hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity
81,790 Commits 1,671 Branches 157 Tags
rc/3.19
Commit Graph

1488 Commits

Author SHA1 Message Date
github-actions[bot]
42e3d31c49 Post-release preparation for codeql-cli-2.22.4 2025-08-18 14:42:42 +00:00
github-actions[bot]
90d29994c8 Release preparation for version 2.22.4 2025-08-18 14:06:09 +00:00
Tom Hvitved
7501e621d1 Shared: Skip non-CFG children in StandardTree 2025-08-15 10:30:47 +02:00
Anders Schack-Mulligen
b67394a450 Merge pull request #20183 from aschackmull/java/barrierguard-wrappers 
Java: Enable BarrierGuard wrappers
 2025-08-14 16:06:21 +02:00
Chuan-kai Lin
34d546ce82 Merge branch 'main' into cklin/alert-filtering-qldoc 2025-08-12 11:11:27 -07:00
Chuan-kai Lin
b20521b648 Shared: Overhaul the AlertFiltering QLDoc 
This commit strengthens the contract for the restrictAlertsTo and the
restrictAlertsToExactLocation extensible predicates.

- restrictAlertsTo is now documented to match any alert location that
  intersects with a specified line range. (Previously an alert location
  matches only when its first line is in a specified line range.)

- restrictAlertsToExactLocation is now documented to match any alert
  location that wholly contains a specific character range. (Previously
  an alert location matchis only when it is exactly the same as a
  specified character range.)

It also contains misc wording changes for clarity.
 2025-08-12 07:43:46 -07:00
Paolo Tranquilli
2b92b83868 Merge pull request #20207 from github/redsun82/rust-toolchain 
Cargo: align rust toolchain version with internal repository
 2025-08-12 11:52:37 +02:00
Tom Hvitved
8436f00b23 Merge pull request #20179 from hvitved/rust/type-inference-certain-follow-up 
Rust: Generalize certain type inference logic
 2025-08-12 10:30:02 +02:00
Paolo Tranquilli
911d6f07b6 Shared tree-sitter extractor: run clippy 2025-08-11 17:04:22 +02:00
Paolo Tranquilli
45c0c46c9d Cargo: align rust toolchain version with internal repository 
Also:
* remove new warnings raised by the rust toolchain
* run new formatting and linting
* update the rust toolchain used by `cargo`

While we keep `bazel` builds using the same toolchain as internally
(now a nightly one), I opted for using a stable toolchain for `cargo`.
The nightly toolchain is only required internally for build reasons, we
should keep not using any unstable rust features in our sources.
 2025-08-11 16:45:47 +02:00
Tom Hvitved
874f951727 Merge pull request #20172 from hvitved/shared/concepts-final-aliases 
Shared: Use `final` aliases in `ConcentsShared.qll`
 2025-08-11 10:14:55 +02:00
Anders Schack-Mulligen
3b3f4bc782 Java/Guards: Remove unused. 2025-08-07 15:43:00 +02:00
Anders Schack-Mulligen
9957cbe656 Java/Guards: Improve BarrierGuards to include validate(x = ...) checks. 2025-08-07 15:42:59 +02:00
Anders Schack-Mulligen
2909def9b6 Guards: Rename predicate. 2025-08-07 14:51:50 +02:00
Anders Schack-Mulligen
a40ae3a11a Guards: Slight join-order improvement. 2025-08-07 14:51:49 +02:00
Anders Schack-Mulligen
ec513ead0d Guards: Add support for extending BarrierGuards with wrapped invocations. 2025-08-07 14:51:48 +02:00
Anders Schack-Mulligen
f90b6ab005 Guards: Add support for wrappers that may throw exceptions. 2025-08-07 14:51:48 +02:00
Anders Schack-Mulligen
b156bd5ce2 Guards: Rename predicate. 2025-08-07 14:51:48 +02:00
Anders Schack-Mulligen
0c31a80f3c Guards: Generalise wrapper guards. 2025-08-07 14:51:47 +02:00
Anders Schack-Mulligen
6e52df1639 Guards: Rename module. 2025-08-07 14:51:47 +02:00
Anders Schack-Mulligen
3aaf48de11 Guards: Remove CustomGuard nesting in Guards instantiation. 2025-08-07 14:51:46 +02:00
Tom Hvitved
1be542ec56 Rust: Generalize certain type inference logic 2025-08-07 10:37:17 +02:00
Tom Hvitved
11dcd90435 Shared: Use final aliases in ConcentsShared.qll 2025-08-05 14:53:52 +02:00
github-actions[bot]
fb4b0aac53 Post-release preparation for codeql-cli-2.22.3 2025-08-04 17:18:08 +00:00
github-actions[bot]
fd82aeb1f8 Release preparation for version 2.22.3 2025-08-04 15:47:57 +00:00
Anders Schack-Mulligen
3b8234ecec SSA: Update data flow integration and BarrierGuard interface to use GuardValue. 2025-07-28 11:29:12 +02:00
Geoffrey White
199f2473e5 Merge pull request #20024 from geoffw0/moresensitive2 
Shared: Improve sensitive data heuristics
 2025-07-23 15:38:24 +01:00
Simon Friis Vindum
49ecc60c0f Merge pull request #20076 from paldepind/rust/type-inference-cleanup-join 
Rust: Type inference refactor and improve join orders
 2025-07-23 12:53:43 +02:00
Geoffrey White
68f0dfe046 Shared: Fix after merge. 2025-07-23 08:55:44 +01:00
Geoffrey White
4f6b698ca3 Merge branch 'main' into moresensitive2 2025-07-23 08:50:25 +01:00
github-actions[bot]
37cc78255a Post-release preparation for codeql-cli-2.22.2 2025-07-22 14:22:20 +00:00
github-actions[bot]
997547b8ef Release preparation for version 2.22.2 2025-07-22 14:04:14 +00:00
Nick Rolfe
825c813095 Revert "Release preparation for version 2.22.2" 2025-07-22 14:33:45 +01:00
github-actions[bot]
c8632b70b7 Release preparation for version 2.22.2 2025-07-21 16:45:45 +00:00
Nick Rolfe
ad9b637bec Revert "Merge pull request #19994 from github/post-release-prep/codeql-cli-2.22.2" 
This reverts commit e5b4a15e35, reversing
changes made to 33e63109bb.
 2025-07-21 15:18:59 +01:00
Simon Friis Vindum
43b2977cb4 Shared, Rust: Reuse hasTypeConstraint in potentialInstantiationOf and factor out multipleConstraintImplementations 2025-07-18 15:33:17 +02:00
Simon Friis Vindum
bdcecdfc2c Shared, Rust: Ensure that the constraints in satisfiesConstraintType are in relevantConstraint 2025-07-18 15:33:16 +02:00
Simon Friis Vindum
475d872ffb Shared, Rust: Adjust type inference predicates to better match use sites 2025-07-18 15:32:42 +02:00
Owen Mansel-Chan
af977e9ac7 Merge pull request #20067 from owen-mc/java/unsafe-deserialization-mad-sinks 
Java: allow the definition of `java/unsafe-deserialization` sinks using data extensions
 2025-07-17 13:42:31 +01:00
Owen Mansel-Chan
ad60aff860 Update which sink kinds are shared between languages 2025-07-16 14:42:12 +01:00
Jeroen Ketema
24bea738c9 Shared: Add missing QLDoc and change note 2025-07-16 14:37:43 +02:00
Jeroen Ketema
199587095a Add overlay annotations 2025-07-14 16:31:04 +02:00
Jeroen Ketema
cbde11ddc9 Properly share ConceptsShared.qll 2025-07-14 16:30:45 +02:00
Jeroen Ketema
f4ba2e1fd0 Properly share CryptoAlgorithms and CryptoAlgorithmNames 2025-07-14 11:39:00 +02:00
Jeroen Ketema
01ee3f7011 Shared: Add shared concepts library 2025-07-14 11:38:39 +02:00
Jonas Jensen
76544f2966 Merge pull request #19943 from asgerf/approximate-related-location 
Support approximate related locations
 2025-07-11 10:16:24 +02:00
Nick Rolfe
3a0def7848 Merge pull request #19989 from github/nickrolfe/ruby-annotations 
Ruby: add overlay annotations to AST/CFG/SSA layers
 2025-07-10 11:53:21 -04:00
Jonas Jensen
3ffda2f341 Shared: Overhaul the AlertFiltering QLDoc 
The documentation is now up-to-date with the new and more relaxed rules
that allow overapproximating the results. I have also attempted to make
a clearer distinction between the requirements of the specification and
the behaviour of the implementation.
 2025-07-09 14:32:18 +02:00
Jonas Jensen
5a1246a586 Merge remote-tracking branch 'upstream/main' into approximate-related-location 2025-07-09 10:10:20 +02:00
Jonas Jensen
0d7a842e2f Shared: improve documentation in AlertFiltering 2025-07-09 09:43:49 +02:00