codeql

mirror of https://github.com/github/codeql.git synced 2026-04-25 16:55:19 +02:00

Author	SHA1	Message	Date
Owen Mansel-Chan	57eaed4dcc	Refactor: remove fields from `EncryptionOperation` Co-authored-by: Copilot <copilot@github.com>	2026-04-22 13:37:35 +01:00
Owen Mansel-Chan	6efb21314a	Merge pull request #21523 from owen-mc/docs/mad/barriers Document models-as-data barriers and barrier guards and add change notes	2026-04-21 13:49:19 +01:00
github-actions[bot]	a0bab539bb	Post-release preparation for codeql-cli-2.25.3	2026-04-20 12:40:34 +00:00
github-actions[bot]	c861d99802	Release preparation for version 2.25.3	2026-04-20 09:27:23 +00:00
Owen Mansel-Chan	bc28e1726c	Refactor to get rid of duplication	2026-04-17 13:24:16 +01:00
Owen Mansel-Chan	9f4fd7fab0	Remove a data flow consistency exclusion This is no longer needed.	2026-04-17 11:27:36 +01:00
Owen Mansel-Chan	f6135b70ea	Remove global function step from local flow	2026-04-16 11:15:01 +01:00
Owen Mansel-Chan	8f17b73796	Fix link formatting in change notes	2026-04-14 15:27:37 +01:00
Owen Mansel-Chan	c86ba38a4e	Add change notes	2026-04-14 15:27:31 +01:00
Owen Mansel-Chan	6e0bee7471	Merge pull request #21691 from github/dependabot/go_modules/go/extractor/extractor-dependencies-2d1b0e128d Bump the extractor-dependencies group across 1 directory with 2 updates	2026-04-14 15:26:00 +01:00
Henry Mercer	43c9b95e6f	Merge branch 'main' into post-release-prep/codeql-cli-2.25.2	2026-04-14 13:56:52 +01:00
Owen Mansel-Chan	7458674470	Merge pull request #21584 from owen-mc/shared/update-mad-comments Shared: update code comments explaining models-as-data format to include barriers and barrier guards	2026-04-14 09:30:28 +01:00
dependabot[bot]	b19f2c6874	Bump the extractor-dependencies group in /go/extractor with 2 updates Bumps the extractor-dependencies group in /go/extractor with 2 updates: [golang.org/x/mod](https://github.com/golang/mod) and [golang.org/x/tools](https://github.com/golang/tools). Updates `golang.org/x/mod` from 0.34.0 to 0.35.0 - [Commits](https://github.com/golang/mod/compare/v0.34.0...v0.35.0) Updates `golang.org/x/tools` from 0.43.0 to 0.44.0 - [Release notes](https://github.com/golang/tools/releases) - [Commits](https://github.com/golang/tools/compare/v0.43.0...v0.44.0) --- updated-dependencies: - dependency-name: golang.org/x/mod dependency-version: 0.35.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: extractor-dependencies - dependency-name: golang.org/x/tools dependency-version: 0.44.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: extractor-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2026-04-14 03:04:45 +00:00
github-actions[bot]	242090e0ac	Post-release preparation for codeql-cli-2.25.2	2026-04-06 13:49:20 +00:00
github-actions[bot]	4fe2f6d2b4	Release preparation for version 2.25.2	2026-04-06 10:30:38 +00:00
Mario Campos	fb871cdfb8	Add tests for multiple Git sources and GoProxy servers in registry config parsing	2026-04-02 10:12:48 -05:00
Óscar San José	59eec7ffa2	Merge branch 'main' of https://github.com/github/codeql into post-release-prep/codeql-cli-2.25.1	2026-03-30 10:51:12 +02:00
github-actions[bot]	ce6e6d5db3	Post-release preparation for codeql-cli-2.25.1	2026-03-30 08:43:48 +00:00
Owen Mansel-Chan	a7fdc4b543	Replace `acceptingvalue` with `acceptingValue`	2026-03-27 22:15:45 +00:00
Owen Mansel-Chan	b3285c6ae2	Make description of `acceptingvalue` column clearer	2026-03-27 11:35:22 +00:00
Owen Mansel-Chan	e680d49c93	Shared: document extensible relations rather than CSV	2026-03-27 09:47:32 +00:00
Owen Mansel-Chan	805d2ec46c	Go: Add provenance to MaD format explanation	2026-03-27 09:47:28 +00:00
Owen Mansel-Chan	10fddc7b96	Add barriers and barrier guards to MaD format explanations	2026-03-27 09:47:24 +00:00
github-actions[bot]	fb011842c9	Release preparation for version 2.25.1	2026-03-25 23:43:06 +00:00
github-actions[bot]	8cf0954796	Release preparation for version 2.25.1	2026-03-25 08:28:30 +00:00
Óscar San José	2139b97628	Merge branch 'main' into post-release-prep/codeql-cli-2.25.0	2026-03-19 13:07:00 +01:00
Owen Mansel-Chan	5b17d8cf76	Merge pull request #21472 from owen-mc/adjust-severity/xss-log-injection Adjust `@security-severity` metadata for XSS and log injection queries	2026-03-18 16:51:14 +00:00
github-actions[bot]	e3dbf5b022	Post-release preparation for codeql-cli-2.25.0	2026-03-16 16:03:22 +00:00
github-actions[bot]	d6055754b6	Release preparation for version 2.25.0	2026-03-16 12:15:34 +00:00
Owen Mansel-Chan	b8b841cfba	Add `overlay[loca]` in 4 more tests	2026-03-13 16:19:00 +00:00
Owen Mansel-Chan	99f4930e24	Explicitly mark DataFlowNodes.qll as overlay[local]	2026-03-13 15:23:39 +00:00
Owen Mansel-Chan	e9df9147ad	Add overlay annotations in 4 PrintAst tests	2026-03-13 15:03:05 +00:00
Owen Mansel-Chan	f32f85399a	Mark various files as `overlay[local]`	2026-03-13 15:03:02 +00:00
Jonas Jensen	c56feb7644	Go: annotate the standard library with for overlay This commit is auto-generated with: python3 config/add-overlay-annotations.py go	2026-03-13 15:03:01 +00:00
Owen Mansel-Chan	52809133f5	Add change notes	2026-03-13 11:10:43 +00:00
Owen Mansel-Chan	056aa342fe	Change @security-severity for log injection queries from 7.8 to 6.1	2026-03-13 10:02:01 +00:00
Owen Mansel-Chan	f58a6e5d3a	Change @security-severity for XSS queries from 6.1 to 7.8	2026-03-13 10:01:02 +00:00
dependabot[bot]	c9e0927992	Bump the extractor-dependencies group across 1 directory with 2 updates Bumps the extractor-dependencies group with 2 updates in the /go/extractor directory: [golang.org/x/mod](https://github.com/golang/mod) and [golang.org/x/tools](https://github.com/golang/tools). Updates `golang.org/x/mod` from 0.33.0 to 0.34.0 - [Commits](https://github.com/golang/mod/compare/v0.33.0...v0.34.0) Updates `golang.org/x/tools` from 0.42.0 to 0.43.0 - [Release notes](https://github.com/golang/tools/releases) - [Commits](https://github.com/golang/tools/compare/v0.42.0...v0.43.0) --- updated-dependencies: - dependency-name: golang.org/x/mod dependency-version: 0.34.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: extractor-dependencies - dependency-name: golang.org/x/tools dependency-version: 0.43.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: extractor-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-13 03:04:44 +00:00
Owen Mansel-Chan	d7d1554461	Merge pull request #21465 from owen-mc/go/small-tweaks Go: improve detection of type expressions when database is missing some type information	2026-03-12 14:58:16 +00:00
Owen Mansel-Chan	0bb6ff58cc	Merge pull request #21466 from owen-mc/go/add-nil-helper-predicate Go: Add and use `exprRefersToNil` predicate	2026-03-12 14:36:03 +00:00
Owen Mansel-Chan	c271755985	Add and use `exprRefersToNil` predicate	2026-03-12 13:28:57 +00:00
Owen Mansel-Chan	a16c43881b	Use "database" instead of "snapshot" in QLDocs	2026-03-12 13:28:06 +00:00
Owen Mansel-Chan	39e0382089	Improve QLDoc for `isTypeExprTopDown`	2026-03-12 13:28:05 +00:00
Owen Mansel-Chan	22e012c6f4	Expand `isTypeExprTopDown` We should be using all subtypes of `FieldBase`. This allows us to find more type expressions, and is also simpler to evaluate.	2026-03-12 13:28:03 +00:00
Mario Campos	6fb10555ff	Correct comment about AES crypto algorithm strength	2026-03-11 09:27:03 -05:00
Óscar San José	3b9eba2afc	Merge branch 'main' of https://github.com/github/codeql into oscarsj/merge-back-rc-3.21	2026-03-06 16:20:36 +01:00
Owen Mansel-Chan	c82f75604a	Add change notes	2026-03-05 10:34:30 +00:00
Owen Mansel-Chan	d4ba2d68f9	Go: Inline expectation should have space after $ This was a regex-find-replace from `// \$(?! )` (using a negative lookahead) to `// $ `.	2026-03-04 12:44:57 +00:00
github-actions[bot]	e152f08468	Post-release preparation for codeql-cli-2.24.3	2026-03-02 22:51:27 +00:00
github-actions[bot]	7795badd18	Release preparation for version 2.24.3	2026-03-02 13:23:40 +00:00

1 2 3 4 5 ...

3556 Commits