3244 Commits

Author	SHA1	Message	Date
Michael Nebel	dabeddb62d	Add change-notes.	2025-05-19 09:26:49 +02:00
Michael Nebel	530025b7ae	Update integration tests expected output.	2025-05-19 09:26:47 +02:00
Michael Nebel	03ecd24469	Lower the precision of a range of harcoded password queries to remove them from query suites.	2025-05-19 09:26:45 +02:00
Owen Mansel-Chan	8f5a2a9e29	Merge pull request #19484 from owen-mc/go/minor-fix ... Go: Remove redundant code in `IR::ExtractTupleElementInstruction.getResultType()` and expand tests	2025-05-14 13:49:38 +01:00
github-actions[bot]	5f9dd75d7d	Post-release preparation for codeql-cli-2.21.3	2025-05-13 21:49:43 +00:00
github-actions[bot]	2de4a01c86	Release preparation for version 2.21.3	2025-05-13 21:14:27 +00:00
Owen Mansel-Chan	933e01b3d4	Remove redundant code ... The case of a CallExpr is actually covered by the next disjunct. Note that the CallExpr case had a subtle bug: `c.getTarget()` is not defined when we are calling a variable. Better to use `c.getCalleeType()`. But in this case we can just delete the code.	2025-05-13 15:55:20 +01:00
Owen Mansel-Chan	7da1ade835	Add tests for extracting tuples in f(g(...))	2025-05-13 15:54:05 +01:00
Owen Mansel-Chan	b06491125e	Expand test for Extract Tuple Instruction	2025-05-13 15:48:29 +01:00
Owen Mansel-Chan	c933ab4ae2	Apply suggestions from code review ... Co-authored-by: Chris Smowton <smowton@github.com>	2025-05-12 16:24:56 -04:00
Owen Mansel-Chan	a857069345	Merge pull request #19464 from owen-mc/go/fix/extract-recv-alias-type ... Go: fix database inconsistency when receiver has alias type	2025-05-06 15:08:42 -04:00
Owen Mansel-Chan	c781f98bdc	(unrelated tidy up) resolveTypeAlias not needed ... `types.Unalias` already does the same thing	2025-05-06 05:45:06 -04:00
Owen Mansel-Chan	228c45aaf8	Look through aliases when identifying method receivers	2025-05-06 05:45:04 -04:00
dependabot[bot]	824271a84a	Bump golang.org/x/tools ... Bumps the extractor-dependencies group in /go/extractor with 1 update: [golang.org/x/tools](https://github.com/golang/tools). Updates `golang.org/x/tools` from 0.32.0 to 0.33.0 - [Release notes](https://github.com/golang/tools/releases) - [Commits](https://github.com/golang/tools/compare/v0.32.0...v0.33.0) --- updated-dependencies: - dependency-name: golang.org/x/tools dependency-version: 0.33.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: extractor-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2025-05-06 03:58:02 +00:00
Tamás Vajk	cb1c3736fe	Merge pull request #19413 from tamasvajk/quality/query-suite-selector ... Add code quality suite selector and use that in the code quality suites	2025-05-02 08:18:48 +02:00
Owen Mansel-Chan	9ba47eb655	Update query suite inclusion integration tests	2025-05-01 21:51:12 +01:00
Owen Mansel-Chan	bef38a4dce	Add change note	2025-05-01 16:06:32 +01:00
Owen Mansel-Chan	8283d30d94	Avoid deprecated function in qhelp examples in same folder	2025-05-01 16:06:31 +01:00
Owen Mansel-Chan	00cc430ac3	Make examples in qhelp shorter and more realistic	2025-05-01 16:06:29 +01:00
Owen Mansel-Chan	6e3b959f61	Reword qhelp slightly	2025-05-01 16:06:28 +01:00
Owen Mansel-Chan	f8791861c7	Add missing metadata	2025-05-01 16:06:19 +01:00
Owen Mansel-Chan	38dcc1cb84	Fix QLDoc	2025-05-01 15:40:17 +01:00
Owen Mansel-Chan	3b934b8898	Add comment on importance of Function.getACall()	2025-05-01 15:40:15 +01:00
Owen Mansel-Chan	e6c19b0cbd	Modernize tests	2025-05-01 15:40:14 +01:00
Owen Mansel-Chan	cba0bec3c6	Rename files	2025-05-01 15:40:12 +01:00
Owen Mansel-Chan	3cce4ba437	Improve QLDocs	2025-05-01 15:40:10 +01:00
Owen Mansel-Chan	7f007e10c4	Minor refactor - removed unused argument	2025-05-01 15:40:09 +01:00
Owen Mansel-Chan	b90aba291e	Refactor class for unescaped types	2025-05-01 15:40:07 +01:00
Owen Mansel-Chan	cbdbb0310b	Tidy up test (remove duplicated main)	2025-05-01 15:40:06 +01:00
Owen Mansel-Chan	4e5a865337	Manually fix copilot's mistakes and get query working	2025-05-01 15:40:04 +01:00
Owen Mansel-Chan	ce4be6d04c	Refactor to use flow state instead of 3 flow configs (copilot)	2025-05-01 15:40:03 +01:00
Owen Mansel-Chan	ca85f0bf7f	Update query metadata	2025-05-01 15:39:57 +01:00
Owen Mansel-Chan	c2ebdf5266	Change query id to go/html-template-escaping-bypass-xss	2025-05-01 15:39:20 +01:00
Owen Mansel-Chan	1926ffd450	Convert XSS tests to use inline expectations	2025-05-01 15:39:19 +01:00
Owen Mansel-Chan	1530ac123c	Update path in qlref and update test results	2025-05-01 15:39:17 +01:00
Owen Mansel-Chan	5bce70f78c	Move files out of experimental (no changes)	2025-05-01 15:39:15 +01:00
Owen Mansel-Chan	0863c87572	Add change notes	2025-05-01 10:33:24 +01:00
Chuan-kai Lin	5bc962c429	QL tests: run with --check-diff-informed	2025-04-30 10:55:58 -07:00
Owen Mansel-Chan	cf614a596d	Fix cwe tags to include leading zero	2025-04-30 16:43:03 +01:00
Tamas Vajk	2515b06b2a	Use code-quality-selectors in Go suite	2025-04-29 16:22:57 +02:00
github-actions[bot]	2e0699ab2b	Post-release preparation for codeql-cli-2.21.2	2025-04-28 14:03:28 +00:00
github-actions[bot]	625354c46e	Release preparation for version 2.21.2	2025-04-28 10:55:22 +00:00
Michael B. Gale	987af4ce1d	Merge pull request #19248 from github/mbg/go/private-registries ... Go: Support private registries via `GOPROXY`	2025-04-25 16:40:00 +01:00
Michael B. Gale	7592ce47e3	Go: Restore parseRegistryConfigsFail test for the empty string	2025-04-25 15:45:12 +01:00
Michael B. Gale	91a794433a	Go: Change "Unable" to "Failed" for consistency	2025-04-25 15:42:29 +01:00
Michael B. Gale	5172a4d6ec	Go: Remove check from getEnvVars	2025-04-25 15:41:57 +01:00
Michael B. Gale	9cfa451477	Go: Fix/improve comment about environment variable preservation	2025-04-25 15:41:35 +01:00
Tamas Vajk	a4a24470c8	Add query suite inclusion tests for actions, csharp, go, javascript, ruby, rust	2025-04-25 14:06:17 +02:00
Michael B. Gale	e805d1ee90	Merge remote-tracking branch 'origin/main' into mbg/go/private-registries	2025-04-25 12:55:36 +01:00
Michael B. Gale	cafe1efefa	Go: Refactor ApplyProxyEnvVars	2025-04-25 12:30:48 +01:00