Michael Nebel
fbc4f0b84f
C#: Increase attempts to reach nuget.org in integration tests to reduce flakiness.
2025-09-10 09:03:11 +02:00
Asger F
d575d3c9e4
Merge pull request #20374 from asgerf/js/typescript-5.9
...
JS: Support TypeScript 5.9 and support 'import defer' syntax
2025-09-09 20:50:04 +02:00
Jeroen Ketema
174f89fbcb
Merge pull request #20384 from jketema/swift-6.1.3
...
Swift: Update to Swift 6.1.3
2025-09-09 17:06:12 +02:00
Tom Hvitved
125cc91ba6
Merge pull request #20358 from hvitved/shared/type-inference-generalize
...
Shared: Make some generalizations in type inference library
2025-09-09 16:08:30 +02:00
Tom Hvitved
e3e1bcd63f
Rename Environment -> AccessEnvironment
2025-09-09 15:06:56 +02:00
Tom Hvitved
2e90499df4
Rename State -> Environment
2025-09-09 15:05:58 +02:00
Tom Hvitved
a1980ee23c
Shared: Make some generalizations in type inference library
2025-09-09 15:05:56 +02:00
Simon Friis Vindum
b34fa7abc0
Merge pull request #20393 from paldepind/rust/impl-to-string
...
Rust: Improve `toString` for `impl`
2025-09-09 14:16:01 +02:00
Simon Friis Vindum
f7c74664fa
Rust: Improve a few toString implementations
2025-09-09 13:46:51 +02:00
Mathias Vorreiter Pedersen
417e79c3c0
Merge pull request #20382 from MathiasVP/simplify-ssl-result-not-checked
...
C++: Simplify `cpp/certificate-not-checked`
2025-09-09 12:23:39 +01:00
Mathias Vorreiter Pedersen
3aee4a88aa
Shared: Cache the sourceBoundedFastTC structure instead of the resulting materialized relation.
2025-09-09 12:22:37 +01:00
Mathias Vorreiter Pedersen
fd7d216fe3
Shared: Replace explicit recursion with a HOP.
2025-09-09 12:22:36 +01:00
Michael B. Gale
4b9d102f46
Merge pull request #20389 from github/dependabot/go_modules/go/extractor/extractor-dependencies-ee4a90dc36
...
Bump golang.org/x/mod from 0.27.0 to 0.28.0 in /go/extractor in the extractor-dependencies group
2025-09-09 11:12:31 +01:00
Michael Nebel
a0f8b5829a
C#: Update integration tests expected output.
2025-09-09 12:04:21 +02:00
Michael Nebel
30b93d18b7
C#: Update global.json files for most integration tests to se .NET SDK 9.0.304.
2025-09-09 12:04:19 +02:00
Paolo Tranquilli
51052c74bb
Bazel: patch rules_dotnet to avoid unit test failure
2025-09-09 12:04:18 +02:00
Paolo Tranquilli
6ea6f30cc5
Bazel: fix codeql_csharp_binary
...
A `publish` directory for a C# binary contains copies of some DLLs
inside localized subdirectories (e.g. `ru`). We want to ignore those, as
otherwise our packaging machinery now goes haywire, with the newer
version of `rules_csharp`. In any case we never shipped those.
2025-09-09 12:04:16 +02:00
Michael Nebel
91f9247c2b
C#: Update extractor to use .NET Runtime 9.0.5 and .NET SDK 9.0.300.
2025-09-09 12:04:15 +02:00
Simon Friis Vindum
4f9d8271a2
Rust: Add change node for request forgery query
2025-09-09 10:38:01 +02:00
Simon Friis Vindum
387d08a1b3
Rust: Update query suite expected files
2025-09-09 10:37:59 +02:00
Simon Friis Vindum
1c922f0f45
Rust: Add request forgery query qhelp
2025-09-09 10:37:58 +02:00
Simon Friis Vindum
e1047dc40b
Rust: Add request forgery query
2025-09-09 10:37:57 +02:00
Simon Friis Vindum
63a2c9da76
Rust: Add request forgery tests
2025-09-09 10:37:56 +02:00
Jeroen Ketema
c4633c7e23
Swift: Update LFS
2025-09-09 10:12:43 +02:00
Simon Friis Vindum
aa9d299230
Merge pull request #20348 from paldepind/rust/certain-shorthand-self
...
Rust: Infer certain type for shorthand `self`
2025-09-09 09:40:18 +02:00
Asger F
d8e943ea05
Update javascript/ql/lib/semmle/javascript/frameworks/React.qll
...
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
2025-09-09 08:36:25 +02:00
dependabot[bot]
f104205538
Bump golang.org/x/mod
...
Bumps the extractor-dependencies group in /go/extractor with 1 update: [golang.org/x/mod](https://github.com/golang/mod ).
Updates `golang.org/x/mod` from 0.27.0 to 0.28.0
- [Commits](https://github.com/golang/mod/compare/v0.27.0...v0.28.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/mod
dependency-version: 0.28.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: extractor-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-09-09 03:08:18 +00:00
Asger F
0752dbea9b
Merge pull request #20360 from asgerf/js/remove-angularjs-string-special-case
...
JS: Remove special treatment of strings in AngularJS code
2025-09-08 22:48:23 +02:00
Asger F
b5045b3407
Merge pull request #20363 from asgerf/js/remove-fallback-type
...
JS: Remove unused getFallbackTypeAnnotation()
2025-09-08 22:48:07 +02:00
Jon Janego
d51361cd35
Merge pull request #20387 from github/changedocs-2.23.0
...
Changedocs 2.23.0
2025-09-08 13:24:26 -05:00
Jon Janego
2505272af7
Changedocs for 2.23.0 - updating 2.22.4 golang note
2025-09-08 13:07:20 -05:00
Jon Janego
2d84f8a739
Changedocs for 2.23.0
2025-09-08 13:01:03 -05:00
Mathias Vorreiter Pedersen
702d6d80c4
Update cpp/ql/lib/semmle/code/cpp/controlflow/IRGuards.qll
...
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
2025-09-08 16:19:33 +01:00
Idriss Riouak
dc247e03e0
Merge pull request #20383 from aschackmull/java/fix-more-broken-perf
...
Java: Fix more broken performance.
2025-09-08 14:49:43 +02:00
Michael Nebel
84df8f91a9
Merge pull request #20366 from michaelnebel/csharp/improvedatabasequalitydiagnostics
...
C#/Java/Rust: Improve database quality diagnostics query.
2025-09-08 14:43:57 +02:00
Jeroen Ketema
40c8c3a526
Swift: Update to Swift 6.1.3
2025-09-08 14:42:53 +02:00
Anders Schack-Mulligen
4c1fa58367
Java: Fix more broken performance.
2025-09-08 14:12:00 +02:00
Mathias Vorreiter Pedersen
a81989d2d8
C++: Simplify the 'SSLResultNotChecked' query.
2025-09-08 12:28:28 +01:00
Mathias Vorreiter Pedersen
9f47996448
C++: Lift a few more predicates to expression guards.
2025-09-08 12:28:18 +01:00
idrissrio
728a4aff22
Java: Add model for thenExpand and accept new results
2025-09-08 13:17:53 +02:00
idrissrio
3aba4d3e1e
Java: Add test showing missing model for thenExpand
2025-09-08 13:17:52 +02:00
idrissrio
55ff71b760
Java: Address review comment. Fix dataflow model
2025-09-08 13:17:51 +02:00
idrissrio
89e080cd99
Java: Add new change note
2025-09-08 13:17:50 +02:00
idrissrio
311690cffe
Java: accept new test results
2025-09-08 13:17:49 +02:00
idrissrio
f52a427295
Java: Add MaDs for java.crypto.KDF
2025-09-08 13:17:48 +02:00
idrissrio
16fbe8d96f
Java: add dataflow test for newly added KDF API
2025-09-08 13:17:46 +02:00
Simon Friis Vindum
eea11dbf5f
Rust: Relabel reqwest sinks as request-url
2025-09-08 13:05:58 +02:00
idrissrio
666678a582
Java: Address review comment. Inline dataflow annotation
2025-09-08 12:55:20 +02:00
idrissrio
117c41bd55
Java: Address review comment. Fix dataflow model
2025-09-08 12:55:19 +02:00
idrissrio
2f4c728bb9
Java: Add new change note
2025-09-08 12:55:17 +02:00
