codeql

mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Author	SHA1	Message	Date
Max Schaefer	db175f5584	JavaScript: Sort change notes alphabetically.	2018-11-19 09:00:38 +00:00
semmle-qlci	9e4aeb36a6	Merge pull request #436 from asger-semmle/url-concat Approved by xiemaisi	2018-11-19 08:57:24 +00:00
Anders Schack-Mulligen	918fc90515	Java: Add change note.	2018-11-16 13:48:50 +01:00
Asger F	0153a4794e	JS: add change note	2018-11-16 10:44:52 +00:00
semmle-qlci	0647743333	Merge pull request #467 from xiemaisi/js/amd-imports Approved by asger-semmle	2018-11-16 09:31:50 +00:00
Tom Hvitved	57bbe0291b	Merge pull request #393 from calumgrant/cs/extractor/dynamic-type-name C#: Minor extractor fixes	2018-11-16 09:09:46 +01:00
calum	9eed758642	C#: Update change notes.	2018-11-15 18:28:17 +00:00
calum	03b8ed6597	C#: Fix indentation in change notes.	2018-11-15 10:49:16 +00:00
Tom Hvitved	185700a236	Merge pull request #437 from calumgrant/cs/in-parameters C#: Correctly handle `in` arguments	2018-11-15 11:47:43 +01:00
Max Schaefer	19b9b85c22	JavaScript: Add change note.	2018-11-14 12:03:04 +00:00
Max Schaefer	4112af5b3f	JavaScript: Add change note.	2018-11-14 09:35:17 +00:00
Max Schaefer	a499009f59	Merge pull request #395 from esben-semmle/js/useless-defensive-code JS: add query: js/useless-defensive-code	2018-11-13 16:55:59 +00:00
calum	9f04ace4ae	C#: Update change notes.	2018-11-13 10:59:41 +00:00
Esben Sparre Andreasen	5666deac14	JS: rename js/useless-defensive-code to js/unneeded-defensive-code	2018-11-13 08:19:38 +01:00
Esben Sparre Andreasen	a636319c97	JS: change notes for js/useless-defensive-code	2018-11-13 08:19:38 +01:00
Esben Sparre Andreasen	37b7b39ec6	JS: change notes for improved js/request-forgery	2018-11-13 08:17:24 +01:00
Esben Sparre Andreasen	577b225429	JS: sort change notes table	2018-11-13 08:17:24 +01:00
Max Schaefer	663bdd60a0	Merge pull request #396 from esben-semmle/js/unconditional-property-override JS: add query: js/unconditional-property-override	2018-11-12 17:10:32 +00:00
Tom Hvitved	dd6fd400aa	Merge pull request #335 from calumgrant/cs/cwe-937 C#: New query VulnerablePackage	2018-11-12 10:34:53 +01:00
semmle-qlci	c9d77a2d6d	Merge pull request #443 from xiemaisi/js/improve-stack-trace-exposure Approved by asger-semmle	2018-11-12 08:40:26 +00:00
Jonas Jensen	0caf0f1f15	Merge pull request #430 from geoffw0/exprtemplate CPP: Exclude template code from ExprHasNoEffect.ql	2018-11-12 09:27:36 +01:00
Max Schaefer	bdfe938d02	JavaScript: Improve `StackTraceExposure` query. It now also flags exposure of the entire exception object (not just the `stack` property).	2018-11-09 09:42:09 +00:00
Max Schaefer	71bbbb77eb	JavaScript: Update 1.19 change notes to remove changes that ended up in 1.18.1.	2018-11-09 09:17:14 +00:00
calumgrant	6fdb0aab41	Merge pull request #426 from hvitved/csharp/accessor-argument C#: Improve `AccessorCall::getArgument()`	2018-11-08 16:03:48 +00:00
Esben Sparre Andreasen	e82f5157c6	JS: change note for js/useless-assignment-to-property	2018-11-08 13:23:19 +01:00
semmle-qlci	3c49bc6e67	Merge pull request #407 from asger-semmle/email-xss Approved by xiemaisi	2018-11-08 10:53:10 +00:00
Tom Hvitved	f7db845331	C#: Add change note	2018-11-08 09:26:59 +01:00
Geoffrey White	5f12c188df	CPP: Change note.	2018-11-07 14:28:24 +00:00
Esben Sparre Andreasen	0afbea968c	Merge pull request #421 from xiemaisi/js/open-source-extractor JavaScript: Open-source extractor	2018-11-07 15:13:27 +01:00
Asger F	92f1c9a521	JS: add change note	2018-11-07 11:31:52 +00:00
semmle-qlci	4225e0bb44	Merge pull request #356 from asger-semmle/parameter-node Approved by xiemaisi	2018-11-07 08:31:05 +00:00
semmle-qlci	2457eb98df	Merge pull request #166 from asger-semmle/documentable-self-assign Approved by esben-semmle, xiemaisi	2018-11-07 08:30:17 +00:00
semmle-qlci	c20e24d549	Merge pull request #385 from asger-semmle/async-model Approved by xiemaisi	2018-11-07 08:28:37 +00:00
Max Schaefer	212a78b5fc	Merge pull request #323 from esben-semmle/js/always-return-type-inference JS: additional return type inference	2018-11-07 08:25:28 +00:00
Max Schaefer	52e5879a2d	JavaScript: Move extractor change notes.	2018-11-07 07:48:25 +00:00
Esben Sparre Andreasen	e396a55653	JS: change notes for type inference improvements	2018-11-06 16:04:46 +01:00
Geoffrey White	698f8953c7	CPP: Change note.	2018-11-06 14:29:08 +00:00
Asger F	799cd33b88	JS: add change note	2018-11-06 12:13:34 +00:00
Geoffrey White	27fe996269	CPP: Change note.	2018-11-05 15:11:17 +00:00
Asger F	ad7ecc1df0	JavaScript: added change note	2018-11-05 11:31:32 +00:00
calum	13f0a401f3	C#: Update analysis change notes.	2018-11-02 16:46:48 +00:00
semmle-qlci	08833465a0	Merge pull request #386 from xiemaisi/js/lodash_partial Approved by esben-semmle	2018-11-01 09:44:14 +00:00
semmle-qlci	a22aa3524e	Merge pull request #388 from asger-semmle/revert-useless-conditional Approved by esben-semmle	2018-11-01 09:23:19 +00:00
semmle-qlci	fa81084d79	Merge pull request #330 from aschackmull/java/zipslip Approved by yh-semmle	2018-10-31 14:40:43 +00:00
semmle-qlci	f00863fb58	Merge pull request #383 from esben-semmle/js/unused-eval-variable Approved by xiemaisi	2018-10-31 10:42:55 +00:00
Asger F	2c11844c5b	Revert "Merge pull request #380 from asger-semmle/generalize-useless-conditional" This reverts commit `28f3b686a7`, reversing changes made to `dc3c5a684c`.	2018-10-31 10:38:38 +00:00
Anders Schack-Mulligen	bf6b7c4734	Java: Add ZipSlip query.	2018-10-31 11:38:27 +01:00
Max Schaefer	c75d785684	JavaScript: Fix modelling of `_.partial`. Like `Function.prototype.bind` (but unlike `ramda.partial`) it takes the curried arguments as rest arguments, not as an array; cf. https://lodash.com/docs/4.17.10#partial and https://underscorejs.org/#partial.	2018-10-31 06:31:59 -04:00
Asger F	0bc30003af	JS: add change note	2018-10-31 10:28:31 +00:00
semmle-qlci	28f3b686a7	Merge pull request #380 from asger-semmle/generalize-useless-conditional Approved by esben-semmle	2018-10-31 07:31:06 +00:00

1 2 3 4 5

250 Commits