7095 Commits

Author	SHA1	Message	Date
github-actions[bot]	33542f7d40	Release preparation for version 2.23.3	2025-10-14 09:30:24 +00:00
Mathias Vorreiter Pedersen	b0e9238ddf	Merge branch 'main' into use-shared-guards-library	2025-10-01 11:59:17 +01:00
github-actions[bot]	a7a4e43991	Post-release preparation for codeql-cli-2.23.2	2025-09-29 15:10:19 +00:00
github-actions[bot]	d2130a589b	Release preparation for version 2.23.2	2025-09-29 10:28:45 +00:00
Mathias Vorreiter Pedersen	d8f34dba17	C++: Do not use the deprecated predicate in queries.	2025-09-18 12:16:23 +01:00
Mathias Vorreiter Pedersen	5e82eb9b24	C++: Fixup queries which assumes that a guard is always an expression.	2025-09-18 12:16:21 +01:00
github-actions[bot]	4e8343664f	Post-release preparation for codeql-cli-2.23.1	2025-09-17 10:13:40 +00:00
github-actions[bot]	02a1b1efcb	Release preparation for version 2.23.1	2025-09-16 14:14:42 +00:00
Mathias Vorreiter Pedersen	a4c845c418	C++: Fix barrier in 'cpp/unbounded-write'.	2025-09-15 16:34:05 +01:00
Ian Lynagh	050a9e155f	C++: Add changenote for changes to some queries ... Queries affected: cpp/wrong-type-format-argument cpp/comparison-with-wider-type cpp/integer-multiplication-cast-to-long cpp/implicit-function-declaration cpp/suspicious-add-sizeof	2025-09-11 15:56:41 +01:00
Ian Lynagh	b3f4c68a1d	C++: Remove the BMN filter from some queries, but reduce precision to medium ... Remove the `not any(Compilation c).buildModeNone() and` clause from: cpp/wrong-type-format-argument cpp/comparison-with-wider-type cpp/integer-multiplication-cast-to-long cpp/implicit-function-declaration cpp/suspicious-add-sizeof but reduce their precision to `medium`.	2025-09-11 13:32:11 +01:00
Mathias Vorreiter Pedersen	72d7223fd0	C++: Small drive by cleanup. Delete unnecessary nested 'exists'.	2025-09-10 12:35:59 +01:00
Mathias Vorreiter Pedersen	d097946e1f	C++: No need for this additional case.	2025-09-10 12:35:24 +01:00
Mathias Vorreiter Pedersen	a81989d2d8	C++: Simplify the 'SSLResultNotChecked' query.	2025-09-08 12:28:28 +01:00
Michael Nebel	61e8ad264f	C++: Address review comments.	2025-09-04 12:52:46 +02:00
Michael Nebel	83d53baf82	C++: Fix some Ql4Ql violations.	2025-09-03 08:19:18 +02:00
github-actions[bot]	e8a2600a0c	Post-release preparation for codeql-cli-2.23.0	2025-09-02 11:46:23 +00:00
github-actions[bot]	0bfa93828b	Release preparation for version 2.23.0	2025-09-02 11:09:32 +00:00
Jeroen Ketema	75786e9a71	C++: Revert changes to cpp/constant-array-overflow ... It is not clear that this does what we want here, and the query is severly broken in any case.	2025-08-26 10:43:54 +02:00
Jeroen Ketema	a104600d4d	Merge branch 'main' into cpp/use-flow-state-inout-barriers	2025-08-25 17:04:30 +02:00
Chris Smowton	1829060fab	Merge remote-tracking branch 'origin/main' into smowton/admin/merge-rc319-into-main	2025-08-21 16:33:37 +01:00
Kristen Newbury	854a5b5871	Add changenotes customizations addition	2025-08-20 13:18:17 -04:00
github-actions[bot]	42e3d31c49	Post-release preparation for codeql-cli-2.22.4	2025-08-18 14:42:42 +00:00
github-actions[bot]	90d29994c8	Release preparation for version 2.22.4	2025-08-18 14:06:09 +00:00
Ian Lynagh	fd020b52e4	Merge pull request #20232 from igfoo/igfoo/SloppyGlobal ... C++: SloppyGlobal: Don't alert on template instantiations, only the template	2025-08-18 11:39:30 +01:00
Ian Lynagh	0870cc370b	C++: Add a changenote for the change to cpp/short-global-name	2025-08-15 12:09:37 +01:00
Ian Lynagh	4b786061d6	C++: SloppyGlobal: Don't alert on template instantiations, only the template	2025-08-15 11:23:48 +01:00
Nora Dimitrijević	89788206d1	[DIFF-INFORMED] C++: TypeConfusion	2025-08-15 12:01:30 +02:00
Nora Dimitrijević	5b9e37cd8f	[DIFF-INFORMED] C++: TaintedCondition	2025-08-15 12:01:28 +02:00
Nora Dimitrijević	0c636dd400	[DIFF-INFORMED] C++: UnsafeDaclSecurityDescriptor	2025-08-15 12:01:25 +02:00
Nora Dimitrijević	194d9a9f44	[DIFF-INFORMED] C++: UnsafeCreateProcessCall	2025-08-15 12:01:23 +02:00
Nora Dimitrijević	39b430aa7e	[DIFF-INFORMED] C++: IteratorToExpiredContainer	2025-08-15 12:01:21 +02:00
Nora Dimitrijević	ec85e55069	[DIFF-INFORMED] C++: InsufficientKeySize	2025-08-15 12:01:19 +02:00
Nora Dimitrijević	c0c96eaf5b	[DIFF-INFORMED] C++: UseOfHttp	2025-08-15 12:01:17 +02:00
Nora Dimitrijević	8560868e95	[DIFF-INFORMED] C++: CleartextSqliteDatabase	2025-08-15 12:01:15 +02:00
Nora Dimitrijević	05df2f2216	[DIFF-INFORMED] C++: CWE-311/Cleartext…	2025-08-15 12:01:13 +02:00
Nora Dimitrijević	21914030e8	[DIFF-INFORMED] C++: SSLResultConflation (has secondary config but passes test)	2025-08-15 12:01:11 +02:00
Nora Dimitrijević	87016f399c	[DIFF-INFORMED] C++: AuthenticationBypass	2025-08-15 12:01:09 +02:00
Nora Dimitrijević	861a768b2c	[DIFF-INFORMED] C++: CWE-190/ArithmeticTainted,etc.	2025-08-15 12:01:07 +02:00
Nora Dimitrijević	62fa7301c3	[DIFF-INFORMED] C++: ImproperNullTerminationTainted	2025-08-15 12:01:05 +02:00
Nora Dimitrijević	f3098e7695	[DIFF-INFORMED] C++: UnboundedWrite	2025-08-15 12:01:03 +02:00
Nora Dimitrijević	7df09f369f	[DIFF-INFORMED] C++: SqlTainted	2025-08-15 12:01:01 +02:00
Nora Dimitrijević	36d43a4830	[DIFF-INFORMED] C++: CgiXss	2025-08-15 12:00:59 +02:00
Nora Dimitrijević	80da00b599	[DIFF-INFORMED] C++: ExecTainted	2025-08-15 12:00:57 +02:00
Nora Dimitrijević	a77cab6981	[DIFF-INFORMED] C++: TaintedPath	2025-08-15 12:00:54 +02:00
Nora Dimitrijević	91b9c3e647	[DIFF-INFORMED] C++: LeapYear ... https://github.com/d10c/codeql/blob/d10c/diff-informed-phase-3/cpp/ql/src/Likely%20Bugs/Leap%20Year/UncheckedLeapYearAfterYearModification.ql#L57 https://github.com/d10c/codeql/blob/d10c/diff-informed-phase-3/cpp/ql/src/Likely%20Bugs/Leap%20Year/Adding365DaysPerYear.ql#L21	2025-08-15 12:00:52 +02:00
Nora Dimitrijević	2f56baace2	[DIFF-INFORMED] C++: NonConstantFormat	2025-08-15 12:00:50 +02:00
Nora Dimitrijević	e382cb5696	[DIFF-INFORMED] C++: DecompressionBombs	2025-08-15 12:00:48 +02:00
Nora Dimitrijević	fabdf9923c	[DIFF-INFORMED] C++: ConstantSizeArrayOffByOne	2025-08-15 12:00:46 +02:00
Nora Dimitrijević	448a1ea87a	[DIFF-INFORMED] C++: OverflowDestination	2025-08-15 12:00:39 +02:00