5752 Commits

Author	SHA1	Message	Date
Jami Cogswell	e266918871	Java: add previous-id	2025-06-29 22:21:06 -04:00
Jami Cogswell	7a2023b863	Java: move original files	2025-06-29 22:13:49 -04:00
Kasper Svendsen	e6ef6a3326	Merge branch 'main' into kaspersv/overlay-java-discarding	2025-06-27 08:28:34 +02:00
Owen Mansel-Chan	9f0f40d6ce	Add "Correct Usage" and "Incorrect Usage" headings	2025-06-26 14:40:49 +01:00
Owen Mansel-Chan	9521994adc	Fix format of markdown query help files	2025-06-26 14:40:07 +01:00
Nicolas Will	652e7ba15b	Merge branch 'main' into codescanning_fixes_cpp	2025-06-26 14:54:36 +02:00
Michael Nebel	145ada53f2	C#/Java/JavaScript: Re-factor query suites to use the new selector.	2025-06-26 14:19:27 +02:00
Tamás Vajk	ae36f94d5e	Merge pull request #19844 from tamasvajk/tamasvajk/threadpoolexecutor ... Java: Add `java/javautilconcurrentscheduledthreadpoolexecutor` query for zero thread pool size	2025-06-26 12:36:09 +02:00
Tamas Vajk	1bd543a8a2	Improve readability of the ID	2025-06-26 11:36:32 +02:00
Tamás Vajk	1e0dd2a935	Apply suggestion from @michaelnebel ... Co-authored-by: Michael Nebel <michaelnebel@github.com>	2025-06-26 11:34:43 +02:00
Anders Schack-Mulligen	5ddddaecdc	Java: Add change note.	2025-06-26 07:17:36 +02:00
Anders Schack-Mulligen	5c0dcd980d	Java: Switch to the shared Guards library.	2025-06-26 07:17:34 +02:00
Anders Schack-Mulligen	cc13193cb6	Java: Replace some references to basicNullGuard.	2025-06-26 07:17:33 +02:00
Nicolas Will	98479ff6c3	Crypto: Update queries to use new type names	2025-06-25 20:34:33 +02:00
github-actions[bot]	6972c7a872	Post-release preparation for codeql-cli-2.22.1	2025-06-24 12:55:14 +00:00
github-actions[bot]	3e074b2425	Release preparation for version 2.22.1	2025-06-24 08:55:31 +00:00
Kasper Svendsen	b6e56f26c7	Java: Add manual overlay annotations	2025-06-24 10:38:05 +02:00
Tamas Vajk	60e726bdf2	Java: Add java/javautilconcurrentscheduledthreadpoolexecutor query for zero thread pool size	2025-06-23 12:52:45 +02:00
Michael Nebel	a17078b6be	Java: Remove java/deprecated-call from the Code Quality suite.	2025-06-23 11:14:02 +02:00
Owen Mansel-Chan	b8a694c9fe	Address review comments	2025-06-18 16:43:40 +01:00
Owen Mansel-Chan	d3eb4f8eb6	Remove query with hard-coded threshold	2025-06-18 16:43:33 +01:00
Owen Mansel-Chan	72a6280482	Add change note	2025-06-18 16:43:30 +01:00
Owen Mansel-Chan	97dceb3a1c	Tag with quality and sub-category	2025-06-18 16:43:29 +01:00
Tamas Vajk	40274dcd69	Add code-quality-extended query suites	2025-06-18 13:10:34 +02:00
Owen Mansel-Chan	538a5af1d1	Merge pull request #19738 from owen-mc/pr/felickz/19530 ... Set CWE-134 from 9.3 to 7.3 CVSS score for memory safe languages (#2)	2025-06-12 10:27:28 +01:00
Chad Bentz	0135cf661f	Attempt to edit swift change notes for CI failure	2025-06-11 21:49:26 +01:00
Ana Scolari	b84f9d6c3c	Update java/ql/src/change-notes/2025-06-10-reduce-precision-for-building-cmdline-with-string-concatenation.md ... Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>	2025-06-11 08:55:45 -07:00
Ana Scolari	f915984b01	Update java/ql/src/change-notes/2025-06-10-reduce-precision-for-building-cmdline-with-string-concatenation.md ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2025-06-11 08:55:34 -07:00
Ana Scolari	510bbac0e4	Create 2025-06-10-reduce-precision-for-building-cmdline-with-string-concatenation.md	2025-06-10 16:17:32 -07:00
Ana Scolari	857b51be58	Update ExecUnescaped.ql - causing FPs with hard coded strings ... This query is generating False positives with hard coded strings declared within the function - issue reported by customer. We had a discussion on code_scanning channel on 6/5/25 and the team agreed upon reducing its precision to Medium.	2025-06-10 16:06:22 -07:00
Lindsay Simpkins	f96a250ffc	fix qhelp files	2025-06-09 18:37:16 -04:00
github-actions[bot]	21463a9653	Post-release preparation for codeql-cli-2.22.0	2025-06-09 18:50:20 +00:00
github-actions[bot]	88ba02edf8	Release preparation for version 2.22.0	2025-06-09 18:14:51 +00:00
Chad Bentz	371a50e6c4	Merge branch 'main' into cwe-134	2025-06-09 11:22:40 -04:00
Chad Bentz	53a6133e6f	Add change-notes for csharp/java/swift	2025-06-06 12:23:59 -04:00
Chad Bentz	77e49f1f90	Merge branch 'main' into cwe-134	2025-06-06 11:16:10 -04:00
github-actions[bot]	d2c6875eac	Post-release preparation for codeql-cli-2.21.4	2025-05-27 18:16:21 +00:00
github-actions[bot]	bfb91e95e3	Release preparation for version 2.21.4	2025-05-27 17:22:05 +00:00
Owen Mansel-Chan	79453cc103	Add test showing correct usage	2025-05-22 14:30:32 +01:00
Anders Schack-Mulligen	00c7bc1e70	Merge pull request #19505 from aschackmull/java/basicblock ... Java: Use the shared BasicBlocks library.	2025-05-21 13:37:19 +02:00
Anders Schack-Mulligen	db01828717	Java: Deprecate redundant basic block predicates.	2025-05-21 09:01:46 +02:00
Anders Schack-Mulligen	f202586f5e	Java: Use the shared BasicBlocks library.	2025-05-21 09:01:45 +02:00
Chad Bentz	8a81aa1762	Set CWE-134 from 9.3 to 7.3 CVSS score for memory safe languages ... - Sync up to score given to javascript/ruby	2025-05-19 14:43:08 -04:00
Michael Nebel	dabeddb62d	Add change-notes.	2025-05-19 09:26:49 +02:00
Michael Nebel	03ecd24469	Lower the precision of a range of harcoded password queries to remove them from query suites.	2025-05-19 09:26:45 +02:00
Mathias Vorreiter Pedersen	e903d76fa0	Merge pull request #19443 from MathiasVP/generate-more-value-preserving-summaries-2 ... Shared: Generate more value-preserving flow summaries	2025-05-14 09:12:28 +01:00
github-actions[bot]	5f9dd75d7d	Post-release preparation for codeql-cli-2.21.3	2025-05-13 21:49:43 +00:00
github-actions[bot]	2de4a01c86	Release preparation for version 2.21.3	2025-05-13 21:14:27 +00:00
Michael Nebel	ee83ca9125	Java: Update model generator implementation and test expected output.	2025-05-13 13:44:42 +01:00
Simon Friis Vindum	4cc9c24940	Merge pull request #19452 from paldepind/shared-model-generator-script ... Shared: Remove the language-specific model generator scripts	2025-05-13 10:17:37 +02:00