87274 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Tom Hvitved	d93d6585d9	C#: Mark more expressions as compiler generated	2024-04-03 20:03:02 +02:00
Tom Hvitved	c2d771b334	Ruby: Reduce alerts produced by MassAssignment.ql	2024-04-03 19:58:51 +02:00
Tom Hvitved	3c96bf6b22	Fix bad join	2024-04-03 19:41:37 +02:00
Erik Krogh Kristensen	35f61d9de4	Merge pull request #16107 from erik-krogh/fix-log-injection-typo ... RB: Tiny fixes to log-injection QHelp	2024-04-03 18:29:37 +02:00
Paolo Tranquilli	c242466d31	Kotlin: first support for Kotlin extractor build	2024-04-03 16:30:57 +02:00
Alvaro Muñoz	ce5928c6ba	Bump qlpack versions	2024-04-03 15:43:43 +02:00
Alvaro Muñoz	73878ed3cd	Merge pull request #42 from GitHubSecurityLab/priv_workflows ... priv workflows	2024-04-03 15:41:04 +02:00
Alvaro Muñoz	f7ddd8b769	Include problem queries in actions-all suite	2024-04-03 15:39:50 +02:00
Alvaro Muñoz	2988bc8885	Centralize isPrivileged decisions	2024-04-03 15:39:00 +02:00
Tom Hvitved	2d4cf55c87	Merge pull request #15985 from hvitved/ruby/phi-barrier-guards ... Ruby: Extend barrier guards to handle phi inputs	2024-04-03 15:22:39 +02:00
Tom Hvitved	7871fb8ce6	Data flow: Block flow at expectsContents nodes in parameterValueFlow	2024-04-03 15:19:34 +02:00
Tom Hvitved	137594cf36	Ruby: Add regression test	2024-04-03 15:19:34 +02:00
Geoffrey White	a8742ea111	C++: PascalCase and US spelling fixes.	2024-04-03 14:17:55 +01:00
Owen Mansel-Chan	fe24710c96	Improve QLDoc of Entity.getDeclaration	2024-04-03 14:09:37 +01:00
Owen Mansel-Chan	c7f2e991ed	Improve QLDoc for TypeAssertExpr ... Include information about the type assert `x.(type)` used in type switches.	2024-04-03 13:59:04 +01:00
Owen Mansel-Chan	698debfa20	Extractor: explicitly deal with extracting x.(type) in type switches	2024-04-03 13:58:58 +01:00
Tamás Vajk	9be2b9cbdb	Merge pull request #16108 from tamasvajk/cleanup/utils ... C#: Remove unused classes from `Util` project	2024-04-03 14:24:58 +02:00
Tamás Vajk	362a109e04	Remove redundant implemented interface ... Co-authored-by: Michael Nebel <michaelnebel@github.com>	2024-04-03 14:23:36 +02:00
Tom Hvitved	8b78463f25	Merge pull request #16087 from hvitved/dataflow/store-step-exploration ... Data flow: Do not require stores to have matching reads in flow exploration	2024-04-03 14:10:28 +02:00
Tom Hvitved	550e251d68	Data flow: Do not require stores to have matching reads in flow exploration	2024-04-03 13:28:24 +02:00
Tamas Vajk	75894d581c	C#: Remove unused classes from Util project	2024-04-03 12:15:37 +02:00
Alvaro Muñoz	119c7b8158	Bump qlpack versions	2024-04-03 11:41:42 +02:00
Alvaro Muñoz	9c90db3f83	Merge pull request #41 from GitHubSecurityLab/env_injection ... New Artifact Poisoning and EnvVar Injection queries	2024-04-03 11:39:56 +02:00
Tom Hvitved	1dc13cc169	Merge pull request #15923 from hvitved/shared-xml-impl ... Properly shared `XML.qll` implementation	2024-04-03 11:39:50 +02:00
Alvaro Muñoz	a2bbf704ee	fix: triggering events for artifact poisoning	2024-04-03 11:39:35 +02:00
Tom Hvitved	64e82bb00e	C#: Include all non-source-code properties in data flow	2024-04-03 10:22:36 +02:00
Tom Hvitved	cccb11f697	Merge pull request #16091 from hvitved/csharp/system-diagnostics-modules ... C#: Neutralize some `System.Diagnostics` generated models	2024-04-03 10:21:56 +02:00
Tamas Vajk	fbec197d4a	Move TSP diagnostics related classes to separate files	2024-04-03 10:13:44 +02:00
Tamas Vajk	305fa84186	Change IDiagnosticsWriter to implement IDisposable	2024-04-03 10:08:46 +02:00
Tamas Vajk	0f980e2b97	C#: Properly dispose diagnostic writer objects	2024-04-03 09:47:24 +02:00
erik-krogh	ec32bdce63	fix unsanitized -> sanitized typo, and don't add a new variable just to remove newlines	2024-04-03 09:19:18 +02:00
Tamás Vajk	d7e514913f	Merge pull request #16039 from tamasvajk/fix/buildless-references ... C#: Reword public mentions of C# buildless	2024-04-03 09:19:13 +02:00
Paolo Tranquilli	341816c280	Kotlin: add dependencies as lazy LFS files	2024-04-03 08:35:34 +02:00
Paolo Tranquilli	0da4130bb9	Bazel: add LFS rules	2024-04-03 08:35:19 +02:00
Dave Bartolomeo	ce98353d22	Allow @param tags to apply to record parameters	2024-04-02 15:15:11 -04:00
Chuan-kai Lin	1f27eb3658	Merge pull request #16102 from github/post-release-prep/codeql-cli-2.17.0 ... Post-release preparation for codeql-cli-2.17.0	2024-04-02 11:47:23 -07:00
github-actions[bot]	19797fdd27	Post-release preparation for codeql-cli-2.17.0	2024-04-02 18:20:44 +00:00
Chuan-kai Lin	839ca60f90	Merge pull request #16099 from github/release-prep/2.17.0 ... Release preparation for version 2.17.0 codeql-cli/v2.17.0	2024-04-02 11:07:43 -07:00
erik-krogh	572d3ba542	fix language specifier typo in qhelp for rb/multi-char-san	2024-04-02 19:40:46 +02:00
github-actions[bot]	c511de2eae	Release preparation for version 2.17.0	2024-04-02 17:15:41 +00:00
Chuan-kai Lin	b87cf3c41a	Merge pull request #16098 from github/revert-16085-release-prep/2.17.0 ... Revert "Release preparation for version 2.17.0"	2024-04-02 10:11:15 -07:00
Chuan-kai Lin	6c649c898e	Revert "Release preparation for version 2.17.0"	2024-04-02 10:06:20 -07:00
Mathias Vorreiter Pedersen	4baa9ad8c8	C++: Accept test changes.	2024-04-02 18:02:43 +01:00
Mathias Vorreiter Pedersen	baa508d336	C++: Add some simple coroutine tests.	2024-04-02 18:02:43 +01:00
Geoffrey White	db60360293	C++: Add a test case where a function has a MAD model *and* an implementation.	2024-04-02 17:50:00 +01:00
Geoffrey White	9c4567bd6d	Swift: Additional models-as-data doc change I missed out in the other PR - neither CPP nor Swift support 'Parameter' with no argument in an access path.	2024-04-02 16:18:25 +01:00
Geoffrey White	f2ef4ad6ac	C++: Update for the provenance changes.	2024-04-02 16:15:08 +01:00
Geoffrey White	57beb73bf7	C++: Update for the dataflow hasLocationInfo -> getLocation change made on main.	2024-04-02 16:15:06 +01:00
Geoffrey White	f1ead2554f	C++: Trivial merge fixes.	2024-04-02 16:15:05 +01:00
Geoffrey White	33164c8a43	Merge branch 'main' into mad	2024-04-02 16:14:53 +01:00