hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
84,884 Commits 1,671 Branches 157 Tags
main
Commit Graph

97 Commits

Author SHA1 Message Date
Max Schaefer
8b3e647ae9 JavaScript: Do not taint for-in loop variable. 2019-07-23 10:52:55 +01:00
semmle-qlci
247848c931 Merge pull request #1577 from asger-semmle/infername 
Approved by xiemaisi
 2019-07-22 21:01:48 +01:00
Geoffrey White
85707cfe3e CPP: Change note. 2019-07-22 11:55:29 +01:00
yh-semmle
12c906c9de Merge pull request #1503 from aschackmull/java/object-tostring-dispatch 
Java: Restrict Object.toString() dispatch based on a more closed-world assumption.
 2019-07-19 09:23:21 -04:00
Anders Schack-Mulligen
3588066ba1 Java: Add qldoc and change note. 2019-07-18 17:53:40 +02:00
Geoffrey White
72d01789a3 CPP: Change note. 2019-07-17 13:23:59 +01:00
Asger F
448f143566 JS: Update change note 2019-07-16 11:23:26 +01:00
Geoffrey White
0a49a68001 CPP: Change note. 2019-07-15 15:01:50 +01:00
Taus
f12c057826 Merge pull request #1470 from markshannon/python-tarslip 
Python: "TarSlip" query
 2019-07-15 12:43:47 +02:00
Robert Marsh
41e46f6686 Merge pull request #1584 from geoffw0/swap 
CPP: Model std::swap
 2019-07-12 10:41:14 -07:00
Geoffrey White
cd449e1336 CPP: Change note. 2019-07-12 18:00:39 +01:00
Geoffrey White
bfe570399a CPP: Update change note. 2019-07-11 20:06:29 +01:00
Geoffrey White
83b0906f67 CPP: Change note. 2019-07-11 20:00:50 +01:00
Asger F
5124fae7b4 JS: Add a change note 2019-07-11 16:23:48 +01:00
Jonas Jensen
2f8787379a Merge pull request #1535 from geoffw0/nospacezero 
CPP: Fix false positives from NoSpaceForZeroTerminator.ql
 2019-07-04 22:36:04 +02:00
Geoffrey White
1fd08f4e47 CPP: Change note. 2019-07-04 17:27:40 +01:00
Pavel Avgustinov
ba4812c4ed Merge pull request #1534 from hvitved/csharp/remove-vcs 
C#: Remove libraries and queries related to version history
 2019-07-03 13:25:15 +01:00
Jonas Jensen
f8722f978f Merge pull request #1533 from zlaski-semmle/zlaski/cpp370cl 
[CPP-370] Non-const format strings: Add change note for the 1.22 release.
 2019-07-03 09:47:58 +02:00
Ziemowit Laski
1118601273 [CPP-370] Rework release note per Jonas' suggestions. 2019-07-02 17:37:17 -07:00
Tom Hvitved
a54ee160a3 C#: Update change note 2019-07-02 14:17:28 +02:00
semmle-qlci
b0b152aaaa Merge pull request #1529 from xiemaisi/js/getter-summaries 
Approved by asger-semmle
 2019-07-02 06:16:34 +01:00
Ziemowit Laski
ef7e051b50 [CPP-370] Add change note for the 1.22 release. 2019-07-01 13:47:53 -07:00
Max Schaefer
a04c2c65cb JavaScript: Add change note. 2019-07-01 15:45:57 +01:00
semmle-qlci
4f3cbe0029 Merge pull request #1521 from hvitved/csharp/constant-condition-fp 
Approved by calumgrant
 2019-07-01 10:52:14 +01:00
Tom Hvitved
db565c5a88 C#: Remove false positives in cs/constant-condition 2019-06-28 11:50:53 +02:00
Mark Shannon
fbe20a96dc Python: Add change note for tarslip query. 2019-06-27 14:48:37 +01:00
Calum Grant
620ecc8128 C#: Address review comments part 1. 2019-06-26 20:24:56 +01:00
Calum Grant
64534d4a7a C#: Analysis change notes 2019-06-26 20:24:55 +01:00
semmle-qlci
1a9f3624c2 Merge pull request #1504 from xiemaisi/js/shift-bigint 
Approved by asger-semmle
 2019-06-26 18:30:48 +01:00
Max Schaefer
e35fde322b JavaScript: Teach ShiftOutOfRange about BigInt. 2019-06-26 09:16:34 -07:00
Jonas Jensen
d2f8029625 Merge pull request #1492 from geoffw0/exprnoeffectweak 
CPP: Fix for 'Expression has no effect' on calls to weak functions
 2019-06-25 10:58:28 +02:00
Geoffrey White
6800abdf23 CPP: Change note. 2019-06-24 22:07:55 +01:00
Jonas Jensen
ad337de6ce Merge branch 'master' into taintedallocfp 2019-06-19 15:35:09 +02:00
Jonas Jensen
53d4b2dfc9 Merge pull request #1365 from geoffw0/uninit 
CPP: Fix for the 'LoopConditionAlwaysTrueUponEntry' logic
 2019-06-19 11:01:57 +02:00
Geoffrey White
659fa477df CPP: Change note. 2019-06-18 16:12:08 +01:00
Tom Hvitved
f408a6ddfc Merge pull request #1404 from calumgrant/cs/dispose-not-called-on-throw 
C#: Improvement to cs/dispose-not-called-on-throw
 2019-06-17 11:25:16 +02:00
Jonas Jensen
41d5d5ab86 Merge pull request #1438 from geoffw0/assignedvalue 
CPP: Support for aggregate initializers in getAnAssignedValue()
 2019-06-14 00:37:46 -07:00
semmle-qlci
7332446ee1 Merge pull request #1444 from esben-semmle/js/express-node-inheritance 
Approved by xiemaisi
 2019-06-12 21:43:44 +01:00
Anders Schack-Mulligen
c199f2e8fe Java: Improve precision of MissingInstanceofInEquals.ql 2019-06-12 14:05:42 +02:00
Esben Sparre Andreasen
59b7b0757a JS: make Express' res/req extend Node's res/req 2019-06-12 12:45:01 +02:00
Calum Grant
3c7510b44b C#: Analysis change notes. 2019-06-11 15:20:27 +01:00
semmle-qlci
7790ac45bd Merge pull request #1409 from esben-semmle/js/more-command-injection 
Approved by xiemaisi
 2019-06-11 11:59:18 +01:00
Esben Sparre Andreasen
299d4c6e93 JS: add additional SystemCommandExecutors 2019-06-11 09:38:10 +02:00
Geoffrey White
6a95ca9743 CPP: Change note. 2019-06-10 15:38:32 +01:00
Geoffrey White
1f036c3d82 CPP: Change note. 2019-06-10 12:09:44 +01:00
Jonas Jensen
cf96035d8c C++: Suspicious pointer scaling: @precision medium 
This query is not producing good enough results to justify `@precision
high`. It's fundamentally looking for a pattern that should correlate
with memory management errors, but it doesn't look for the errors
themselves.
 2019-06-06 21:08:20 -07:00
Jonas Jensen
9830c69892 C++: Put tostring-performance note in 1.22 file 2019-06-04 20:47:29 -07:00