hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 10:46:30 +01:00
Code Issues Packages Projects Releases Wiki Activity
84,161 Commits 1,672 Branches 157 Tags
codeql-cli-2.23.6
Commit Graph

84161 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tom Hvitved
5550da4870 Address review comments (ii) 2025-10-21 20:53:39 +02:00
Tom Hvitved
41602d3efa Address review comments 2025-10-21 18:44:42 +02:00
Tom Hvitved
c2ba4ba3fc Rust: Add change note 2025-10-21 18:44:41 +02:00
Tom Hvitved
ee0467d74c Rust: Update expected output 2025-10-21 18:44:37 +02:00
Tom Hvitved
2f2c6866c4 Rust: Use doublyBoundedFastTC in TraitIsVisible 2025-10-21 17:58:54 +02:00
Tom Hvitved
4b70d20cd6 Rust: Rework call resolution and type inference for calls 2025-10-21 17:58:52 +02:00
Tom Hvitved
e12e9045a3 Rust: Add more type inference tests 2025-10-21 17:58:51 +02:00
Owen Mansel-Chan
c8c1c6e592 Address review comments 2025-10-21 16:54:28 +01:00
REDMOND\brodes
b374ba3d0c Crypto: Updating java 'location' information to be just a location's toString to be more verbose/precise. 2025-10-21 11:48:37 -04:00
Paolo Tranquilli
6d31c6abe0 Merge branch 'main' into redsun82/fix-pytest-build-as-test-windows 2025-10-21 17:04:57 +02:00
REDMOND\brodes
ddeb42cddb Crypto: Adding false positive to BadMacUse.java, we have no way to avoid this FP currently but should note it exists in the test case. 2025-10-21 11:04:57 -04:00
Paolo Tranquilli
a0d2005e1f Merge pull request #20655 from github/redsun82/rust-file-semantics-predicates 
Rust: introduce `ExtractedFile::hasSemantics` and `::isSkippedByCompilation`
 2025-10-21 17:02:28 +02:00
REDMOND\brodes
c50175bc9b Crypto: ql-for-ql alert fixes. 2025-10-21 10:32:00 -04:00
Geoffrey White
edabfa73bf Rust: Delete a no-longer-used test file. 2025-10-21 15:30:32 +01:00
Simon Friis Vindum
f207404b0d C++: Accept test changes 2025-10-21 16:03:12 +02:00
Geoffrey White
7da00b3e9d Rust: Change note. 2025-10-21 13:33:17 +01:00
Geoffrey White
751d62aefb Rust: Add the metric to rust/diagnostic/database-quality (with a very low threshold for the time being). 2025-10-21 13:29:46 +01:00
Geoffrey White
a4aa397ea0 Merge pull request #20634 from geoffw0/mysql2 
Rust: Model mysql and mysql_async sources
 2025-10-21 13:23:03 +01:00
yoff
9e77e5b046 java: add test with deeper paths 
also format test files
 2025-10-21 14:02:36 +02:00
yoff
f183a7223f java: add test for notFullyMonitored 2025-10-21 13:40:29 +02:00
yoff
f4878b3806 java: make as many predicates private as possible 2025-10-21 13:25:26 +02:00
yoff
de05bfbce3 java: address review comments 
- do not use `getQualifiedName`
- use camelCase
- rework alert predicates
 2025-10-21 13:25:26 +02:00
Michael Nebel
def522d122 C#: Make sure that the file exists before attempting to get version info. 2025-10-21 13:12:21 +02:00
Michael Nebel
af5622a60e C#: Address review comments. 2025-10-21 13:03:53 +02:00
Geoffrey White
d691c3215f Rust: Add expressions with unknown type metric (expected by DCA). 2025-10-21 12:00:25 +01:00
yoff
715acefacc Apply suggestions from code review 
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
 2025-10-21 12:52:59 +02:00
Anders Schack-Mulligen
414e5ecbce Merge pull request #20646 from aschackmull/ssa/ssa-sig 
SSA: Add a shared signature for SSA and a module to implement it.
 2025-10-21 12:14:08 +02:00
Paolo Tranquilli
316225bb88 Csharp: rename predicate 2025-10-21 11:47:54 +02:00
Paolo Tranquilli
6f8b1f6f4c Csharp: address review 2025-10-21 11:43:58 +02:00
Michael Nebel
6bc15bcedc C#: Add change-note. 2025-10-21 11:42:19 +02:00
Michael Nebel
e560ac197f C#: Tracer support for invoking csc directly. 2025-10-21 11:16:55 +02:00
Paolo Tranquilli
c728503517 Merge branch 'main' into redsun82/csharp-fix-xframe-options-in-location 2025-10-21 11:15:46 +02:00
Anders Schack-Mulligen
242f12d4be SSA: Remove variable capture reference from shared class. 2025-10-21 10:52:49 +02:00
Simon Friis Vindum
0badcfd663 C++: Address review comments 2025-10-21 09:47:58 +02:00
REDMOND\brodes
22c0f9fa91 Crypto: Adding a proof of concept bad mac ordering predicate that takes in an ArtifactNode to be used for graph generation to intercept nodes with known mac ordering issues, in order to format the node and output error messages in the graph. 2025-10-20 16:24:31 -04:00
REDMOND\brodes
eff94ef91f Crypto: To allow for graph generation to have properties informed by assessments, altering a few queries weak/vuln/bad crypto to have qll files that can be accessed for other purposes, like graph generation. Also altering weak symmetric cipher to look for non-aes algorithms to be more comprehensive. 2025-10-20 15:51:07 -04:00
REDMOND\brodes
cc436e897d Merge branch 'santander-java-crypto-check' of https://github.com/bdrodes/codeql into santander-java-crypto-check 2025-10-20 15:24:40 -04:00
REDMOND\brodes
354effe829 Crypto: Missing hash algorithms for HMAC operations in jca. 2025-10-20 15:24:18 -04:00
Taus
9efa20dfc7 Merge pull request #20654 from github/tausbn/add-query-history-patcher 
Misc: Add script for patching the query history
 2025-10-20 17:46:39 +02:00
Florin Coada
2c31090cf6 Update codeql-cli-2.23.3.rst 2025-10-20 14:20:17 +01:00
Florin Coada
aeee30b0c6 Add changelog entry for CodeQL CLI version 2.23.3 2025-10-20 14:17:40 +01:00
Geoffrey White
e4e7b1c528 Merge branch 'main' into mysql2 2025-10-20 14:06:48 +01:00
Anders Schack-Mulligen
be626bf0ce SSA: Address some review comments. 2025-10-20 14:02:56 +02:00
Geoffrey White
1047c3e014 Merge pull request #20652 from geoffw0/gen1 
Rust: Generalize some models
 2025-10-20 12:37:53 +01:00
Asger F
d7cf5ef645 Merge pull request #20647 from asgerf/js/type-resolution-cache 
JS: Avoid magic and improve a join in type resolution
 2025-10-20 11:50:23 +02:00
Geoffrey White
7b32cd4868 Merge pull request #20649 from geoffw0/mv1 
Rust: Move rust/weak-sensitive-data-hashing
 2025-10-20 10:17:40 +01:00
Tom Hvitved
85abcddd0e Merge pull request #20614 from hvitved/dataflow/debug-predicates 
Data flow: Add various debug predicates
 2025-10-20 11:01:41 +02:00
Michael B. Gale
4441303623 Merge pull request #20625 from github/mbg/csharp/proxy-log-messages 2025-10-20 10:00:58 +01:00
Tom Hvitved
f71cfac40a Data flow: Add various debug predicates 2025-10-20 09:59:40 +02:00
Ben Rodes
2b683c210f Merge branch 'main' into santander-java-crypto-check 2025-10-18 17:56:43 -04:00