codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00

Author	SHA1	Message	Date
Chris Smowton	4205d5ecea	Change note	2025-03-12 09:21:09 +00:00
Chris Smowton	c43b2b167f	Fix test on Windows	2025-03-12 09:21:08 +00:00
Chris Smowton	0c99ae2800	Add Win32 Maven command	2025-03-12 09:21:07 +00:00
Chris Smowton	cd0aebefa4	Add integration test for failure to download a particular Maven version	2025-03-12 09:21:06 +00:00
Jami Cogswell	e17486a9d8	Java: rename springframework stubs directory from 5.3.8 to 5.8.x	2025-03-11 15:20:58 -04:00
Jami	ea9b0462bf	Merge pull request #18793 from jcogs33/jcogs33/java/spring-boot-actuators-promo Java: Promote Spring Boot Actuators query from experimental	2025-03-11 14:42:14 -04:00
Jami	ad63dd946c	Apply suggestions from docs review Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>	2025-03-10 09:01:04 -04:00
Anders Schack-Mulligen	d075466958	Merge pull request #18941 from aschackmull/ssa/refactor4 Ssa: Extend consistency checks and reduce phi read nodes	2025-03-07 15:18:02 +01:00
Anders Schack-Mulligen	3508ca89e6	Java: Restrict SSA reads to the reachable CFG.	2025-03-07 11:13:53 +01:00
Anders Schack-Mulligen	da579c27fc	Merge pull request #18934 from aschackmull/ssa/refactor5 SSA: Replace the Guards interface in the SSA data flow integration.	2025-03-06 15:11:52 +01:00
Anders Schack-Mulligen	947a85ed28	Java: Enable SSA consistency queries.	2025-03-06 12:47:38 +01:00
Lukas Abfalterer	32e1589745	Update java/ql/src/change-notes/2025-03-03-fix-improper-intent-verification-query.md Co-authored-by: Edward Minnix III <egregius313@github.com>	2025-03-06 09:57:16 +01:00
Owen Mansel-Chan	f2947f7066	Fix indentation	2025-03-05 14:13:53 +00:00
Jami Cogswell	0eec951218	Java: update change note to mention removal from Community Packs	2025-03-05 08:55:51 -05:00
Lukas Abfalterer	b4c75d832c	Merge branch 'main' into cwe-925	2025-03-05 14:15:07 +01:00
Anders Schack-Mulligen	c6761db2fc	SSA: Replace the Guards interface in the SSA data flow integration.	2025-03-05 13:29:31 +01:00
Lukas Abfalterer	41e9a837e5	Fix naming Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>	2025-03-05 12:50:54 +01:00
Anders Schack-Mulligen	709d36b502	Merge pull request #18869 from aschackmull/ssa/refactor3 Ssa: Update qltests including consistency checks	2025-03-05 11:40:27 +01:00
Lukas Abfalterer	c9b75afc2a	Fix QLL and add change notes with tests	2025-03-05 10:23:35 +01:00
Jami Cogswell	82062e2847	Java: update test	2025-03-04 11:15:00 -05:00
Jami Cogswell	746f022cfa	Java: add 'Spring' prefix to public class names	2025-03-04 10:34:16 -05:00
Anders Schack-Mulligen	9e03b12ba0	C#/Java/Ruby/Rust/SSA: Replace DefinitionExt with SourceVariable in data flow integration predicates.	2025-03-04 12:24:21 +01:00
Lukas Abfalterer	a3749530d6	The query should only report cases when the method is not empty.	2025-03-03 10:20:46 +01:00
Jami Cogswell	b0b95965f6	Java: add change note	2025-03-02 17:13:37 -05:00
Jami Cogswell	fbf7513f37	Java: handle lock state check stored in variable	2025-03-02 17:01:18 -05:00
Chris Smowton	79e581f555	Change note	2025-02-28 11:23:10 +00:00
Chris Smowton	1577b40b45	Accept test changes	2025-02-28 11:23:07 +00:00
Chris Smowton	178e90c2f1	Update test expectations for JDK24 upgrade	2025-02-28 11:23:06 +00:00
Alex Eyers-Taylor	5e3ccc0cca	Java: Simplify interpretOutput	2025-02-26 18:20:46 +00:00
Anders Schack-Mulligen	994a8eea39	Merge pull request #18857 from aschackmull/ssa/refactor-df-integr Ssa: Refactor the data flow integration module	2025-02-25 15:04:11 +01:00
Anders Schack-Mulligen	2c3b48946d	Merge pull request #18824 from aschackmull/java/basessa Java: Switch BaseSSA to use shared SSA lib.	2025-02-25 14:23:46 +01:00
Jonas Jensen	2edc9af1e0	Merge pull request #18848 from jbj/StaticInitializationVector-postprocess Java: StaticInitializationVector with postprocess	2025-02-25 12:44:16 +01:00
Owen Mansel-Chan	74a249597a	Merge pull request #18607 from owen-mc/java/xss-content-type-sanitizer Java: Add XSS Sanitizer for `HttpServletResponse.setContentType` with safe values	2025-02-24 23:39:18 +00:00
Jami Cogswell	c2e859c756	Java: add change note	2025-02-24 18:33:45 -05:00
Jami Cogswell	26e396732a	Java: edit qhelp	2025-02-24 18:33:43 -05:00
Jami Cogswell	53cb30dcd0	Java: update metadata, move from CWE-016 to CWE-200	2025-02-24 18:33:41 -05:00
Jami Cogswell	6fe7c7a233	Java: some refactoring	2025-02-24 18:33:29 -05:00
Jami Cogswell	f65a5b9a66	Java: add test for qhelp good example	2025-02-24 18:27:45 -05:00
Jami Cogswell	9e51b014d2	Java: handle example in Spring docs	2025-02-24 18:27:43 -05:00
Jami Cogswell	b2469ff8ba	Java: add APIs and tests for more recent Spring versions: authorizeHttpRequests, AuthorizeHttpRequestsConfigurer, securityMatcher(s)	2025-02-24 18:26:02 -05:00
Jami Cogswell	8dfb920e05	Java: refactor QL, move code to libraries	2025-02-24 18:24:48 -05:00
Jami Cogswell	8064e8f1f9	Java: convert tests to inline expectations	2025-02-24 18:24:26 -05:00
Jami Cogswell	5e5bc2afe9	Java: remove experimental files	2025-02-24 18:24:19 -05:00
Jami Cogswell	089a491d5a	Java: fix tests; update for non-experimental directory	2025-02-24 18:24:17 -05:00
Jami Cogswell	978834bd9c	Java: remove deprecations	2025-02-24 18:24:14 -05:00
Jami Cogswell	2ce5920c5e	Java: copy out of experimental	2025-02-24 18:24:12 -05:00
Anders Schack-Mulligen	db7ec4a781	Java: Remove getDefinitionExt reference	2025-02-24 13:50:08 +01:00
Jonas Jensen	11a0a9f8af	Java: StaticInitializationVector with postprocess Use the new `postprocess` feature for the test of `StaticInitializationVector.ql`. This makes it easier to modify and test this query for diff-informed operation.	2025-02-24 13:33:02 +01:00
Chris Smowton	32e4c741cc	Merge pull request #18554 from smowton/smowton/admin/test-gbk-xml-extraction Java: Add tests for XML and Java extraction with GBK charset	2025-02-21 17:27:32 +00:00
Anders Schack-Mulligen	6932e000c6	Java: Switch BaseSSA to use shared SSA lib.	2025-02-21 08:57:23 +01:00

1 2 3 4 5 ...

12946 Commits