3699 Commits

Author	SHA1	Message	Date
Tom Hvitved	74ed18a89f	Merge pull request #21035 from hvitved/rust/ord-models ... Rust: Add models for `core::cmp::Ord::{min,max,clamp}`	2025-12-15 17:09:33 +01:00
Óscar San José	2824c98efb	Merge pull request #21025 from github/oscarsj/mergeback-rc-3-20-into-main ... Mergeback rc/3.20 into main	2025-12-15 11:59:58 +01:00
Tom Hvitved	fc49360e81	Rust: Add models for core::cmp::Ord::{min,max,clamp}	2025-12-15 11:52:05 +01:00
Geoffrey White	01f9b42472	Merge branch 'main' into varfps	2025-12-15 08:49:16 +00:00
Tom Hvitved	b61a439491	Merge pull request #21020 from hvitved/shared/source-sink-provenance-prio ... Shared: Prefer source/sink models with manual provenance over generated	2025-12-12 16:01:06 +01:00
Óscar San José	d972af9ef8	Merge branch 'main' of https://github.com/github/codeql into oscarsj/mergeback-rc-3-20-into-main	2025-12-12 13:22:08 +01:00
Tom Hvitved	0b00589f95	Rust: Update expected test output	2025-12-12 11:16:17 +01:00
Tom Hvitved	0b81d44ec7	Rust: Apply same filtering of generated summaries as in C# and Java	2025-12-12 11:16:16 +01:00
Simon Friis Vindum	4425891352	Rust: Don't propagate impl in return position into function bodies	2025-12-12 09:13:04 +01:00
Geoffrey White	ee13a49152	Merge branch 'main' into varfps	2025-12-11 18:21:22 +00:00
Geoffrey White	d88bae9ec2	Rust: Narrow the exclusion a little.	2025-12-11 18:07:12 +00:00
Geoffrey White	5db6b92411	Merge pull request #20887 from github/copilot/add-ecb-cbc-test-cases ... Add ECB and CBC block mode test cases for BrokenCryptoAlgorithm query	2025-12-11 16:22:27 +00:00
Simon Friis Vindum	e13bb0f866	Merge pull request #20879 from paldepind/rust/reads-as-taint ... Rust: Lift content reads as taint steps	2025-12-11 16:05:29 +01:00
Simon Friis Vindum	74a77a7c3c	Rust: Fix typo in change note ... Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2025-12-11 15:04:25 +01:00
Simon Friis Vindum	8c39472d73	Rust: Add change note for reads as taint steps	2025-12-11 09:09:12 +01:00
Tom Hvitved	d5a95a8099	Rust: Strengthen isNotInstantiationOf uses	2025-12-10 20:48:21 +01:00
Tom Hvitved	f30a3b3712	Rust: Add type inference blowup test	2025-12-10 20:48:18 +01:00
Geoffrey White	f1d241f810	Rust: Accept test change.	2025-12-10 18:22:59 +00:00
Geoffrey White	6ca90a2d62	Rust: Change note.	2025-12-10 16:56:26 +00:00
Geoffrey White	c160a1f658	Rust: Fix common FPs for rust/unused-variable and rust/unused-value.	2025-12-10 16:56:24 +00:00
Simon Friis Vindum	c6d2047827	Rust: Update expected files	2025-12-10 15:05:36 +01:00
Simon Friis Vindum	efbc0934c4	Rust: Do not use types to limit lifting of reads to taint steps	2025-12-10 14:35:24 +01:00
Simon Friis Vindum	fe37e3d9be	Rust: Address PR feedback	2025-12-10 14:35:23 +01:00
Simon Friis Vindum	273eb19b88	Rust: Apply suggestions from code review ... Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2025-12-10 14:35:22 +01:00
Simon Friis Vindum	5ba4e30c20	Rust: Exclude range start and end from field taint steps	2025-12-10 14:35:20 +01:00
Simon Friis Vindum	647bed9e2f	Rust: Add extensible predicate to exclude fields and block fieldless enum types	2025-12-10 14:35:19 +01:00
Simon Friis Vindum	6fcd8d194a	Rust: Refactor flow summary implementation	2025-12-10 14:35:18 +01:00
Simon Friis Vindum	047ea10a9a	Rust: Update tests and expected files	2025-12-10 14:35:17 +01:00
Simon Friis Vindum	0f97e7e29d	Rust: Remov unneeded model	2025-12-10 14:35:16 +01:00
Simon Friis Vindum	8a0e5b5675	Rust: Lift content reads as taint steps	2025-12-10 14:35:14 +01:00
Simon Friis Vindum	c5a44cf8ff	Rust: Accept changes to expected files	2025-12-10 11:35:32 +01:00
Geoffrey White	506a1ea0b8	Rust: Add test case for rust/access-after-lifetime-ended involving an invalidated reference.	2025-12-10 11:35:31 +01:00
Simon Friis Vindum	ade7815125	Rust: Add change note	2025-12-10 11:35:29 +01:00
Simon Friis Vindum	7d1acbcb87	Rust: Restrict the scope of DereferenceSink to dereferences of raw pointers	2025-12-10 11:35:28 +01:00
Geoffrey White	fa02842d30	Rust: Accept consistency check changes.	2025-12-10 10:16:22 +00:00
Tom Hvitved	30b903604d	Rust: Update expected test output	2025-12-10 11:02:04 +01:00
Geoffrey White	819a12216e	Merge branch 'main' into copilot/add-ecb-cbc-test-cases	2025-12-10 08:56:20 +00:00
Tom Hvitved	fe18e0e414	Merge pull request #20997 from paldepind/rust/fix-expected ... Rust: Accept changes to expected files	2025-12-09 14:25:36 +01:00
Tom Hvitved	a5f513f178	Merge pull request #20954 from hvitved/rust/stats-more-calls ... Rust: Include more calls in DB quality metrics	2025-12-09 14:14:07 +01:00
Simon Friis Vindum	53ad3282c3	Rust: Accept changes to expected files	2025-12-09 14:01:31 +01:00
Tom Hvitved	31b184a404	Rust: Exclude deref expressions on raw pointers from call resolution stats	2025-12-09 08:54:51 +01:00
github-actions[bot]	2854330759	Post-release preparation for codeql-cli-2.23.8	2025-12-08 15:49:10 +00:00
github-actions[bot]	66c51e979e	Release preparation for version 2.23.8	2025-12-08 14:38:23 +00:00
Tom Hvitved	0280771c51	Merge pull request #20953 from hvitved/rust/data-flow-call-models ... Rust: Model more data flow constructs as calls using MaD	2025-12-08 15:22:02 +01:00
Tom Hvitved	57ce2ee749	Address review comments	2025-12-08 13:27:36 +01:00
Simon Friis Vindum	cd6429a39e	Merge pull request #20969 from paldepind/rust/dispath-default-trait ... Rust: Do not dispatch to all implementations when trait target is accurate	2025-12-08 10:45:55 +01:00
Tom Hvitved	bfa37b8488	Fix typo	2025-12-08 10:17:47 +01:00
Geoffrey White	24852c6664	Merge pull request #20966 from geoffw0/lifetimetest ... Rust: Fix FPs from rust/access-after-lifetime-ended	2025-12-08 09:03:51 +00:00
Óscar San José	bc6133de5c	Merge branch 'main' of https://github.com/github/codeql into oscarsj/merge-back-rc-3.20	2025-12-05 19:31:47 +01:00
Geoffrey White	108db75124	Update rust/ql/lib/codeql/rust/security/AccessAfterLifetimeExtensions.qll ... Co-authored-by: Simon Friis Vindum <paldepind@github.com>	2025-12-05 13:19:38 +00:00