codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00

Author	SHA1	Message	Date
Jonas Jensen	06b36f742e	Merge pull request #6745 from andersfugmann/handle_overflow_for_upperbound C++: Handle overflow for upperbound	2021-09-27 10:32:49 +02:00
Geoffrey White	3e1bc66984	Merge pull request #6733 from MathiasVP/fix-qldoc-in-initialize-dynamic-allocation-instruction C++/C#: Fix QLDoc on `InitializeDynamicAllocationInstruction`.{`getAllocationAddressOperand` and `getAllocationAddress`}	2021-09-24 14:30:03 +01:00
Anders Peter Fugmann	aebde189f8	C++: Apply peer review suggestion Co-authored-by: Jonas Jensen <jbj@github.com>	2021-09-24 15:09:23 +02:00
Mathias Vorreiter Pedersen	24214002a1	C#/C++: Sync identical files.	2021-09-24 13:13:09 +01:00
Mathias Vorreiter Pedersen	eba1b0bc15	Respond to review comments.	2021-09-24 13:12:58 +01:00
Anders Fugmann	c9c41252e3	C++: Update test results in SimpleRangeAnalysis	2021-09-24 12:23:48 +02:00
Anders Fugmann	3437cf2909	C++: only use upperbound if there are no overflows in the guard	2021-09-24 11:46:58 +02:00
Anders Fugmann	d7afd86a27	C++: Add test case exposing problem with overflows for upperBound predicate	2021-09-24 11:44:05 +02:00
Robert Marsh	3189c578a4	C++: Add QLDoc to subpaths in DefaultTaintTracking	2021-09-23 22:42:38 -07:00
Robert Marsh	c2b356ab08	C++: add subpaths to DefaultTaintTracking	2021-09-23 21:00:45 -07:00
Mathias Vorreiter Pedersen	35baff8bac	C#/C++: Sync identical files.	2021-09-22 13:32:29 +01:00
Mathias Vorreiter Pedersen	5969c227ab	C++: Fix QLDoc on 'getAllocationAddressOperand' and 'getAllocationAddress'.	2021-09-22 13:32:20 +01:00
Robert Marsh	3108817717	C++: Add additional functions to the SQL models	2021-09-21 17:34:01 -07:00
Robert Marsh	d62f76afa6	Merge pull request #6133 from MathiasVP/promote-sql-pqxx C++: Promote `cpp/sql-injection-via-pqxx` out of experimental	2021-09-21 10:13:57 -07:00
Robert Marsh	97c2917c16	Merge pull request #6409 from JordyZomer/main cpp: Add query to detect unsigned integer to signed integer conversio…	2021-09-21 09:57:44 -07:00
Mathias Vorreiter Pedersen	478093aa89	Update cpp/ql/lib/semmle/code/cpp/models/interfaces/Sql.qll Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2021-09-21 17:51:24 +01:00
Mathias Vorreiter Pedersen	bd5edc7ae5	Respond to review comments.	2021-09-21 14:29:26 +01:00
Mathias Vorreiter Pedersen	dfe932d053	Add missing conjunct in PostgreSqlEscapeFunction's 'escapesSqlArgument' predicate.	2021-09-21 12:14:45 +01:00
Anders Schack-Mulligen	044623a360	Dataflow: Sync.	2021-09-20 14:58:28 +02:00
Mathias Vorreiter Pedersen	797966fd3d	C++: Change the names of the new classes and predicates to match the upcoming 'CommandExecutionFunction' class.	2021-09-20 11:49:09 +01:00
Anders Schack-Mulligen	236ffc8972	Merge pull request #6700 from aschackmull/dataflow/subpaths-joinorder Dataflow: Fix bad joinorder in subpaths	2021-09-16 08:22:59 +02:00
Nick Rolfe	f76ce8b33b	Merge pull request #6686 from hvitved/cpp/files-folders-drop-columns C++: Drop redundant columns from `files` and `folders` relations	2021-09-15 18:33:20 +01:00
Mathias Vorreiter Pedersen	33ef634ea8	Merge pull request #6679 from andersfugmann/relax_memberMayBeVarSize Improve precision on OverflowStatic query.	2021-09-15 17:24:10 +01:00
Anders Schack-Mulligen	c0fd44c909	Dataflow: Sync.	2021-09-15 16:10:54 +02:00
Geoffrey White	c4714b55a3	Merge pull request #6588 from ihsinme/ihsinme-patch-069 CPP: Add query for CWE-675: Duplicate Operations on Resource	2021-09-15 15:10:03 +01:00
Jonas Jensen	65f4ec403f	Merge pull request #6593 from geoffw0/samate-move C++: Add test cases with SAMATE Juliet code snippets to the codeql test suite.	2021-09-15 14:18:08 +02:00
Mathias Vorreiter Pedersen	947ab8a14d	Make the QLDoc on 'getAnSqlParameter' more clear.	2021-09-15 13:15:05 +01:00
Geoffrey White	0e7afb24cf	Merge pull request #6643 from MathiasVP/add-frontend-and-extractor-diagnostic-query C++: Add uninterpreted query for obtaining frontend and extraction time	2021-09-15 11:17:58 +01:00
Geoffrey White	9ad51fbc02	C++: Fix the correct test this time.	2021-09-15 11:03:09 +01:00
Jordy Zomer	0f6e845418	Merge branch 'main' of https://github.com/JordyZomer/codeql into main	2021-09-15 10:41:31 +02:00
Jordy Zomer	01a06d1f5c	Add filter and format the query	2021-09-15 10:37:40 +02:00
Anders Fugmann	e49cd83868	C++: update change note per suggestion from peer review	2021-09-15 10:31:15 +02:00
Geoffrey White	8fd848701e	C++: Fix test failure.	2021-09-14 16:38:11 +01:00
Mathias Vorreiter Pedersen	44dca68463	Merge branch 'main' into promote-sql-pqxx	2021-09-14 15:29:37 +01:00
Anders Fugmann	bc22e0d9aa	C++: Update comments on memberMayBeVarSize	2021-09-14 16:04:39 +02:00
Tom Hvitved	b69033f4ff	C++: Upgrade script	2021-09-14 13:14:04 +02:00
Tom Hvitved	6c32b92929	C++: Drop redundant columns from `files` and `folders` relations	2021-09-14 13:14:04 +02:00
ihsinme	8fa3cefb8c	Update DoubleRelease.ql	2021-09-14 10:31:20 +03:00
ihsinme	d150c9a6be	Update DoubleRelease.ql	2021-09-14 08:51:13 +03:00
Mathias Vorreiter Pedersen	a714966e9b	Import 'cpp' and add more description.	2021-09-13 18:43:34 +01:00
Mathias Vorreiter Pedersen	034899367d	C++: Exclude uninstantiated templates from AV Rule 114.	2021-09-13 18:08:51 +01:00
Anders Fugmann	f202ddc5aa	C++: Add changenote	2021-09-13 16:31:06 +02:00
Geoffrey White	902fa7d44a	C++: Subsection header.	2021-09-13 14:10:17 +01:00
Geoffrey White	acd1acd869	C++: Give it a section header.	2021-09-13 14:08:18 +01:00
Geoffrey White	befd1a7ccc	C++: Rename security tests readme.	2021-09-13 14:06:22 +01:00
Anders Fugmann	9a35a699cb	C++: Update tests	2021-09-13 12:10:58 +02:00
Anders Fugmann	342b2df93f	C++: zero or one byte sized arrays in unions are considered as having the length of the union its a member of	2021-09-13 11:25:04 +02:00
Anders Fugmann	3172d5727a	C++: Relax constraints on Buffer::memberMayBeVarSize	2021-09-13 11:15:33 +02:00
Anders Fugmann	4ab9b81a9a	C++: Add tests exposing some FP's for OverflowStatic query	2021-09-13 11:09:56 +02:00
Tom Hvitved	649c2ce188	Merge pull request #6586 from hvitved/dataflow/stage2-precise-call-ctx-take2 Data flow: Add precise call contexts to stage 2	2021-09-10 11:34:35 +02:00

1 2 3 4 5 ...

6516 Commits