codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00

Author	SHA1	Message	Date
Esben Sparre Andreasen	3692667af2	JS: improve inter-procedural type inference for "local functions"	2018-08-21 22:07:11 +02:00
semmle-qlci	6969466202	Merge pull request #83 from esben-semmle/js/bitwise-indexof-sanitizer Approved by xiemaisi	2018-08-21 14:17:20 +01:00
Esben Sparre Andreasen	be8a32bb18	JS: add sanitizer support for `~whitelist.indexOf(x)`	2018-08-20 20:32:57 +02:00
semmle-qlci	0adeef73ff	Merge pull request #74 from xiemaisi/js/multi-step-export-from Approved by asger-semmle	2018-08-20 12:36:26 +01:00
Max Schaefer	b2e304951e	Merge branch 'master' into ts-typescript2.9	2018-08-20 08:14:58 +01:00
Max Schaefer	a9f1e21363	JavaScript: Fix exported name of default re-exports. A default re-export (not part of the standard yet) looks like this: ``` export f from 'mod'; ``` What this means is that the default export of `mod` is re-exported under the name `f`. Default re-export specifiers (like `f` in this example) are modelled as a kind of default export specifier in our library, but unlike normal default export specifiers they do not export the name `default`. This was previously not modelled correctly, leading to surprising errors down the line, for example in type inference where we suddenly would no longer be able to resolve an import that otherwise looked resolvable.	2018-08-20 08:02:15 +01:00
semmle-qlci	44e4b25f42	Merge pull request #14 from rdmarsh2/rdmarsh/js/electron-http-client Approved by xiemaisi	2018-08-20 07:59:25 +01:00
Esben Sparre Andreasen	804c06bd59	JS: add models of logging frameworks	2018-08-20 08:27:42 +02:00
Robert Marsh	4da9d6d795	JavaScript: add support for Electron http client	2018-08-17 10:16:51 -07:00
Asger F	3806e4b1aa	JavaScript: add tests for "import" types	2018-08-17 14:26:32 +01:00
Max Schaefer	886329689f	JavaScript: Teach `globalVarRef` about top-level `this` and the `global` npm package.	2018-08-14 09:15:15 +01:00
Max Schaefer	e67f36732a	JavaScript: Update expected test output due to changes in Node.js detector.	2018-08-13 14:08:14 +01:00
semmle-qlci	c0fe0a1d24	Merge pull request #46 from asger-semmle/html-sanitizers Approved by xiemaisi	2018-08-13 10:16:15 +01:00
Max Schaefer	3ce82aff02	JavaScript: Add basic modelling of React Native `WebView`s.	2018-08-10 15:59:27 +01:00
Asger Feldthaus	2b5684d1b9	JavaScript: Add library for HTML sanitizers	2018-08-10 12:27:39 +01:00
Max Schaefer	355302eac4	Merge pull request #29 from esben-semmle/js/fixup-angularjs-filter-argument-index JS: fix an off-by-one error in the AngularJS expression AST	2018-08-08 14:03:55 +01:00
Max Schaefer	1a5585c83c	Merge pull request #21 from esben-semmle/js/urilibraries-members JS: refactor UriLibraries.qll models to use `DataFlow::moduleMember`	2018-08-08 09:08:04 +01:00
Esben Sparre Andreasen	343b922c29	JS: fix an off-by-one error in the AngularJS expression AST	2018-08-08 09:58:57 +02:00
Esben Sparre Andreasen	3b00b9b8da	JS: refactor UriLibraries.qll models to use `DataFlow::moduleMember`	2018-08-07 12:58:09 +02:00
Max Schaefer	9ba3d80bad	JavaScript: Lift call graph library to data flow graph.	2018-08-06 08:34:06 +01:00
Asger F	156b94e436	JavaScript: Add model of JSON parsers	2018-08-03 15:27:35 +01:00
Pavel Avgustinov	b55526aa58	QL code and tests for C#/C++/JavaScript.	2018-08-02 17:53:23 +01:00

... 40 41 42 43 44

2172 Commits