2025-03-23 19:48:13 -04:00
Nick Rolfe	361fbba39b	Java: fix comma splice in alert message	2025-03-21 14:23:32 +00:00
mc	1f76793863	Merge branch 'main' into tamasvajk/java_empty_method	2025-03-21 10:01:10 +00:00
Tamas Vajk	9bdec217e4	Clean test files and add new test cases	2025-03-20 09:32:27 +01:00
Tamas Vajk	d4955a0747	Fix failing test and add new test case	2025-03-14 13:07:56 +01:00
Owen Mansel-Chan	5c7588822d	Fix test output	2025-03-14 11:44:00 +00:00
Tamas Vajk	2538ba82cc	Revert message	2025-03-14 11:36:13 +01:00
Tamas Vajk	17aa3fc428	Add compliant/non-compliant comments back to the test file	2025-03-14 11:36:11 +01:00
Tamas Vajk	3d4fcefe70	Do not accept empty `default` methods	2025-03-14 11:36:09 +01:00
Tamas Vajk	6512ed9429	Adjust alert message	2025-03-14 11:36:07 +01:00
Tamas Vajk	349f48982a	Make query more accepting	2025-03-14 11:36:06 +01:00
Tamas Vajk	4bf26afca0	Add more test cases	2025-03-14 11:36:05 +01:00
Tamas Vajk	614bee9e20	Use inline test expectations	2025-03-14 11:36:04 +01:00
Tamas Vajk	f7f8b47f12	Java: Add initial version of empty method query	2025-03-14 11:36:03 +01:00

1 2 3 4 5 ...

1224 Commits