codeql

mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Author	SHA1	Message	Date
Ben Rodes	e823d80f0c	Merge branch 'main' into java_nonce_reuse_tests	2025-10-02 13:31:40 -04:00
Nicolas Will	4901cdf929	Crypto: Refactor and change casts to `super`	2025-10-02 18:43:38 +02:00
$REDMOND\brodes$ REDMOND\brodes	9673b81677	Crypto: Update JCA 'wihHmac" raw name to be the entire raw string, not just "Hmac"	2025-10-02 11:49:23 -04:00
$REDMOND\brodes$ REDMOND\brodes	704a06e1fa	Crypto: Update JCA PBKDF2 modeling: 1) add further inheritance structures to make the inheritance decomposition and caveats clearer, and 2) use getConsumer to establish the hash and hmac consumer. Update the Model to expect hash node types specifically for HMAC getHashALgorithmOrUnknown.	2025-10-02 11:45:13 -04:00
$REDMOND\brodes$ REDMOND\brodes	850c1ec12d	Crypto: Fix use of a member where a singleton set literal exists	2025-10-02 09:20:40 -04:00
$REDMOND\brodes$ REDMOND\brodes	b08533b322	Crypto: Fix missing output variable	2025-10-02 09:10:50 -04:00
$REDMOND\brodes$ REDMOND\brodes	c37b7c1389	Merge branch 'signature_model_refactor' of https://github.com/bdrodes/codeql into signature_model_refactor	2025-10-02 09:05:09 -04:00
$REDMOND\brodes$ REDMOND\brodes	38421cec94	Crypto: Missing casing fix for JCA classes	2025-10-02 09:04:23 -04:00
Ben Rodes	d251b3f9f7	Merge branch 'main' into signature_model_refactor	2025-10-02 09:02:34 -04:00
$REDMOND\brodes$ REDMOND\brodes	329a7dee1c	Crypto: Fixing JCA class naming casing for PBKDF2 classes.	2025-10-02 09:02:17 -04:00
$REDMOND\brodes$ REDMOND\brodes	d49efefefa	Crypto: Fix for non-monotonic recursion in JCA	2025-10-01 14:36:26 -04:00
Mark C	f38ab45e94	removed all @security.severity ratings to keep the main impartial	2025-10-01 17:49:45 +01:00
$REDMOND\brodes$ REDMOND\brodes	92dac0341c	Crypto: Adding necessary model interfaces for MacOperationCall in JCA.	2025-10-01 11:13:37 -04:00
Mark C	c5cf0ffa75	added java cryptographic check queries	2025-10-01 11:55:51 +01:00
Chris Smowton	f88daff45f	Java: note that classes with entirely private constructors can't be subclassed	2025-09-30 13:57:44 +01:00
Idriss Riouak	fa8cbeeb44	Merge pull request #20546 from github/idrissrio/ql-constant Java: Fix false positives in evaluation-to-constant query for ErrorType	2025-09-30 14:24:28 +02:00
idrissrio	63771110a5	Java: Address review comment	2025-09-30 11:46:37 +02:00
Nick Rolfe	9688d84f3e	Merge pull request #20549 from github/post-release-prep/codeql-cli-2.23.2 Post-release preparation for codeql-cli-2.23.2	2025-09-30 09:45:22 +01:00
github-actions[bot]	a7a4e43991	Post-release preparation for codeql-cli-2.23.2	2025-09-29 15:10:19 +00:00
idrissrio	b82d8c2252	Java: Accept new test results after query change	2025-09-29 13:38:01 +02:00
idrissrio	659afb5f30	Java: Fix false positives in evaluation-to-constant query for ErrorType	2025-09-29 13:37:25 +02:00
idrissrio	e0444c531b	Java: Add integration test for constant expr detection	2025-09-29 13:37:20 +02:00
Kasper Svendsen	b52fff2f81	Merge pull request #20505 from kaspersv/kaspersv/future-proof-java-discarding2 Overlay: Discard Java config and XML base entities in overlay extracted files	2025-09-29 13:01:08 +02:00
github-actions[bot]	d2130a589b	Release preparation for version 2.23.2	2025-09-29 10:28:45 +00:00
Kasper Svendsen	f02da68c55	Overlay: Discard base XML entities in overlay extracted files	2025-09-23 12:27:51 +02:00
Kasper Svendsen	718c0abdb6	Overlay: Discard base config entities in overlay extracted files	2025-09-23 12:27:51 +02:00
Simon Friis Vindum	7d6e2060e5	Adapt all languages to changes in shared library	2025-09-22 14:18:58 +02:00
Kasper Svendsen	97d62950a8	Merge pull request #20484 from kaspersv/kaspersv/future-proof-java-discarding Overlay: Future-proof Java config & XML discard predicates	2025-09-22 08:16:44 +02:00
Alexander Eyers-Taylor	c1c0828082	Merge pull request #20378 from github/alexet/java-regex-local Jave: Use force local to make parsing local after global regex finding.	2025-09-19 13:48:43 +01:00
Alexander Eyers-Taylor	27e2c4d580	Merge pull request #20459 from github/alexet/caller_tc Java: Make a TC overlay caller.	2025-09-19 13:48:34 +01:00
Kasper Svendsen	dbb9a26f78	Overlay: Future-proof Java XML discarding	2025-09-18 11:37:38 +02:00
Kasper Svendsen	3cd737e40d	Overlay: Future-proof Java config discarding	2025-09-18 10:57:22 +02:00
Alex Eyers-Taylor	34b40a14e8	Java: Make a TC overlay caller.	2025-09-17 16:22:22 +01:00
Ian Lynagh	c653d939d9	Merge pull request #20451 from github/post-release-prep/codeql-cli-2.23.1 Post-release preparation for codeql-cli-2.23.1	2025-09-17 13:00:14 +01:00
Michael Nebel	7589d0a18a	Merge pull request #20394 from michaelnebel/java/code-quality-extended Java: Add most `medium` precision queries to the `code-quality-extended` suite.	2025-09-17 13:46:24 +02:00
github-actions[bot]	4e8343664f	Post-release preparation for codeql-cli-2.23.1	2025-09-17 10:13:40 +00:00
Alex Eyers-Taylor	2201974844	Jave: Use force local to make parsing local after global regex finding.	2025-09-16 15:55:04 +01:00
github-actions[bot]	02a1b1efcb	Release preparation for version 2.23.1	2025-09-16 14:14:42 +00:00
Anders Schack-Mulligen	b308c5438f	Java: Add a change note, and a minor ql comment.	2025-09-15 10:14:26 +02:00
Anders Schack-Mulligen	e302616135	Java: Accept qltest change.	2025-09-12 15:41:18 +02:00
Anders Schack-Mulligen	f9ffee010f	Java: Minor nullness cleanup.	2025-09-12 15:41:17 +02:00
Anders Schack-Mulligen	e8f1ec68db	Java: Accept guards test results.	2025-09-12 15:41:17 +02:00
Anders Schack-Mulligen	60d07cf30d	Java: Clean up IntegerGuards.qll	2025-09-12 15:41:16 +02:00
Anders Schack-Mulligen	03321ff910	Java: Replace nullness implementation.	2025-09-12 15:41:16 +02:00
Anders Schack-Mulligen	4a8ffea0f6	Shared: Add control flow reachability lib.	2025-09-12 15:41:15 +02:00
Anders Schack-Mulligen	452bbf7289	Java: Add some more nullness tests.	2025-09-12 13:38:21 +02:00
Anders Schack-Mulligen	924a8eac5c	Java: Improve precision of SuccessorType labels in CFG.	2025-09-12 13:38:21 +02:00
Anders Schack-Mulligen	db1f399067	Java: Preparatory Nullness refactor.	2025-09-12 13:38:20 +02:00
Anders Schack-Mulligen	e8ddac08b7	Merge pull request #20377 from aschackmull/java/preconditions Java: Consolidate Assertions.qll and Preconditions.qll.	2025-09-12 13:37:41 +02:00
Alexander Eyers-Taylor	e9fcd985f9	Merge pull request #20357 from github/alexet/java-global-virtual-dispatch Java: Make Virtual Dispatch Global, but keep SSA local.	2025-09-12 12:20:46 +01:00

... 3 4 5 6 7 ...

13974 Commits