hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 02:44:30 +01:00
Code Issues Packages Projects Releases Wiki Activity
82,246 Commits 1,672 Branches 157 Tags
codeql-cli-2.23.0
Commit Graph

11726 Commits

Author SHA1 Message Date
Asger F
eb543c1ceb JS: Remove experimental warning from type tracking 2019-08-02 16:30:44 +01:00
Anders Schack-Mulligen
59fb59d109 JavaScript: Autoformat cookbook examples. 2019-08-02 15:33:40 +02:00
Max Schaefer
3daa974255 JavaScript: Rename a test. 
The old test name would cause a compiler warning, which we don't want to include in the expected output.
 2019-08-02 14:05:57 +01:00
semmle-qlci
34cdf7c96b Merge pull request #1677 from xiemaisi/js/flow-summary-fixes 
Approved by esben-semmle
 2019-08-02 14:02:47 +01:00
semmle-qlci
635a8edacc Merge pull request #1676 from xiemaisi/js/more-tests-classification 
Approved by esben-semmle
 2019-08-02 14:02:24 +01:00
Max Schaefer
e06ed503ec JavaScript: Make flow summaries work for non-taint configurations. 
With flow labels it often makes more sense to use a `DataFlow::Configuration` rather than a `TaintTracking::Configuration`, so flow summaries should support both.
 2019-08-02 11:45:41 +01:00
Max Schaefer
97c0c97b28 JavaScript: Classify __mocks__ and __tests_ as tests. 
These are conventions used by jest: https://jestjs.io/docs/en/manual-mocks#mocking-user-modules.
 2019-08-02 11:15:02 +01:00
semmle-qlci
07b97dcc07 Merge pull request #1672 from asger-semmle/flowlabel-issers 
Approved by xiemaisi
 2019-08-02 10:05:41 +01:00
semmle-qlci
bb4f00d770 Merge pull request #1015 from esben-semmle/js/cli-cli 
Approved by xiemaisi
 2019-08-02 09:57:19 +01:00
Asger F
e09c22e67d JS: Add FlowLabel.isData() and .isTaint() 2019-08-01 15:22:51 +01:00
Esben Sparre Andreasen
90862fea99 JS: whitelist trivial throwers in js/superfluous-trailing-arguments 2019-08-01 11:49:43 +02:00
semmle-qlci
691df0508e Merge pull request #1652 from xiemaisi/js/deprecate-isBarrier/2 
Approved by asger-semmle
 2019-08-01 09:47:04 +01:00
Max Schaefer
4141a98616 JavaScript: Replace Custom* with *::Range. 
The old names are kept as deprecated aliases.
 2019-08-01 09:45:44 +01:00
semmle-qlci
1d806971ed Merge pull request #1634 from aibaars/cookbook 
Approved by aschackmull, dave-bartolomeo, hvitved, markshannon, xiemaisi, yh-semmle
 2019-07-31 14:31:28 +01:00
Max Schaefer
967a5788b2 JavaScript: Address review comments. 2019-07-31 10:24:33 +01:00
semmle-qlci
0e64c84f7e Merge pull request #1656 from asger-semmle/rephrase-useless-def 
Approved by xiemaisi
 2019-07-31 09:55:38 +01:00
Esben Sparre Andreasen
bf4a324a86 JS: add query js/indirect-command-line-injection 2019-07-31 09:24:25 +02:00
Asger F
7a27ccdaf3 JS: Move a comment 2019-07-31 08:19:26 +01:00
Asger F
ea563f8b97 JS: Rephrase dead store of local at declaration site 2019-07-30 18:02:27 +01:00
Asger F
378b0bfb74 JS: Do not treat the empty string as a credential 2019-07-30 17:29:12 +01:00
Max Schaefer
3e6629d007 JavaScript: Deprecate multi-argument isBarrier and isSanitizer predicates. 
We informally deprecated them in 1.21, this commit deprecates them properly and removes support from the implementation. The predicates themselves will be removed in a future release.
 2019-07-30 16:32:08 +01:00
Max Schaefer
7b3c835bc6 JavaScript: Fix semantic merge conflict. 
https://github.com/Semmle/ql/pull/1621 vs https://github.com/Semmle/ql/pull/1613
 2019-07-30 12:34:30 +01:00
semmle-qlci
0f9a286284 Merge pull request #1621 from asger-semmle/no-recursive-import 
Approved by xiemaisi
 2019-07-30 11:25:11 +01:00
semmle-qlci
d63e53f3a4 Merge pull request #1628 from asger-semmle/self-globalobj 
Approved by xiemaisi
 2019-07-30 11:23:54 +01:00
Max Schaefer
d3016593e4 JavaScript: Remove extra backslashes in MissingRegExpAnchor.qhelp. 2019-07-29 15:23:09 +01:00
semmle-qlci
3dfc697585 Merge pull request #1642 from xiemaisi/json_locations 
Approved by asger-semmle
 2019-07-29 14:55:33 +01:00
semmle-qlci
904c94ec9e Merge pull request #1644 from xiemaisi/js/more-examples 
Approved by asger-semmle
 2019-07-29 14:36:20 +01:00
Max Schaefer
d282ba04ae JavaScript: Add concrete syntax examples to JSDoc, RegExp, Tokens, Variables and XML. 2019-07-29 12:17:25 +01:00
Max Schaefer
fcf35dc3c2 JavaScript: Add configuration-file snippet to dbscheme. 2019-07-29 10:46:56 +01:00
Arthur Baars
b3c403a142 Update javascript example queries 2019-07-26 17:47:11 +02:00
Arthur Baars
89906e610a Use js/examples instead of js/cookbook in @id 2019-07-26 17:47:11 +02:00
Arthur Baars
ccde7cf6cf Add @id to example queries 2019-07-26 17:47:11 +02:00
Arthur Baars
bdce7d07c1 Move 'snippet' queries to 'snippets' folders 2019-07-26 17:47:11 +02:00
Arthur Baars
30860daac4 Add cookbook queries 2019-07-26 17:47:11 +02:00
semmle-qlci
143016ed96 Merge pull request #1635 from xiemaisi/js/dont-taint-for-in 
Approved by asger-semmle
 2019-07-26 08:32:14 +01:00
Max Schaefer
2e760bf5b5 JavaScript: Add upgrade script. 2019-07-25 16:52:44 +01:00
Max Schaefer
31b4d8dfb0 JavaScript: Update TRAP test outputs. 2019-07-25 16:52:44 +01:00
Max Schaefer
9a00f4d0f0 JavaScript: store YAML locations in yaml_locations table instead of hasLocation. 2019-07-25 16:52:44 +01:00
Max Schaefer
37cb4e4023 JavaScript: Add upgrade script. 2019-07-25 16:52:44 +01:00
Max Schaefer
79a7a8c6a7 JavaScript: Update TRAP test outputs. 2019-07-25 16:52:44 +01:00
Max Schaefer
6b3abbbde5 JavaScript: Store JSON locations in json_locations table instead of hasLocation. 2019-07-25 16:52:44 +01:00
Max Schaefer
2df41c43e2 JavaScript: Make name of hasLocation relation in location manager configurable. 2019-07-25 16:52:44 +01:00
semmle-qlci
137427fc40 Merge pull request #1613 from asger-semmle/canonical-name-defs 
Approved by xiemaisi
 2019-07-24 18:51:08 +01:00
Asger F
6f158182d1 JS: Add self as global object alias 2019-07-24 17:10:59 +01:00
Max Schaefer
97e8b5fa99 JavaScript: Address review comments. 2019-07-24 15:32:13 +01:00
semmle-qlci
2a292c7dee Merge pull request #1626 from xiemaisi/js/more-examples 
Approved by asger-semmle
 2019-07-24 14:15:04 +01:00
Max Schaefer
74397daeb8 JavaScript: Add concrete syntax examples to ES2015Modules, Externs, JSON, YAML. 2019-07-24 11:56:11 +01:00
semmle-qlci
29e49ae9b2 Merge pull request #1620 from asger-semmle/hardcoded-creds-import 
Approved by xiemaisi
 2019-07-24 09:57:12 +01:00
Asger F
ff8529d3ec JS: Address comments 2019-07-23 17:14:56 +01:00
Asger F
1c3ce09607 JS: Downgrade the contract for getImmediatePredecessor 2019-07-23 17:14:56 +01:00