87274 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Alvaro Muñoz	fc5a6703b3	Add github.event.sender.login as an Actor source	2024-10-19 17:01:47 +02:00
Alvaro Muñoz	e03ba55812	Account for checkout path on Untrusted Checkout Critical	2024-10-19 17:01:29 +02:00
Kylie Stradley	2d5cd1a61a	WIP. todo: modify help text in query to be helpful, write qlhelp file, find out how to not release to customers	2024-10-18 16:51:31 -04:00
Kylie Stradley	e5508343b1	update unpinned actions tag test	2024-10-18 15:21:33 -04:00
Calum Grant	c5a082fd8e	C++: Fix CWE-022	2024-10-18 19:45:29 +01:00
Chris Smowton	241f951db1	Add change-note for Java buildless packaging its required Maven plugin	2024-10-18 17:43:18 +01:00
Chris Smowton	74ef91649b	Merge pull request #17780 from smowton/smowton/admin/add-buildless-maven-packaging-test ... Java buildless: add tests checking usage of a local copy of the Maven dependency graph plugin	2024-10-18 17:38:59 +01:00
Arthur Baars	08af7d0007	Merge pull request #17810 from github/post-release-prep/codeql-cli-2.19.2 ... Post-release preparation for codeql-cli-2.19.2	2024-10-18 18:28:07 +02:00
github-actions[bot]	272f6c2541	Post-release preparation for codeql-cli-2.19.2	2024-10-18 15:56:02 +00:00
Arthur Baars	3990d0e11a	Merge pull request #17808 from github/release-prep/2.19.2 ... Release preparation for version 2.19.2 codeql-cli/v2.19.2	2024-10-18 17:36:23 +02:00
Arthur Baars	aaf220d41e	Fix typos in changelogs	2024-10-18 15:28:05 +00:00
github-actions[bot]	ca0345324e	Release preparation for version 2.19.2	2024-10-18 15:16:21 +00:00
Arthur Baars	7c15be1f02	Merge pull request #17806 from github/revert-17764-release-prep/2.19.2 ... Revert "Release preparation for version 2.19.2"	2024-10-18 17:13:50 +02:00
Arthur Baars	eb515f884b	Revert "Release preparation for version 2.19.2"	2024-10-18 17:06:20 +02:00
Calum Grant	0fcabc4e61	C++: Move mayBeFromImplicitlyDeclaredFunction to Call	2024-10-18 15:56:08 +01:00
Jami	c8d420ec57	Merge pull request #17795 from jcogs33/jcogs33/update-spring-csrf-qhelp-link ... Java: update qhelp link for `java/spring-disabled-csrf-protection`	2024-10-18 10:11:37 -04:00
Arthur Baars	4a5a48a5b6	Rust: move PrintCfg to ide-contextual-queries	2024-10-18 16:11:18 +02:00
Arthur Baars	c9372b91f8	Rust: move ide-contextual-queries to the library pack	2024-10-18 16:11:17 +02:00
Arthur Baars	53744407ad	Rust: add localDefinitions.ql	2024-10-18 16:11:08 +02:00
Calum Grant	419780591a	C++: Resolve firstFormatArgumentIndex in FormattingFunction CP	2024-10-18 14:52:54 +01:00
Simon Friis Vindum	4ddc7a4592	Rust: Update unused value expected results	2024-10-18 15:49:52 +02:00
yoff	8cb339aa93	Merge pull request #17801 from yoff/python/extra-std-models ... Python: extra modelling of stdlib	2024-10-18 15:32:01 +02:00
Jami Cogswell	335c59792c	Java: remove unnecessary anchor and update page name	2024-10-18 09:26:56 -04:00
Rasmus Lerchedahl Petersen	30e5a12230	Python: udate expectations	2024-10-18 15:14:51 +02:00
Simon Friis Vindum	b665f45ffa	Merge branch 'main' into unreachable2	2024-10-18 15:13:40 +02:00
Chuan-kai Lin	41e811773c	Merge pull request #17648 from github/cklin/dataflow-diff-informed-filtering ... Dataflow: apply diff-informed filtering consistently	2024-10-18 06:02:28 -07:00
Rasmus Lerchedahl Petersen	30053da70d	Python: extra modelling of stdlib ... as a reaction to the latest QA run	2024-10-18 13:49:33 +02:00
Simon Friis Vindum	b1e85d1ad8	Rust: Refactor BreakExprTree to use StandardPostOrderTree	2024-10-18 13:30:36 +02:00
Simon Friis Vindum	28f111b7c0	Rust: Remove erroneous CFG edge from return to break	2024-10-18 13:26:11 +02:00
Simon Friis Vindum	4ca6b0eceb	Rust: Add a CFG test for a return within a break	2024-10-18 13:22:39 +02:00
Simon Friis Vindum	6568eb80a2	Rust: Refactor CFG pattern tree implementation	2024-10-18 12:52:56 +02:00
Simon Friis Vindum	7aa28a0449	Rust: Fix multiple CFG successors in range pattern without lower bound	2024-10-18 11:19:21 +02:00
Simon Friis Vindum	b0625f83c6	Rust: Add CFG test of range patterns	2024-10-18 11:19:19 +02:00
Simon Friis Vindum	272d12fee1	Rust: Step correctly over method arguments ... Previously the math was wrong and the first argument (with `i` being `0`) had two edges out of it.	2024-10-18 11:19:07 +02:00
Owen Mansel-Chan	f3abe549f3	Merge pull request #17794 from owen-mc/go/ast-viewer-typeparamdecl ... Go: Fix type param declarations in AST viewer	2024-10-18 10:14:51 +01:00
Owen Mansel-Chan	b0376d500c	Merge pull request #17792 from owen-mc/go/lookthrough-pointer-type ... Go: Add helper predicate `lookThroughPointerType`	2024-10-18 09:30:46 +01:00
Owen Mansel-Chan	bacf448388	Add change note	2024-10-17 22:06:49 +01:00
Jami Cogswell	88b7a9fcb5	Java: update qhelp link	2024-10-17 16:38:53 -04:00
Kylie Stradley	cf9b853a8f	unversioned immutable actions wip	2024-10-17 16:14:03 -04:00
Kylie Stradley	325727ed6d	recommend to add octokit to trusted orgs	2024-10-17 15:59:45 -04:00
Chris Smowton	8b0bd8c8ad	Adjust test expectations	2024-10-17 20:42:41 +01:00
Chris Smowton	13f19481db	Add tests checking Maven retrieves the depgraph plugin from our shipped repo, and produces the expected settings.xml file in the process	2024-10-17 20:42:40 +01:00
Alvaro Muñoz	7cba2e07bc	Bump qlpack versions	2024-10-17 21:40:40 +02:00
Alvaro Muñoz	c44c3bae9f	Update tests	2024-10-17 21:39:58 +02:00
Arthur Baars	6e197b5802	Merge pull request #17773 from geoffw0/unusedval2 ... Rust: Implement UnusedValue.ql (2)	2024-10-17 21:03:24 +02:00
Dave Bartolomeo	639864e94d	Handle may vs. must for EntireAllocationMemoryLocation	2024-10-17 19:50:50 +01:00
Chuan-kai Lin	1aa3eb527f	Dataflow: apply diff-informed filtering consistently	2024-10-17 10:23:38 -07:00
yoff	e46722f3be	Update python/ql/lib/semmle/python/dataflow/new/internal/TypeTrackingImpl.qll	2024-10-17 17:23:00 +02:00
yoff	b07c788a08	Merge pull request #17793 from github/tausbn/python-update-docs-for-python-3.13 ... Python: Update supported-versions-compilers.rst	2024-10-17 16:59:08 +02:00
Owen Mansel-Chan	7ed82068ef	Add type param decls to AST viewer hierarchy	2024-10-17 15:39:16 +01:00