Asger F
8efdc2df7b
Shared: change note
2024-12-11 11:29:11 +01:00
Asger F
cba7b98f7a
Shared: Add DataFlow::DeduplicatePathGraph
2024-12-11 11:29:10 +01:00
Anders Schack-Mulligen
cac131df37
Dataflow: Rename a couple of predicates.
2024-12-11 11:22:42 +01:00
Anders Schack-Mulligen
d6a4080baf
Dataflow: Address review comment.
2024-12-11 11:18:57 +01:00
Anders Schack-Mulligen
40f7713678
Dataflow: Minor simplification.
2024-12-10 13:28:43 +01:00
Anders Schack-Mulligen
4e155f8542
Dataflow: Insert a few getApprox calls to remove ApApprox from fwdFlow.
2024-12-10 13:23:51 +01:00
Anders Schack-Mulligen
231bf9d1c9
Dataflow: Drop ApApprox join in fwdFlowStore.
2024-12-10 13:20:27 +01:00
Anders Schack-Mulligen
501cbdab3c
Dataflow: Remove another ApApprox join and related columns.
2024-12-10 13:12:32 +01:00
Anders Schack-Mulligen
22e0636cba
Dataflow: Insert a few getApprox calls to remove even more columns.
2024-12-10 13:09:38 +01:00
Anders Schack-Mulligen
a77adadd01
Dataflow: Remove more unused columns.
2024-12-10 12:57:24 +01:00
Anders Schack-Mulligen
882a985788
Dataflow: Remove useless join.
2024-12-10 12:53:30 +01:00
Anders Schack-Mulligen
262f64f037
Dataflow: Remove unused columns.
2024-12-10 12:53:29 +01:00
Anders Schack-Mulligen
d4044062c5
Dataflow: Remove ApApprox column in out-flow.
2024-12-10 12:53:29 +01:00
Anders Schack-Mulligen
7c888ebe06
Dataflow: Replace some allowsFieldFlow,apa pairs with emptyAp boolean.
2024-12-10 12:53:29 +01:00
Anders Schack-Mulligen
c8046fa8e0
Dataflow: Drop some ApApprox columns and joins.
2024-12-10 12:53:28 +01:00
Anders Schack-Mulligen
4bf63fedc9
Merge pull request #18179 from aschackmull/dataflow/accesspath-notypes
...
Dataflow: Remove tracked types from Access Paths, track tainted object type, and tweak type pruning.
2024-12-05 09:58:36 +01:00
github-actions[bot]
cf71a1525b
Post-release preparation for codeql-cli-2.20.0
2024-12-04 18:36:17 +00:00
github-actions[bot]
96564b7128
Release preparation for version 2.20.0
2024-12-04 16:01:14 +00:00
Henry Mercer
963f084d87
Merge branch 'main' into henrymercer/merge-back-rc-3.16
2024-12-04 13:39:10 +00:00
Jeroen Ketema
10592bb1c4
Merge pull request #18192 from jketema/inline-rm
...
Remove deprecated `InlineExpectationsTest` class-based API
2024-12-04 11:34:39 +01:00
Anders Schack-Mulligen
c187a7ad34
Dataflow: Address review comments.
2024-12-04 11:22:51 +01:00
Chuan-kai Lin
63c8769323
AlertFiltering: prohibit partial filtering
...
This documentation-only commit clarifies that a query should either
ignore restrictAlertsTo completely or apply restrictAlertsTo filtering
to all alerts. This update eliminates the ambiguity on whether a query
may choose to apply restrictAlertsTo filtering to only some alerts but
not others (it may not).
2024-12-03 12:26:35 -08:00
Jeroen Ketema
8271ad60c1
Remove deprecated InlineExpectationsTest class-based API
2024-12-03 19:18:37 +01:00
Anders Schack-Mulligen
b65a4e45ab
Dataflow: Postpone type pruning until stage 5.
2024-12-03 10:59:12 +01:00
Anders Schack-Mulligen
4933e803cf
Dataflow: Track stored type.
2024-12-03 10:59:11 +01:00
Tom Hvitved
fbeb6f3940
Shared: Move shared logic into FlowSummaryImpl.qll
2024-12-03 09:11:11 +01:00
Anders Schack-Mulligen
e9bd1e5b79
Dataflow: Remove types from access paths.
2024-12-02 13:31:51 +01:00
Anders Schack-Mulligen
5d13d3b434
Dataflow: Refactor - deduplicate fwdFlowRead+consCand join.
2024-12-02 13:02:33 +01:00
Anders Schack-Mulligen
70a8bc302c
Dataflow: Rename typecheckStore.
2024-12-02 12:48:19 +01:00
Tom Hvitved
7f9adbd371
Address review comments
2024-12-02 11:44:17 +01:00
Tom Hvitved
7402276ec7
Data flow: Move more logic into DataFlowImplCommon
2024-11-27 09:03:37 +01:00
Tom Hvitved
143d7e2084
Rust: Use extended canonical paths to resolve calls in data flow
2024-11-22 13:23:39 +01:00
Alexander Eyers-Taylor
c0474c4e45
Revert "Revert "Post-release preparation for codeql-cli-2.19.4""
2024-11-21 15:37:52 +00:00
Alexander Eyers-Taylor
4effe9e364
Revert "Post-release preparation for codeql-cli-2.19.4"
2024-11-21 14:43:15 +00:00
Tom Hvitved
6dc599c200
Merge pull request #17876 from hvitved/dataflow/param-flow-call-ctx
...
Data flow: Track call contexts in `parameterValueFlow`
2024-11-21 10:20:27 +01:00
Tom Hvitved
3f56fc9e89
Address review comments
2024-11-20 13:15:50 +01:00
Tom Hvitved
42e0d7ce10
Util: Refactor DenseRank implementation
2024-11-20 13:09:59 +01:00
Tom Hvitved
e5eed2302f
Data flow: Track call contexts in parameterFlow
2024-11-20 12:57:56 +01:00
github-actions[bot]
3909df75dc
Post-release preparation for codeql-cli-2.19.4
2024-11-19 17:54:03 +00:00
github-actions[bot]
9783a11565
Release preparation for version 2.19.4
2024-11-19 16:21:37 +00:00
Rasmus Lerchedahl Petersen
cd5509a0f9
Java: locations for range analysis
2024-11-15 13:11:25 +01:00
Cornelius Riemenschneider
a66f8209f9
Rust: Vendor 3rdparty dependencies.
...
We've been observing some performance issues using crate_universe on CI.
Therefore, we're moving to vendor the auto-generated BUILD files
in our repository. This should provide a nice speed boost, while
getting rid of the complexity of the "rust cache" job we've been using
when we had a lot of git dependencies.
This PR includes a vendor script, and I'll put up a CI job internally
that runs that vendor script on Cargo.toml and Cargo.lock changes, to check
that the vendored files are in sync.
2024-11-13 13:22:14 +01:00
Cornelius Riemenschneider
e8aa5db07a
Rust: Update cargo dependencies.
...
There was a recent round of tree-sitter-* package releases,
so the latest code is now a) released and b) available on crates.io.
Therefore, move away from the (super slow on CI) git dependencies to released crates instead.
This also includes a run of `cargo update`, so there's a bunch of more changes to the lockfile.
2024-11-11 12:13:14 +01:00
Tom Hvitved
a35a4b2d98
Merge pull request #17887 from hvitved/dataflow/provenance-order
...
Data flow: Order provenance output by textual representation
2024-11-07 14:19:18 +01:00
Michael Nebel
fc8d8bbbb1
Merge pull request #17742 from michaelnebel/csharp/higherordermodels
...
C#: Models for higher order methods.
2024-11-07 11:12:46 +01:00
Tom Hvitved
26b048a645
Address review comment
2024-11-07 10:40:03 +01:00
Geoffrey White
b3f7a8a46f
Merge pull request #17908 from geoffw0/dfcons
...
Rust: Expose counts of data flow inconsistencies
2024-11-06 19:11:04 +00:00
Michael Nebel
e9c9519d90
C#: Address review comments.
2024-11-06 16:29:20 +01:00
Michael Nebel
55cfbccd43
C#/Java: Exclude summaries using callbacks in fields, properties and synthetic fields.
2024-11-06 16:29:19 +01:00
Michael Nebel
fe854812ec
C#: Add read and store steps for delegate calls.
2024-11-06 16:29:13 +01:00
