hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 10:46:30 +01:00
Code Issues Packages Projects Releases Wiki Activity
17,792 Commits 1,672 Branches 157 Tags
feature/service-stack
Commit Graph

1927 Commits

Author SHA1 Message Date
John Lugton
059d6b0e0f Fix warning in ServiceStack.qll 2020-12-18 08:34:06 -08:00
John Lugton
563dc62c33 Improve qldoc for ServiceStack.qll 2020-12-18 08:23:27 -08:00
John Lugton
3f1f83f667 remove experimental 2020-12-17 16:24:52 -08:00
John Lugton
6d5f9035e6 Minor fixes to XSS: 
Only want returns in request methods
Also care about non-string 1st args to HttpResult e.g. streams
 2020-12-17 16:17:26 -08:00
John Lugton
7d47bffd53 Tidy up ServiceStack.qll 
Use fully qualified names for classes
Make util predicate private
Make naming more consistent with rest of ql libs
 2020-12-17 16:17:26 -08:00
Chelsea Boling
d4acccb13c Update sink 2020-12-17 16:17:26 -08:00
Chelsea Boling
0a7e4b6840 Update sink based on feedback 2020-12-17 16:17:26 -08:00
Chelsea Boling
4e0f3a30ee Update sink based on feedback 2020-12-17 16:17:25 -08:00
Chelsea Boling
ba46eaa143 Refactor sink 2020-12-17 16:17:25 -08:00
Chelsea Boling
3c493511e9 Update file 2020-12-17 16:17:25 -08:00
Chelsea Boling
12e8107492 Add example 2020-12-17 16:17:25 -08:00
Chelsea Boling
5c7dedffb3 Update sinks 2020-12-17 16:17:25 -08:00
Chelsea Boling
71a08c3237 Update servicestack lib 2020-12-17 16:17:25 -08:00
John Lugton
d408ae7e10 Split ServiceStack into modules and incorporate into main lib 2020-12-17 16:17:25 -08:00
John Lugton
386eb2d56b move ServiceStack out of microsoft 2020-12-17 16:17:25 -08:00
Chelsea Boling
cae6f91729 Create ServiceStack.qll 2020-12-17 16:17:24 -08:00
Chelsea Boling
dbe0170249 Add files via upload 2020-12-17 16:17:24 -08:00
Chelsea Boling
188dbde2d6 Create SQLInjection.ql 2020-12-17 16:17:24 -08:00
Tom Hvitved
e89a463b25 C#: Fix bad join-order in commonSubTypeGeneral/2 2020-11-01 20:08:14 +01:00
Tom Hvitved
51f71d4e1d C#: Fix CFG for assertions with multiple assertion arguments 2020-10-29 15:44:13 +01:00
Tom Hvitved
5cd707f17e C#: Add CFG test for assertion with multiple assertion arguments 2020-10-29 15:44:13 +01:00
Tamás Vajk
64dcfbd7fc Merge pull request #4484 from tamasvajk/feature/custom-assert-methods 
C#: Add support for custom assert methods (DoesNotReturnIfAttribute)
 2020-10-29 09:10:09 +01:00
Tamas Vajk
410af42d2b C#: Adjust PR feedback on assertion methods 2020-10-28 15:09:50 +01:00
Tamás Vajk
59d9be48a7 Merge pull request #4438 from tamasvajk/feature/ast-fixes 
C#: Fixes for AST printing
 2020-10-28 14:52:24 +01:00
Tom Hvitved
2fea6f05f1 Merge pull request #4489 from hvitved/csharp/cil-to-string 
C#: Simplify `toString()` for CIL entities
 2020-10-28 12:56:10 +01:00
Tamas Vajk
1830eea50a C#: Cleanup TypeMentions in AST printing 2020-10-28 12:34:12 +01:00
Tamas Vajk
444b100c51 Minor fix in definitions.qll 2020-10-28 12:23:12 +01:00
Tamas Vajk
a9e93e5681 C#: Fix GenericType locations in jump-to-definition 2020-10-28 12:07:27 +01:00
Tamas Vajk
9cc7424cd0 C#: Simplify TypeMentions in PrintAST 2020-10-28 11:28:06 +01:00
Tom Hvitved
28607927ee C#: Update CIL tests 2020-10-28 10:57:01 +01:00
Tamás Vajk
7c3964a388 Merge pull request #4543 from tamasvajk/feature/configureawait 
C#: Add flow summary for 'Task.ConfigureAwait()'
 2020-10-28 10:42:44 +01:00
Tamas Vajk
7a1e1996e4 C#: Remove unneded class from CompilerServices.qll 2020-10-28 08:42:20 +01:00
Tom Hvitved
de4ed59f62 C#: Simplify toString() for CIL entities 2020-10-27 20:58:40 +01:00
Tom Hvitved
090ea01249 C#: Fix bad join-order in System.Tuple flow-summaries 2020-10-27 14:51:11 +01:00
Tom Hvitved
03a36760b8 C#: Add data-flow test for ConfigureAwait() 2020-10-27 10:23:39 +01:00
Tamas Vajk
342a711296 C#: Add flow summary for 'Task.ConfigureAwait()' 2020-10-27 10:23:39 +01:00
Tom Hvitved
212b49f3dc Merge pull request #4416 from hvitved/csharp/dataflow/tuples 
C#: Add flow summaries for `System.[Value]Tuple`
 2020-10-26 13:48:24 +01:00
Chris Smowton
68876b02fe Merge pull request #4519 from smowton/smowton/cleanup/loggertype-dead-code 
C#: Remove dead LoggerType class
 2020-10-26 11:19:27 +00:00
Tom Hvitved
492b1141ef Merge pull request #4445 from hvitved/csharp/sign-analysis-cfg 
C#: Use CFG nodes instead of AST nodes in sign/modulus analysis
 2020-10-26 09:45:38 +01:00
Chris Smowton
af6da85ec9 Remove dead LoggerType class 
This appears to have been factored into Loggers.qll but left lying around.
 2020-10-20 13:32:11 +01:00
Tamas Vajk
5d0c30db66 C#: Fix nullable reference type handling in type mention extraction 2020-10-20 08:23:57 +02:00
Tamas Vajk
dad5166bca C#: Print full name of type mentions in AST 2020-10-20 08:23:57 +02:00
Tamas Vajk
7929d8a982 C#: Fix generic type name location in AST 2020-10-20 08:23:56 +02:00
Tamas Vajk
037907e442 C#: Fix qualified name type mention extraction 2020-10-20 08:23:56 +02:00
Tamas Vajk
238ed2e643 C#: Make array and pointer type mentions symmetrical 2020-10-20 08:23:56 +02:00
Tamas Vajk
a87343dd69 C#: Add more type test cases to cover type mentions 2020-10-20 08:23:56 +02:00
Tamas Vajk
f0a40f6e5e C#: Fix type mention for stackalloc to span assignment 2020-10-20 08:23:56 +02:00
Tamas Vajk
7cb4d6d7a0 C#: Fix type mentions for stackalloc arrays 2020-10-20 08:23:56 +02:00
Tamas Vajk
ca6ecb3f1e C#: Extract type mention for array creation 2020-10-20 08:23:56 +02:00
Tamas Vajk
7066568813 C#: Change type access and expression order in casts for AST printing 2020-10-20 08:23:56 +02:00