Erik Krogh Kristensen
|
9403026fff
|
add change note
|
2020-03-17 11:48:02 +01:00 |
|
Geoffrey White
|
034f7cc948
|
Merge branch 'master' into model-gets
|
2020-03-16 15:12:36 +00:00 |
|
Geoffrey White
|
40db92bfd1
|
C++: Change note.
|
2020-03-16 13:22:00 +00:00 |
|
semmle-qlci
|
7e093a8e5c
|
Merge pull request #3041 from erik-krogh/JQueryAjax
Approved by esbena
|
2020-03-14 22:31:59 +00:00 |
|
Esben Sparre Andreasen
|
4d6aa20990
|
Merge pull request #3004 from esbena/js/additional-mongodb-and-mongoose-injection-sinks
JS: Mongoose and MongoDB improvements
|
2020-03-14 12:31:43 +01:00 |
|
Geoffrey White
|
cecbdae3e1
|
C++: Change note.
|
2020-03-13 17:58:31 +00:00 |
|
Jonas Jensen
|
917b984909
|
Merge pull request #3050 from geoffw0/mismatching_placement_new
C++: Fix mismatching new/free FP in template code.
|
2020-03-12 12:42:29 +01:00 |
|
Geoffrey White
|
f84c94b5fb
|
C++: Change note.
|
2020-03-11 18:11:51 +00:00 |
|
Erik Krogh Kristensen
|
2c18144560
|
change note
|
2020-03-11 17:01:41 +01:00 |
|
Erik Krogh Kristensen
|
dd261c51f7
|
add change note
|
2020-03-11 14:42:57 +01:00 |
|
Rasmus Wriedt Larsen
|
2da1503942
|
Merge branch 'master' into python-support-django2
|
2020-03-11 11:21:47 +01:00 |
|
Esben Sparre Andreasen
|
5b1b945c35
|
JS: distinguishes escapes in strings and regular expression literals
|
2020-03-10 12:26:20 +01:00 |
|
Esben Sparre Andreasen
|
e61f522f30
|
JS: bump change notes for mongodb
|
2020-03-10 09:57:45 +01:00 |
|
Max Schaefer
|
3c785ecaa7
|
JavaScript: Move flow summaries to experimental.
Also update description and change note to call out their experimental character more clearly.
|
2020-03-09 12:57:20 +00:00 |
|
Asger Feldthaus
|
a9a9c14eea
|
JS: Change note
|
2020-03-07 15:15:13 +00:00 |
|
semmle-qlci
|
7891f8621e
|
Merge pull request #2982 from esbena/js/request-model-with-chaining
Approved by asgerf
|
2020-03-06 08:57:42 +00:00 |
|
Esben Sparre Andreasen
|
db335ae89b
|
JS: add default/chaining for request
|
2020-03-04 12:36:49 +01:00 |
|
Asger Feldthaus
|
6f2b05932e
|
JS: Change note
|
2020-03-04 11:18:12 +00:00 |
|
Esben Sparre Andreasen
|
4625217a68
|
Merge branch 'master' of github.com:Semmle/ql into js/more-fs-modules
|
2020-03-03 15:07:51 +01:00 |
|
semmle-qlci
|
7f3f629d39
|
Merge pull request #2913 from asger-semmle/js/prototype-pollution-path
Approved by erik-krogh
|
2020-03-03 10:29:47 +00:00 |
|
Esben Sparre Andreasen
|
adddebf039
|
Merge branch 'master' of github.com:Semmle/ql into js/more-fs-modules
|
2020-03-03 10:55:16 +01:00 |
|
semmle-qlci
|
e1c5449885
|
Merge pull request #2867 from erik-krogh/UselessCat
Approved by esbena
|
2020-03-03 09:10:25 +00:00 |
|
Erik Krogh Kristensen
|
019266e537
|
change name of Useless cat
|
2020-03-02 13:06:08 +01:00 |
|
Anders Schack-Mulligen
|
b210009eec
|
Merge pull request #2923 from yo-h/java-customizations
Java: add `Customizations.qll`
|
2020-03-02 09:58:34 +01:00 |
|
Esben Sparre Andreasen
|
a589061bee
|
JS: add type-tracking to the fs-module and model the original-fs
|
2020-02-28 12:54:59 +01:00 |
|
Erik Krogh Kristensen
|
ce9cd53bf1
|
Merge remote-tracking branch 'upstream/master' into UselessCat
|
2020-02-28 09:56:23 +01:00 |
|
Erik Krogh Kristensen
|
17f1974e05
|
Apply suggestions from code review
Co-Authored-By: mc <42146119+mchammer01@users.noreply.github.com>
|
2020-02-28 09:43:32 +01:00 |
|
Asger Feldthaus
|
52ebe49a0b
|
JS: Flag deep assignments in prototype pollution query
|
2020-02-27 12:17:55 +00:00 |
|
Erik Krogh Kristensen
|
9c06c48dc7
|
Merge pull request #2884 from esbena/js/practically-exploitable-redos
JS: add query js/exploitable-polynomial-redos
|
2020-02-27 10:19:17 +01:00 |
|
Esben Sparre Andreasen
|
1b73cee692
|
JS: add js/exploitable-polynomial-redos
|
2020-02-27 08:42:43 +01:00 |
|
yo-h
|
62f8bf2b2e
|
Java: add release note for Customizations.qll
|
2020-02-26 14:36:27 -05:00 |
|
Asger F
|
160fc48803
|
Merge pull request #2896 from asger-semmle/typescript-3.8
TS: Support Typescript 3.8
|
2020-02-25 08:19:01 +00:00 |
|
Asger F
|
e665e3c187
|
Update change-notes/1.24/analysis-javascript.md
Co-Authored-By: Esben Sparre Andreasen <esbena@github.com>
|
2020-02-24 15:07:28 +00:00 |
|
Asger Feldthaus
|
6360073da4
|
JS: Rephrase change note
|
2020-02-24 14:35:17 +00:00 |
|
Erik Krogh Kristensen
|
b72404dc99
|
add change note
|
2020-02-24 14:07:49 +01:00 |
|
Geoffrey White
|
06e649fc30
|
C++: Add support for fgetws.
|
2020-02-24 11:47:32 +00:00 |
|
Asger Feldthaus
|
05d9e64dab
|
TS: Add change note
|
2020-02-24 11:40:27 +00:00 |
|
Geoffrey White
|
34b790d601
|
C++: Change note.
|
2020-02-24 11:33:27 +00:00 |
|
Asger Feldthaus
|
1ee112a341
|
JS: Add change note
|
2020-02-21 13:55:27 +00:00 |
|
semmle-qlci
|
ee5cf95f5b
|
Merge pull request #2892 from asger-semmle/js/field-methods
Approved by esbena
|
2020-02-21 13:49:42 +00:00 |
|
Rasmus Wriedt Larsen
|
e804e98d60
|
Python: Update change-notes
|
2020-02-21 14:08:09 +01:00 |
|
Asger Feldthaus
|
01fed95fe6
|
JS: Add change note
|
2020-02-21 11:49:20 +00:00 |
|
Robert Marsh
|
7a7444b4e1
|
Docs: Simplify change note
Co-Authored-By: Felicity Chapman <felicitymay@github.com>
|
2020-02-20 12:50:52 -08:00 |
|
Robert Marsh
|
d151c2eeb7
|
C++: change note for IR-based GVN
|
2020-02-19 14:39:36 -08:00 |
|
Robert Marsh
|
8ea5739b7a
|
C++: release note for DefaultTaintTracking
|
2020-02-19 14:32:49 -08:00 |
|
Esben Sparre Andreasen
|
abe7aeef7c
|
Merge pull request #2643 from esbena/js/unsafe-jquery
JS: add query js/unsafe-jquery-plugin
|
2020-02-18 09:26:14 +01:00 |
|
semmle-qlci
|
ecad925101
|
Merge pull request #2631 from hvitved/dataflow/generalize-flow-summaries
Approved by aschackmull
|
2020-02-17 18:22:46 +00:00 |
|
semmle-qlci
|
23ed2bcc64
|
Merge pull request #2782 from asger-semmle/js/export-as-ns
Approved by erik-krogh, max-schaefer
|
2020-02-17 11:22:58 +00:00 |
|
Tom Hvitved
|
8e325ead91
|
Add change notes
|
2020-02-17 11:00:10 +01:00 |
|
Max Schaefer
|
ad83a8946c
|
JavaScript: Sort lines in change notes.
|
2020-02-14 11:15:09 +00:00 |
|