hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-19 18:33:16 +01:00
Code Issues Packages Projects Releases Wiki Activity
84,161 Commits 1,671 Branches 157 Tags
codeql-cli-2.23.6
Commit Graph

13974 Commits

Author SHA1 Message Date
Anders Schack-Mulligen
d9cef5bd48 Java: Add change note for https://github.com/github/codeql/pull/4044 2020-10-29 16:05:43 +01:00
Anders Schack-Mulligen
4677eb649e Java: Add change note for https://github.com/github/codeql/pull/3938 2020-10-29 16:02:34 +01:00
Anders Schack-Mulligen
9dbfc835fe Java: Add change note for https://github.com/github/codeql/pull/3881 2020-10-29 15:54:25 +01:00
Anders Schack-Mulligen
1beb3bdccd Java: Add change note for extensible security queries. 
This covers #3928, #3968, and #4172, among others.
 2020-10-29 15:37:35 +01:00
Anders Schack-Mulligen
e3ba05937f Java: Add change note for https://github.com/github/codeql/pull/3948 2020-10-29 15:30:09 +01:00
Anders Schack-Mulligen
7f9713956f Java: Add change note for https://github.com/github/codeql/pull/4312. 2020-10-29 15:24:28 +01:00
Anders Schack-Mulligen
0d926dcf70 Java: Tweak qhelp to make it markdown-compatible. 2020-10-29 14:39:01 +01:00
luchua-bc
90d11812be Update the regex to be the original one 2020-10-29 13:04:15 +00:00
luchua-bc
b1d6bc5ba9 Use getDeclaringType() for getIntent() method call 2020-10-29 12:55:03 +00:00
luchua-bc
2ee9a45e69 Use proper class inheritance 2020-10-28 22:05:30 +00:00
luchua-bc
908d659906 Minor updates 2020-10-28 20:23:22 +00:00
Alvaro Muñoz
a57308a519 Fix SnakeYaml query to account for Yaml subclasses and compose methods 2020-10-28 14:52:14 +01:00
Alvaro Muñoz
c28856d3dc remove wicket taintstep from TaintTrackingUtil 2020-10-28 14:51:44 +01:00
Anders Schack-Mulligen
f3e2bd0fd9 Merge pull request #3141 from pwntester/InsecureBeanValidation 
Insecure Bean Validation query
 2020-10-28 12:04:12 +01:00
Anders Schack-Mulligen
34ae6e0576 Apply suggestions from code review 
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
 2020-10-28 09:15:08 +01:00
luchua-bc
99c79f4aa3 Enhance the dataflow sink and update test cases 2020-10-28 03:07:01 +00:00
luchua-bc
3cc3fe9d37 Switch to TaintPreservingCallable and add test cases 2020-10-28 00:33:07 +00:00
Alvaro Muñoz
77b551b693 Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp 
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
 2020-10-27 21:12:17 +01:00
Alvaro Muñoz
b9c75ea462 Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp 
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
 2020-10-27 21:12:00 +01:00
Alvaro Muñoz
ac116da0dc Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp 
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
 2020-10-27 21:11:48 +01:00
Alvaro Muñoz
d5b470ea0c Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp 
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
 2020-10-27 21:11:27 +01:00
Alvaro Muñoz
9785013c29 Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp 
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
 2020-10-27 21:11:15 +01:00
Alvaro Muñoz
d221930c81 Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp 
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
 2020-10-27 21:10:56 +01:00
Alvaro Muñoz
a9ea63b976 Update java/change-notes/2020-10-27-insecure-bean-validation.md 
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
 2020-10-27 21:10:46 +01:00
Alvaro Muñoz
1fdf0556d2 more fixes to make qlhelp linter happy 2020-10-27 17:05:00 +01:00
Alvaro Muñoz
aa981caea5 more fixes to make qlhelp linter happy 2020-10-27 16:32:13 +01:00
Alvaro Muñoz
8974f252ac fix format and qlhelp errors blocking the merge 2020-10-27 16:19:39 +01:00
Alvaro Muñoz
11e57bd2f8 add change note for new Insecure Bean Validation query 2020-10-27 16:11:51 +01:00
Alvaro Muñoz
3378dd526e remove compiled classes from stubs 2020-10-27 15:56:26 +01:00
Alvaro Muñoz
99044fc6ab remove experimental query forr bean validation 2020-10-27 15:55:19 +01:00
Alvaro Muñoz
40a2007497 Apply suggestions from code review 
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
 2020-10-27 15:52:25 +01:00
Alvaro Muñoz
8b5aed2fe1 move md links to <a> 2020-10-27 15:52:25 +01:00
Alvaro Muñoz
8904411fe6 address review comments 2020-10-27 15:52:24 +01:00
Alvaro Muñoz
debfc686d1 Insecure Bean Validation query 2020-10-27 15:52:24 +01:00
Alvaro Muñoz
7d7933a054 move query out of experimental 2020-10-27 15:52:20 +01:00
Alvaro Muñoz
d990f7a470 move md links to <a> 2020-10-27 15:51:40 +01:00
Alvaro Muñoz
65d01f5c9e address review comments 2020-10-27 15:51:36 +01:00
Alvaro Muñoz
f85778e9c7 Apply suggestions from code review 
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
6ca28a8bc6 move md links to <a> 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
27bd9044e7 address review comments 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
73fc9fda77 Insecure Bean Validation query 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
a36970f306 Add beanValidation remote source 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
3dcd8acf97 add expected results 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
671ea2f6c6 add test and stubs 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
a274a1516a move source to FlowSources.qll 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
2bab9d22e9 move query out of experimental 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
df4164f2c0 Apply suggestions from code review 
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
c1decf4d0d move md links to <a> 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
0bf3895327 address review comments 2020-10-27 15:47:54 +01:00
Alvaro Muñoz
3b23cd5be3 Insecure Bean Validation query 2020-10-27 15:47:54 +01:00