22 Commits

Author	SHA1	Message	Date
Erik Krogh Kristensen	69365ccd03	remove false positive in missingSpaceInAppend by requring the presence of a word-like fragment	2019-09-26 12:59:05 +02:00
Asger F	17f5984101	Update change-notes/1.22/analysis-javascript.md ... Co-Authored-By: Felicity Chapman <felicity@semmle.com>	2019-08-26 13:10:19 +01:00
Asger F	6364f8bbf7	JS: Change notes for jump-to-def and documentation improvements	2019-08-26 12:55:14 +01:00
Asger F	28d0e890a8	JS: Add change note about CHA	2019-08-24 13:23:34 +01:00
Felicity Chapman	71ac4003f5	Finalize release notes	2019-08-24 12:30:33 +01:00
Max Schaefer	d105de81a3	JavaScript: Raise precision of UndocumentedParameter to high. ... This is more consistent with the other JSDoc queries. Results are still not shown on LGTM by default, but the query can now be enabled selectively for projects that care about JSDoc.	2019-08-20 09:32:00 +01:00
Esben Sparre Andreasen	c4eb258f5b	JS: lower precision of js/conflicting-html-attribute	2019-08-05 09:22:10 +02:00
semmle-qlci	635a8edacc	Merge pull request #1676 from xiemaisi/js/more-tests-classification ... Approved by esben-semmle	2019-08-02 14:02:24 +01:00
Max Schaefer	97c0c97b28	JavaScript: Classify __mocks__ and __tests_ as tests. ... These are conventions used by jest: https://jestjs.io/docs/en/manual-mocks#mocking-user-modules.	2019-08-02 11:15:02 +01:00
semmle-qlci	bb4f00d770	Merge pull request #1015 from esben-semmle/js/cli-cli ... Approved by xiemaisi	2019-08-02 09:57:19 +01:00
Esben Sparre Andreasen	90862fea99	JS: whitelist trivial throwers in js/superfluous-trailing-arguments	2019-08-01 11:49:43 +02:00
Esben Sparre Andreasen	bf4a324a86	JS: add query js/indirect-command-line-injection	2019-07-31 09:24:25 +02:00
Max Schaefer	3e6629d007	JavaScript: Deprecate multi-argument isBarrier and isSanitizer predicates. ... We informally deprecated them in 1.21, this commit deprecates them properly and removes support from the implementation. The predicates themselves will be removed in a future release.	2019-07-30 16:32:08 +01:00
semmle-qlci	143016ed96	Merge pull request #1635 from xiemaisi/js/dont-taint-for-in ... Approved by asger-semmle	2019-07-26 08:32:14 +01:00
Max Schaefer	8b3e647ae9	JavaScript: Do not taint for-in loop variable.	2019-07-23 10:52:55 +01:00
Asger F	448f143566	JS: Update change note	2019-07-16 11:23:26 +01:00
Asger F	5124fae7b4	JS: Add a change note	2019-07-11 16:23:48 +01:00
semmle-qlci	b0b152aaaa	Merge pull request #1529 from xiemaisi/js/getter-summaries ... Approved by asger-semmle	2019-07-02 06:16:34 +01:00
Max Schaefer	a04c2c65cb	JavaScript: Add change note.	2019-07-01 15:45:57 +01:00
Max Schaefer	e35fde322b	JavaScript: Teach ShiftOutOfRange about BigInt.	2019-06-26 09:16:34 -07:00
Esben Sparre Andreasen	59b7b0757a	JS: make Express' res/req extend Node's res/req	2019-06-12 12:45:01 +02:00
Esben Sparre Andreasen	299d4c6e93	JS: add additional SystemCommandExecutors	2019-06-11 09:38:10 +02:00