Jami
|
ea9b0462bf
|
Merge pull request #18793 from jcogs33/jcogs33/java/spring-boot-actuators-promo
Java: Promote Spring Boot Actuators query from experimental
|
2025-03-11 14:42:14 -04:00 |
|
Jami Cogswell
|
41aeb874f1
|
Java: add change note
|
2025-03-10 18:56:13 -04:00 |
|
Jami Cogswell
|
76433a31f7
|
Java: generalize sanitizer and add tests
|
2025-03-10 18:56:01 -04:00 |
|
Jami Cogswell
|
ab3690f666
|
Java: initial sanitizer
|
2025-03-10 18:55:56 -04:00 |
|
REDMOND\brodes
|
32d29ffde3
|
Changed casing on TCipherType, Added some initial fixes for hash support, started developing openssl hashing modeling.
|
2025-03-07 10:02:36 -05:00 |
|
Anders Schack-Mulligen
|
d075466958
|
Merge pull request #18941 from aschackmull/ssa/refactor4
Ssa: Extend consistency checks and reduce phi read nodes
|
2025-03-07 15:18:02 +01:00 |
|
Anders Schack-Mulligen
|
3508ca89e6
|
Java: Restrict SSA reads to the reachable CFG.
|
2025-03-07 11:13:53 +01:00 |
|
REDMOND\brodes
|
b9bd199432
|
Regression fixes for JCA
|
2025-03-06 13:39:23 -05:00 |
|
Anders Schack-Mulligen
|
da579c27fc
|
Merge pull request #18934 from aschackmull/ssa/refactor5
SSA: Replace the Guards interface in the SSA data flow integration.
|
2025-03-06 15:11:52 +01:00 |
|
Lukas Abfalterer
|
b4c75d832c
|
Merge branch 'main' into cwe-925
|
2025-03-05 14:15:07 +01:00 |
|
Anders Schack-Mulligen
|
c6761db2fc
|
SSA: Replace the Guards interface in the SSA data flow integration.
|
2025-03-05 13:29:31 +01:00 |
|
Lukas Abfalterer
|
c9b75afc2a
|
Fix QLL and add change notes with tests
|
2025-03-05 10:23:35 +01:00 |
|
Jami Cogswell
|
746f022cfa
|
Java: add 'Spring' prefix to public class names
|
2025-03-04 10:34:16 -05:00 |
|
Anders Schack-Mulligen
|
9e03b12ba0
|
C#/Java/Ruby/Rust/SSA: Replace DefinitionExt with SourceVariable in data flow integration predicates.
|
2025-03-04 12:24:21 +01:00 |
|
github-actions[bot]
|
58f355ae5a
|
Post-release preparation for codeql-cli-2.20.6
|
2025-03-03 18:18:15 +00:00 |
|
Nicolas Will
|
627790f98b
|
Clean up consumer and instance interfaces
|
2025-03-03 19:06:53 +01:00 |
|
github-actions[bot]
|
fa850cccb1
|
Release preparation for version 2.20.6
|
2025-03-03 17:13:19 +00:00 |
|
Nicolas Will
|
cf33cf7653
|
Add input and output nodes and fix cross product
|
2025-02-28 15:21:46 +01:00 |
|
Chris Smowton
|
79e581f555
|
Change note
|
2025-02-28 11:23:10 +00:00 |
|
Nicolas Will
|
0354afc365
|
Make ArtifactConsumers instances of some Artifacts
TODO: refactor the interfaces
|
2025-02-27 15:54:38 +01:00 |
|
Nicolas Will
|
04f4683399
|
Rewrite handling of known unknowns and data-flow
|
2025-02-27 05:42:02 +01:00 |
|
Alex Eyers-Taylor
|
5e3ccc0cca
|
Java: Simplify interpretOutput
|
2025-02-26 18:20:46 +00:00 |
|
Nicolas Will
|
f55f27b0d9
|
Expand handling of generic artifact sources
|
2025-02-25 18:22:38 +01:00 |
|
Anders Schack-Mulligen
|
994a8eea39
|
Merge pull request #18857 from aschackmull/ssa/refactor-df-integr
Ssa: Refactor the data flow integration module
|
2025-02-25 15:04:11 +01:00 |
|
Anders Schack-Mulligen
|
2c3b48946d
|
Merge pull request #18824 from aschackmull/java/basessa
Java: Switch BaseSSA to use shared SSA lib.
|
2025-02-25 14:23:46 +01:00 |
|
Nicolas Will
|
eb91ecf1fb
|
Add generic artifact data-flow
The relation between RNG and other artifacts has been added
Nonce has been completed to report its source
|
2025-02-25 02:53:13 +01:00 |
|
Owen Mansel-Chan
|
74a249597a
|
Merge pull request #18607 from owen-mc/java/xss-content-type-sanitizer
Java: Add XSS Sanitizer for `HttpServletResponse.setContentType` with safe values
|
2025-02-24 23:39:18 +00:00 |
|
Jami Cogswell
|
6fe7c7a233
|
Java: some refactoring
|
2025-02-24 18:33:29 -05:00 |
|
Jami Cogswell
|
9e51b014d2
|
Java: handle example in Spring docs
|
2025-02-24 18:27:43 -05:00 |
|
Jami Cogswell
|
b2469ff8ba
|
Java: add APIs and tests for more recent Spring versions: authorizeHttpRequests, AuthorizeHttpRequestsConfigurer, securityMatcher(s)
|
2025-02-24 18:26:02 -05:00 |
|
Jami Cogswell
|
8dfb920e05
|
Java: refactor QL, move code to libraries
|
2025-02-24 18:24:48 -05:00 |
|
Jami Cogswell
|
8064e8f1f9
|
Java: convert tests to inline expectations
|
2025-02-24 18:24:26 -05:00 |
|
Nicolas Will
|
2b0b927b0b
|
Add Nonce association to Operation, update graph
|
2025-02-24 17:37:41 +01:00 |
|
Anders Schack-Mulligen
|
db7ec4a781
|
Java: Remove getDefinitionExt reference
|
2025-02-24 13:50:08 +01:00 |
|
REDMOND\brodes
|
86cab46b8d
|
Misc. updates to support all JCA cipher operations, including wrap, unwrap and doFinal calls. Corrected pathing for init tracing to detect what mode is being set along a path. Added support for tracing the init operation mode argument to source. Since this involved creating an Operation Mode, changes were also made to make cipher block modes (CBC) more explicit (previously just called mode, but now that term is used for various purposes).
|
2025-02-21 12:53:35 -05:00 |
|
Anders Schack-Mulligen
|
6932e000c6
|
Java: Switch BaseSSA to use shared SSA lib.
|
2025-02-21 08:57:23 +01:00 |
|
Anders Schack-Mulligen
|
1c616d10d4
|
Merge pull request #18819 from aschackmull/ssa/refactor-phiread3
Ssa: Refactor shared SSA in preparation for eliminating phi-read definitions
|
2025-02-21 08:56:38 +01:00 |
|
REDMOND\brodes
|
9ac9252f75
|
Adding a todo
|
2025-02-20 11:11:41 -05:00 |
|
REDMOND\brodes
|
011ed3fbfd
|
Simplifying additional flow step logic.
|
2025-02-20 11:10:24 -05:00 |
|
REDMOND\brodes
|
9ee4a7a7b8
|
Adding a sketch for a CipherOperation concept to model encryption/decryption operations.
|
2025-02-20 10:37:40 -05:00 |
|
Anders Schack-Mulligen
|
5379506464
|
Java: Use firstUse and adjacentUseUse predicates.
|
2025-02-19 16:17:22 +01:00 |
|
REDMOND\brodes
|
3871c6a33e
|
Adding support for encryption operation detection.
|
2025-02-18 16:09:00 -05:00 |
|
Nicolas Will
|
8707e4d9a3
|
Continue Artifact data-flow WIP
|
2025-02-18 18:35:49 +01:00 |
|
Anders Schack-Mulligen
|
194afbb7f8
|
Java: Simplify SSA for variable capture.
|
2025-02-18 14:01:20 +01:00 |
|
Jami
|
d94dc5aa40
|
Merge pull request #18504 from jcogs33/jcogs33/java/file-constructor-path-sanitizer
Java: `File` constructor path sanitizer
|
2025-02-18 08:00:32 -05:00 |
|
Jami Cogswell
|
9bb5fe837d
|
Java: address review comments
|
2025-02-17 15:47:45 -05:00 |
|
github-actions[bot]
|
ad24f94a77
|
Post-release preparation for codeql-cli-2.20.5
|
2025-02-17 17:58:24 +00:00 |
|
github-actions[bot]
|
6f4562f3bd
|
Release preparation for version 2.20.5
|
2025-02-17 16:55:54 +00:00 |
|
Nicolas Will
|
df01fa7a9c
|
Expand model and JCA modeling
|
2025-02-17 00:16:08 +01:00 |
|
Nicolas Will
|
b777a22d35
|
Expand model and specialize newtype relations
|
2025-02-14 23:43:07 +01:00 |
|