codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00

Author	SHA1	Message	Date
yoff	40851aeaef	Merge pull request #18687 from github/tausbn/python-print-file-path-on-context-error Python: Print file path when logging context errors	2025-02-06 15:01:06 +01:00
Asger F	d3b9d1d89d	JS: Partial SSRF does not select the sink location	2025-02-06 11:30:32 +01:00
Asger F	7d6abb4e0a	JS: Disable diff-informedness for full SSRF Partial SSRF uses its result in a way that prevents diff-informedness	2025-02-06 11:30:18 +01:00
Asger F	d3ee658399	Python: resolve remaining TODOs	2025-02-06 10:27:56 +01:00
Asger F	975ce064fc	Python: implement for polynomial redos	2025-02-06 10:27:45 +01:00
Asger F	15c2ccb880	Python: ignore experimental for now	2025-02-06 10:27:43 +01:00
Asger F	9dfd1cc608	Python: Fixup broken patch	2025-02-06 10:27:21 +01:00
Asger F	e4a1847dad	Python: mass enable diff-informed data flow	2025-02-06 10:27:19 +01:00
Taus	60d97e0e16	Python: Print file path when logging context errors This makes it _much_ easier to find the offending bit of syntax.	2025-02-05 13:13:39 +00:00
Remco Vermeulen	9894e9ef9f	Add CCR suites	2025-02-05 01:58:34 +00:00
Joe Farebrother	287cf0121d	Fix docs	2025-02-04 15:28:13 +00:00
Joe Farebrother	3802a73f47	Update docs	2025-02-04 14:46:02 +00:00
Joe Farebrother	e8adef18a3	Update to inline expectations + fixes	2025-02-04 14:45:59 +00:00
Joe Farebrother	aa2c84ea36	Move tests to separate folder	2025-02-04 14:45:56 +00:00
Joe Farebrother	0bf8d4ec4b	Exclude 'methods' used in initialisation, and allow self for metaclass methods	2025-02-04 14:45:52 +00:00
Joe Farebrother	fa76bf3c9f	Fix formatting and rewrite redundant exists	2025-02-04 14:45:48 +00:00
Joe Farebrother	526e235fc1	Update NonSelf and NonCls queries	2025-02-04 14:45:44 +00:00
github-actions[bot]	f1b05a79a4	Post-release preparation for codeql-cli-2.20.4	2025-02-04 09:25:09 +00:00
github-actions[bot]	573e53e454	Release preparation for version 2.20.4	2025-02-03 15:19:35 +00:00
erik-krogh	a1afa20d4b	add change-notes	2025-01-27 22:43:13 +01:00
erik-krogh	90b403b40b	py: delete the remainder of the deprecated TypeTracker libary	2025-01-27 22:17:18 +01:00
erik-krogh	34f5f61a10	all: use my script to delete outdated deprecations	2025-01-27 22:16:48 +01:00
github-actions[bot]	fbb7f0a0c6	Post-release preparation for codeql-cli-2.20.2	2025-01-20 21:11:14 +00:00
github-actions[bot]	a0512a50f2	Release preparation for version 2.20.2	2025-01-20 21:11:12 +00:00
Joe Farebrother	d248fbfe57	Merge pull request #18301 from joefarebrother/python-model-missing-builtins Python: Add models for builtins `map`, `filter`, `zip`, and `enumerate`.	2025-01-20 16:39:37 +00:00
Paolo Tranquilli	4ab5650979	Python: add some more FP tests around match	2025-01-17 11:01:00 +01:00
Geoffrey White	90faab456d	Merge pull request #18473 from geoffw0/sensitive2 Improve shared sensitive data library handling of snake_case variable names	2025-01-15 18:02:33 +00:00
Joe Farebrother	344dd2dab5	Qldoc fix	2025-01-15 10:26:37 +00:00
Joe Farebrother	2aea356756	Add change note + fix tests	2025-01-15 10:24:18 +00:00
Joe Farebrother	6a6585e415	Add tests for zip and enumerate	2025-01-15 09:57:15 +00:00
Joe Farebrother	460de3f7d5	Reduce generality of map and zip for performance	2025-01-14 09:39:57 +00:00
Joe Farebrother	4e36008ed9	Add tests	2025-01-14 09:39:56 +00:00
Joe Farebrother	642f9dcbea	Model missing builtins	2025-01-14 09:39:54 +00:00
yoff	599411b440	Merge pull request #17787 from yoff/shared/add-location-to-typetracking-nodes shared: Add locations to type tracking nodes	2025-01-13 23:06:09 +01:00
Joe Farebrother	a7fb73a2b2	Merge pull request #18185 from joefarebrother/python-lxml Python: Model additional flow steps for the lxml framework	2025-01-10 13:40:16 +00:00
Geoffrey White	5ef5b04aac	Add change notes.	2025-01-10 11:16:53 +00:00
Tom Hvitved	303b11ec36	Merge pull request #18298 from hvitved/rust/mad-source-sink Rust: Add support for MaD sources and sinks with access paths	2025-01-10 11:49:51 +01:00
Geoffrey White	f8659c0a4e	Sync identical files.	2025-01-10 10:26:13 +00:00
Taus	4141b4fb8a	Python: Add metrics query for type annotations Adds a query that counts the number of type annotations of various kinds. Intended to be used with something like MRVA to inform our modelling decisions. Currently the query counts the following "interesting" types in addition to the total number of types: - Built-in types (which are less likely to be interesting from a modelling perspective) - Forward declarations (i.e. annotations inside strings) which will require a fair bit of QL machinery to interpret. - Simple types (stuff like `foo` or `foo.bar.baz`) - Optional types (stuff like `Optional[foo]` which from a modelling perspective should likely be treated the same as `foo`) - Complex types (anything that contains more complex type constructions such as instantiations of generic types)	2025-01-08 15:41:31 +00:00
yoff	aca5a51a78	Merge branch 'main' into shared/add-location-to-typetracking-nodes	2025-01-08 12:47:05 +01:00
github-actions[bot]	fb20f6ca63	Post-release preparation for codeql-cli-2.20.1	2025-01-07 22:07:40 +00:00
Dave Bartolomeo	4c53caf021	Update python/ql/lib/change-notes/released/3.1.0.md	2025-01-07 15:58:28 -05:00
Dave Bartolomeo	45c00d6880	Update python/ql/lib/CHANGELOG.md	2025-01-07 15:58:19 -05:00
github-actions[bot]	88b6f1e79a	Release preparation for version 2.20.1	2025-01-07 20:50:36 +00:00
Dave Bartolomeo	72a53c4b23	Revert "Release preparation for version 2.20.1"	2025-01-07 13:32:23 -05:00
Dave Bartolomeo	cb31394729	Update python/ql/lib/CHANGELOG.md	2025-01-07 12:23:52 -05:00
Dave Bartolomeo	2e46d26eca	Update python/ql/lib/change-notes/released/3.1.0.md	2025-01-07 12:22:31 -05:00
github-actions[bot]	fbf9f2fff8	Release preparation for version 2.20.1	2025-01-07 17:20:13 +00:00
Dave Bartolomeo	22e030584c	Revert "Release preparation for version 2.20.1"	2025-01-07 12:14:27 -05:00
Joe Farebrother	35961e454b	Fix tests to check for the correct type	2025-01-07 15:23:07 +00:00

... 3 4 5 6 7 ...

9339 Commits