hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 09:43:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
8,015 Commits 1,672 Branches 157 Tags
cs/assembly-prefix
Commit Graph

1713 Commits

Author SHA1 Message Date
Esben Sparre Andreasen
1f565bd49c JS: Introduce TypeBackTracker::step and TypeBackTracker::smallstep 2019-04-12 08:51:28 +02:00
Esben Sparre Andreasen
fd429ce639 JS: whitelist delimiter unwrapping for js/incomplete-sanitization 2019-04-12 08:38:44 +02:00
semmle-qlci
ccbb7ce04b Merge pull request #1224 from asger-semmle/cheerio 
Approved by esben-semmle
 2019-04-11 15:21:44 +01:00
semmle-qlci
a1cc2fbed3 Merge pull request #1233 from xiemaisi/js/amd-type-inference 
Approved by asger-semmle
 2019-04-11 15:20:00 +01:00
semmle-qlci
ed5fd96603 Merge pull request #1227 from asger-semmle/typescript3.4 
Approved by xiemaisi
 2019-04-11 10:39:57 +01:00
semmle-qlci
9f13b6be18 Merge pull request #1234 from xiemaisi/js/customizations-qll 
Approved by esben-semmle
 2019-04-11 08:31:28 +01:00
Max Schaefer
078151f9d1 JavaScript: Add an (empty) Customizations.qll module. 
Somewhat analogous to the `Options.qll` module in C++; see module
comments for further explanation.
 2019-04-10 18:26:27 -07:00
Max Schaefer
301dab0e40 JavaScript: Improve AMD support in type inference. 
Now leverages the recently introduced logic for resolving AMD imports
based on unique matching paths.
 2019-04-10 09:47:54 -07:00
Max Schaefer
20312fc3bf JavaScript: Improve socket.io model. 
Recognise `io` imports and use type-tracking to better track handlers.
 2019-04-10 08:02:40 -07:00
Max Schaefer
6ac72bd469 Update javascript/ql/src/semmle/javascript/TypeScript.qll 
Co-Authored-By: asger-semmle <42069257+asger-semmle@users.noreply.github.com>
 2019-04-10 15:33:22 +01:00
Asger F
d28597ffbb TS: DB upgrade script and stats 2019-04-10 13:13:46 +01:00
Esben Sparre Andreasen
b86f43be98 JS: reformulate CallToObjectDefineProperty::getAPropertyAttribute 2019-04-10 14:03:28 +02:00
Asger F
c1c7ebfc48 TS: Support const type assertions 2019-04-10 12:54:42 +01:00
Asger F
d5ae69d40a TS: Support readonly type expressions 2019-04-10 12:26:46 +01:00
Esben Sparre Andreasen
e70413922b Update javascript/ql/src/semmle/javascript/frameworks/Cheerio.qll 
Co-Authored-By: asger-semmle <42069257+asger-semmle@users.noreply.github.com>
 2019-04-09 14:25:33 +01:00
Esben Sparre Andreasen
2113e6e4d3 Update javascript/ql/src/semmle/javascript/frameworks/Cheerio.qll 
Co-Authored-By: asger-semmle <42069257+asger-semmle@users.noreply.github.com>
 2019-04-09 14:25:19 +01:00
Esben Sparre Andreasen
ad119dae21 Update javascript/ql/src/semmle/javascript/frameworks/jQuery.qll 
Co-Authored-By: asger-semmle <42069257+asger-semmle@users.noreply.github.com>
 2019-04-09 14:25:11 +01:00
Esben Sparre Andreasen
b72c678b2c Update javascript/ql/src/semmle/javascript/frameworks/jQuery.qll 
Co-Authored-By: asger-semmle <42069257+asger-semmle@users.noreply.github.com>
 2019-04-09 14:25:01 +01:00
Asger F
0fcdf91d4a JS: Add model of cheerio 2019-04-09 12:21:54 +01:00
Esben Sparre Andreasen
9d1f511ca0 JS: fixup missing space 2019-04-09 10:39:26 +02:00
Esben Sparre Andreasen
89596052cf JS: autoformat TypeTracking.qll 2019-04-09 10:39:26 +02:00
semmle-qlci
92acd322fc Merge pull request #1218 from esben-semmle/js/whitelist-typeconfusion-lt1-checks 
Approved by asger-semmle
 2019-04-09 01:11:34 +01:00
Rebecca Valentine
c120cca9d3 better explanation of null sensitive contexts 2019-04-08 10:12:04 -07:00
semmle-qlci
f54366bf95 Merge pull request #1214 from asger-semmle/taint-addexpr-phi 
Approved by esben-semmle, xiemaisi
 2019-04-08 11:55:06 +01:00
Esben Sparre Andreasen
52d86471af JS: whitelist another emptiness check for the type-confusion query 2019-04-08 09:52:27 +02:00
semmle-qlci
662ad4b2ca Merge pull request #1205 from asger-semmle/prefix-sanitizer 
Approved by esben-semmle
 2019-04-08 08:29:04 +01:00
Rebecca Valentine
40e3a241a1 Revert "Update javascript/ql/src/semmle/javascript/Expr.qll" 
This reverts commit 78407f85ee.
 2019-04-05 09:47:56 -07:00
Max Schaefer
78407f85ee Update javascript/ql/src/semmle/javascript/Expr.qll 
Co-Authored-By: psygnisfive <psygnisfive@users.noreply.github.com>
 2019-04-05 09:46:09 -07:00
Max Schaefer
280c334ab8 Update javascript/ql/src/semmle/javascript/Expr.qll 
Co-Authored-By: psygnisfive <psygnisfive@users.noreply.github.com>
 2019-04-05 09:45:53 -07:00
Asger F
80f413177a Merge branch 'master' into shelljs 2019-04-05 14:44:32 +01:00
Asger F
e55330b820 JS: Fix flow through += 2019-04-05 13:55:48 +01:00
semmle-qlci
063dbeeff3 Merge pull request #1198 from esben-semmle/js/more-express-route-handlers 
Approved by xiemaisi
 2019-04-05 09:47:51 +01:00
Rebecca Valentine
b7939029bf removes bigint cases 2019-04-04 16:41:52 -07:00
Rebecca Valentine
5b87b85960 fixes comment language 2019-04-04 16:41:14 -07:00
Esben Sparre Andreasen
60ba74a210 JS: Express cleanup and generalization 2019-04-04 21:42:08 +02:00
Asger F
c38b8d81ca JS: review comments 2019-04-04 14:43:11 +01:00
Asger F
d594e55a61 JS: Remove ShellJS::Instance for simplicity 2019-04-04 11:45:59 +01:00
Asger F
3da76cb798 JS: add model of ShellJS 2019-04-04 11:44:56 +01:00
Rebecca Valentine
ec2e17f07a adds whitelist and recursive cases, per PR change req 2019-04-03 10:06:02 -07:00
Asger F
3bc7371fd6 JS: be less conservative about incomplete nodes in prefix sanitizers 2019-04-03 15:20:03 +01:00
Esben Sparre Andreasen
3c608fe11e Merge branch 'master' into js/improve-createServer 2019-04-03 12:37:33 +02:00
semmle-qlci
1da828fa80 Merge pull request #1195 from esben-semmle/js/firebase-express-requests 
Approved by xiemaisi
 2019-04-03 11:36:02 +01:00
Esben Sparre Andreasen
f23a5a5fee JS: model firebase-functions/https.onRequest 2019-04-03 08:01:45 +02:00
Esben Sparre Andreasen
0b733b4f23 JS: treat the last argument to https.createServer as a route handler 2019-04-02 14:38:31 +02:00
semmle-qlci
4ec2df6bad Merge pull request #1179 from asger-semmle/js-windoc 
Approved by xiemaisi
 2019-04-02 11:21:07 +01:00
semmle-qlci
02f4695a5b Merge pull request #1152 from esben-semmle/js/koa-improvements 
Approved by xiemaisi
 2019-04-02 08:51:19 +01:00
semmle-qlci
54b4e59d12 Merge pull request #1182 from esben-semmle/js/sourcenode-regexp-literals 
Approved by xiemaisi
 2019-04-01 21:58:58 +01:00
Esben Sparre Andreasen
2622fc64db JS: autoformat 2019-04-01 22:55:17 +02:00
Esben Sparre Andreasen
7fec005806 JS: use DataFlow::SourceNode in three locations in Koa 2019-04-01 22:55:17 +02:00
Esben Sparre Andreasen
00c8387bb3 JS: model Koa redirects 2019-04-01 22:55:17 +02:00