2155 Commits

Author	SHA1	Message	Date
Dave Bartolomeo	92bd550c55	Merge pull request #15531 from github/post-release-prep/codeql-cli-2.16.2 ... Post-release preparation for codeql-cli-2.16.2	2024-02-08 05:58:17 -08:00
Maiky	62bd3ac748	Merge branch 'main' into maikypedia/swift-zip	2024-02-08 12:29:46 +01:00
Maiky	9ce75dac0e	Update UnsafeUnpackQuery.qll	2024-02-07 14:26:56 +01:00
github-actions[bot]	b5139078d0	Post-release preparation for codeql-cli-2.16.2	2024-02-06 19:22:35 +00:00
github-actions[bot]	c1b35fbf47	Release preparation for version 2.16.2	2024-02-05 17:58:57 +00:00
James Ockers	9f7f9fcc6e	Updating change-notes to reflect what will be the visible change to end users	2024-02-02 11:38:17 -08:00
James Ockers	0f1e21aa09	Adding per-language change-notes	2024-01-30 17:28:34 -08:00
James Ockers	eb5e0123d6	exclude certification from maybeCertificate() regexes	2024-01-30 13:16:18 -08:00
GitHub Security Lab	00d1f8e84a	Merge branch 'main' into maikypedia/swift-zip	2024-01-25 11:05:46 +01:00
github-actions[bot]	d0b74c00fe	Post-release preparation for codeql-cli-2.16.1	2024-01-23 23:02:29 +00:00
github-actions[bot]	7ef611e6dc	Release preparation for version 2.16.1	2024-01-23 19:45:16 +00:00
Geoffrey White	8cf691a477	Swift: Add File.getRelativePath and update swift/diagnostics/successfully-extracted-files.	2024-01-19 17:58:58 +00:00
Mathias Vorreiter Pedersen	6391346ade	Swift: Add 'nomagic'.	2024-01-16 23:08:20 +00:00
Mathias Vorreiter Pedersen	1fba345fb3	Merge pull request #15219 from rdmarsh2/rdmarsh2/swift/parameterized-cfg-library ... Swift: switch to shared, parameterized CFG library	2024-01-16 21:54:05 +00:00
Alexander Eyers-Taylor	934474681d	Merge pull request #15254 from github/post-release-prep/codeql-cli-2.16.0 ... Post-release preparation for codeql-cli-2.16.0	2024-01-16 14:50:40 +00:00
AlexDenisov	696a72a127	Merge pull request #15259 from github/alexdenisov/swift-5.9.2 ... Swift: upgrade to 5.9.2	2024-01-16 12:49:13 +01:00
Mathias Vorreiter Pedersen	e735ced751	Swift: Autoformat.	2024-01-15 15:24:27 +00:00
github-actions[bot]	57df8b92df	Post-release preparation for codeql-cli-2.16.0	2024-01-15 15:00:50 +00:00
Paolo Tranquilli	1d483cff1d	Swift: fix upgrade script	2024-01-10 12:09:11 +01:00
Tom Hvitved	c9cf2a899c	Merge pull request #15260 from hvitved/dataflow/may-benefit-from-cctx-simplify ... Data flow: Remove column from `mayBenefitFromCallContext`	2024-01-10 11:43:15 +01:00
Tom Hvitved	f90201eb56	Data flow: Remove column from mayBenefitFromCallContext	2024-01-09 11:34:43 +01:00
Alex Denisov	0e73531aa9	Swift: upgrade to 5.9.2	2024-01-09 09:23:32 +01:00
Robert Marsh	ec6d8da6b6	Swift: merge ControlFlowGraphParameter into ControlFlowGraphImplSpecific	2024-01-08 21:31:15 +00:00
Geoffrey White	6636c76af8	Merge pull request #15122 from geoffw0/pwhash ... Swift: Query for Use of an inappropriate cryptographic hashing algorithm on passwords	2024-01-08 14:11:02 +00:00
github-actions[bot]	a6c8cc9551	Release preparation for version 2.16.0	2024-01-08 13:11:26 +00:00
Robert Marsh	2d457e17d6	Swift: autoformat for CFG library	2024-01-05 21:28:07 +00:00
Robert Marsh	86f59a1c13	Swift: add AnnotatedExitNode to cfg to match prior interface	2024-01-05 21:25:08 +00:00
Robert Marsh	ea4855bc06	Swift: add change note for parameterized CFG library	2024-01-05 21:24:44 +00:00
Robert Marsh	2f0d052558	Swift: header comment for ControlFlowGraphParameter	2024-01-05 21:19:46 +00:00
Robert Marsh	41ac0fca85	Swift: use toString and Location from shared CFG library	2024-01-03 21:11:15 +00:00
Robert Marsh	a9c917010f	Swift: fix missing keypath CFGs	2023-12-22 17:55:00 +00:00
Aditya Sharad	b1803d0ac2	Merge rc/3.12 into main	2023-12-21 16:40:51 -08:00
github-actions[bot]	8f72b0e4f7	Post-release preparation for codeql-cli-2.15.5	2023-12-19 10:32:57 +00:00
github-actions[bot]	19af35b29a	Release preparation for version 2.15.5	2023-12-18 21:22:44 +00:00
Geoffrey White	0b04e4abe5	Swift: Address QL-for-QL alerts.	2023-12-15 14:48:30 +00:00
Geoffrey White	034daa9b35	Swift: Address false positives.	2023-12-15 13:29:49 +00:00
Anders Schack-Mulligen	1ea1130271	Merge pull request #15062 from aschackmull/dataflow/deprecate-flowstatestring ... Dataflow: Deprecate FlowStateString.	2023-12-15 11:59:04 +01:00
Geoffrey White	363ec0a917	Swift: Update swift/summary/query-sinks.	2023-12-14 20:22:36 +00:00
Geoffrey White	9ec08c1c4b	Swift: Add a couple of sinks missing from sensitive data hashing as well.	2023-12-14 18:04:35 +00:00
Geoffrey White	7ba18e64a0	Swift: Add sinks for algorithms that are OK for sensitive data hashing but not for password hashing.	2023-12-14 18:04:34 +00:00
Geoffrey White	c2d49c0fff	Swift: Address a weakness in the sensitive data regexs.	2023-12-14 18:04:34 +00:00
Geoffrey White	22ed20dd7c	Swift: Upgrade SecKeyCopyExternalRepresentation source to be considered a password / key rather than a miscellaneous credential.	2023-12-14 18:04:34 +00:00
Robert Marsh	3738e19db6	Swift: fix compilation failures outside CFG code	2023-12-14 16:39:51 +00:00
Geoffrey White	10b4c98e80	Swift: Move password sources to be reported by the new query.	2023-12-14 16:09:47 +00:00
Geoffrey White	5faa25fc6c	Swift: Make passwords their own sensitive data type.	2023-12-14 16:09:47 +00:00
Geoffrey White	b5a45c64ff	Swift: Define barriers, additional flow steps and sinks.	2023-12-14 16:09:47 +00:00
Geoffrey White	e5bf929cdb	Swift: Split off WeakPasswordHashingExtensions.qll as we normally do.	2023-12-14 16:09:46 +00:00
Geoffrey White	db1508d108	Swift: Trivial changes - query ID / metadata, imports.	2023-12-14 16:09:46 +00:00
Geoffrey White	9774c3cb4f	Swift: Copy WeakPasswordHashing query from csharp.	2023-12-14 16:09:45 +00:00
Geoffrey White	be7d0acfea	Swift: Minor fixes for the existing weak sensitive data hashing query (naming consistency, remove unused import).	2023-12-14 16:09:45 +00:00