1184 Commits

Author	SHA1	Message	Date
Anders Schack-Mulligen	56c46d74f9	Java/Rust/Swift: Accept qltest changes.	2025-03-31 11:44:37 +02:00
Anders Schack-Mulligen	f27e8199a1	Java: Accept test changes.	2025-03-25 12:31:04 +01:00
Jami	2750d1d889	Merge pull request #18646 from jcogs33/jcogs33/java/directory-chars-path-sanitizer ... Java: path sanitizer for `replace`, `replaceAll`, and `matches`	2025-03-18 13:26:01 -04:00
Jami Cogswell	0d2e9ae469	Java: fix 'matches' false branch	2025-03-17 18:48:44 -04:00
Jami Cogswell	49d37c517d	Java: fix replacement char check and add tests	2025-03-17 16:02:13 -04:00
Jami Cogswell	2f6696e8a8	Java: add test	2025-03-17 15:13:33 -04:00
Jami Cogswell	e17486a9d8	Java: rename springframework stubs directory from 5.3.8 to 5.8.x	2025-03-11 15:20:58 -04:00
Jami Cogswell	76433a31f7	Java: generalize sanitizer and add tests	2025-03-10 18:56:01 -04:00
Chris Smowton	1577b40b45	Accept test changes	2025-02-28 11:23:07 +00:00
Chris Smowton	32e4c741cc	Merge pull request #18554 from smowton/smowton/admin/test-gbk-xml-extraction ... Java: Add tests for XML and Java extraction with GBK charset	2025-02-21 17:27:32 +00:00
Anders Schack-Mulligen	1c616d10d4	Merge pull request #18819 from aschackmull/ssa/refactor-phiread3 ... Ssa: Refactor shared SSA in preparation for eliminating phi-read definitions	2025-02-21 08:56:38 +01:00
Chris Smowton	9162ce7d73	Add test for extraction of a Java file with a non-UTF-8 charset	2025-02-20 12:31:36 +00:00
Anders Schack-Mulligen	291ea6f6eb	Java: Move SSA data flow test and extend it to cover phi-read input edges.	2025-02-19 16:17:22 +01:00
Jami	d94dc5aa40	Merge pull request #18504 from jcogs33/jcogs33/java/file-constructor-path-sanitizer ... Java: `File` constructor path sanitizer	2025-02-18 08:00:32 -05:00
Jami Cogswell	61a184c1d7	Java: update more tests	2025-02-14 16:08:06 -05:00
Jami Cogswell	2bb6a3914b	Java: update tests	2025-02-14 15:16:08 -05:00
Jami Cogswell	c0ebeb9c7b	Java: use AdditionalTaintStep	2025-02-14 13:52:43 -05:00
Tom Hvitved	75137a0f4c	Java: Adopt shared SSA library	2025-02-11 10:06:43 +01:00
Jami Cogswell	e8724ab220	Java: sanitize constructor call instead and update test cases	2025-02-05 15:46:10 -05:00
Jami Cogswell	59d454771d	Java: add FileConstructorSanitizer and tests	2025-02-04 17:51:23 -05:00
Owen Mansel-Chan	b4c8390991	Merge pull request #18137 from owen-mc/java/jax-rs-annotation-inheritance ... Java: Update JAX-RS annotation inheritance	2025-01-21 15:26:47 +00:00
Owen Mansel-Chan	19df33fb43	Remove another erroneous comment ... Co-authored-by: Jami <57204504+jcogs33@users.noreply.github.com>	2025-01-21 09:25:37 +00:00
Owen Mansel-Chan	6fa18be0cc	Fix QLDocs	2025-01-20 22:07:01 +00:00
Owen Mansel-Chan	883301938b	Merge pull request #18161 from owen-mc/java/weak-crypto-algo-more-informative ... Java: Make `java/weak-cryptographic-algorithm` give a reason why the algo is insecure	2025-01-13 23:43:04 +00:00
Owen Mansel-Chan	0728b3bd60	Update test expectation	2025-01-10 10:37:05 +00:00
Owen Mansel-Chan	9cc614ac2d	Allow jax-rs path annotation inheritance	2025-01-07 16:44:12 +00:00
Owen Mansel-Chan	de1b374e0e	Test JAX-RS class/interface annotation inheritance	2025-01-07 15:28:41 +00:00
Asger F	be939dca29	Merge pull request #14350 from asgerf/shared/deduplicate-path-graph ... Shared: Add DataFlow::DeduplicatePathGraph	2024-12-18 14:04:29 +01:00
Asger F	8340841d54	Shared: Fix propagation of call bit	2024-12-17 11:16:04 +01:00
Asger F	950ae44d03	Shared: Show test failures	2024-12-17 11:15:57 +01:00
Asger F	f2968f4e14	Shared: Ensure subpath-induced edges are handled properly ... Argument-passing and flow-through edges are present in 'edges' in addition to 'subpaths', but the implementation didn't take this into account.	2024-12-16 13:21:43 +01:00
Michael Nebel	0a1d2d0bbb	Java: Update all test util paths to point to the new location.	2024-12-12 13:21:25 +01:00
Anders Schack-Mulligen	066cfa31d2	Merge pull request #18258 from aschackmull/dataflow/simplify-apapprox3 ... Dataflow: Simplify references to access paths from prior stage.	2024-12-11 14:23:31 +01:00
Asger F	889100a243	Java: update test output with provenance	2024-12-11 13:19:47 +01:00
Asger F	afdbf2c3c6	Java: update test to account for key,val	2024-12-11 13:19:36 +01:00
Asger F	736388809d	Java: MethodAccess -> MethodCall	2024-12-11 13:19:25 +01:00
Asger F	5aa1242117	Shared: use a call bit when tracking reachability to/from a discriminator	2024-12-11 11:29:14 +01:00
Asger F	0eb543e0a9	Java: add test for spurious flow from path graph deduplication	2024-12-11 11:29:13 +01:00
Owen Mansel-Chan	0f3dd6d8f1	Java: IPA the CFG	2024-12-10 15:26:11 +00:00
Anders Schack-Mulligen	da179705c3	Java: Accept expected file changes.	2024-12-10 14:52:06 +01:00
Anders Schack-Mulligen	4bf63fedc9	Merge pull request #18179 from aschackmull/dataflow/accesspath-notypes ... Dataflow: Remove tracked types from Access Paths, track tainted object type, and tweak type pruning.	2024-12-05 09:58:36 +01:00
Jeroen Ketema	89d20fd086	Java: Update expected test results	2024-12-03 19:18:59 +01:00
Anders Schack-Mulligen	9734cff15b	Java/C#: Update expected files.	2024-12-03 12:57:44 +01:00
Owen Mansel-Chan	e6409e159f	Give reason why crypto algorithm is insecure	2024-11-29 11:54:27 +00:00
Anders Schack-Mulligen	df2e2e503a	Merge pull request #17901 from aschackmull/java/allowlist-sanitizer ... Java: Add a default taint sanitizer for contains-checks on lists of constants	2024-11-27 11:09:05 +01:00
yoff	6d6f269e6c	Merge pull request #17997 from yoff/java/inline-range-tests	2024-11-26 14:48:07 +01:00
Anders Schack-Mulligen	0d45f0efb2	Java: Accept consistency check result.	2024-11-26 13:25:43 +01:00
Anders Schack-Mulligen	2b1caa8a35	Java: Add test.	2024-11-26 13:25:42 +01:00
Rasmus Lerchedahl Petersen	f508f8eb83	Java: address review comments	2024-11-26 11:44:16 +01:00
Rasmus Lerchedahl Petersen	25664d0e53	Java: Add support for non-integer bounds in inline expectations	2024-11-25 14:48:17 +01:00