Anders Schack-Mulligen
|
14c4d8d565
|
Java: Add change note for #3812.
|
2020-11-04 10:15:08 +01:00 |
|
Anders Schack-Mulligen
|
26495225e0
|
Update java/ql/src/experimental/Security/CWE/CWE-927/SensitiveBroadcast.qhelp
Co-authored-by: Marcono1234 <Marcono1234@users.noreply.github.com>
|
2020-11-04 10:05:55 +01:00 |
|
Anders Schack-Mulligen
|
92494441a7
|
Merge pull request #4554 from aschackmull/dataflow/reverse-partial
Dataflow: Add support reverse partial flow exploration.
|
2020-11-03 15:34:30 +01:00 |
|
luchua-bc
|
f8fd2ea821
|
Add qldoc and autoformat query
|
2020-11-03 12:23:40 +00:00 |
|
Anders Schack-Mulligen
|
89361a3b75
|
Merge pull request #3812 from luchua-bc/java-android-remote-source
Java: Add remote source of Android intent extra
|
2020-11-03 09:35:40 +01:00 |
|
Anders Schack-Mulligen
|
2971784f9c
|
Dataflow: Add missing qldoc and sync.
|
2020-11-03 09:21:48 +01:00 |
|
Anders Schack-Mulligen
|
7eb64aa998
|
Dataflow: Code review fixes.
|
2020-11-03 09:16:20 +01:00 |
|
Anders Schack-Mulligen
|
1ae76a80aa
|
Dataflow: Fix qldoc.
|
2020-11-03 09:16:20 +01:00 |
|
Anders Schack-Mulligen
|
d5be4d7b92
|
Dataflow: Add support reverse partial flow exploration.
|
2020-11-03 09:16:19 +01:00 |
|
luchua-bc
|
864411b4b9
|
Updates to Android stub classes
|
2020-11-02 14:06:44 +00:00 |
|
luchua-bc
|
8da9b9d3ea
|
Add documentation to new library method and use the singular form
|
2020-11-02 10:53:46 +00:00 |
|
luchua-bc
|
c89ebeeb5e
|
Text changes
|
2020-11-01 00:39:00 +00:00 |
|
luchua-bc
|
7ac3fb41d5
|
Clean up query and test files
|
2020-10-31 13:37:36 +00:00 |
|
yo-h
|
5ac8475523
|
Merge pull request #4578 from aschackmull/java/changenotes
Java: Add missing change notes for 1.26
|
2020-10-29 13:32:28 -04:00 |
|
luchua-bc
|
5a6339c1af
|
Remove userid from the regex
|
2020-10-29 15:46:05 +00:00 |
|
Anders Schack-Mulligen
|
5687b7c158
|
Java: Move existing change note to new format.
|
2020-10-29 16:35:27 +01:00 |
|
Anders Schack-Mulligen
|
a9e0f61860
|
Java: Add change note for https://github.com/github/codeql/pull/4287
|
2020-10-29 16:33:09 +01:00 |
|
Anders Schack-Mulligen
|
4cd77175ab
|
Java: Add change note for https://github.com/github/codeql/pull/3542
|
2020-10-29 16:27:51 +01:00 |
|
Anders Schack-Mulligen
|
eddd1ef29c
|
Java: Add change note for https://github.com/github/codeql/pull/4081
|
2020-10-29 16:25:11 +01:00 |
|
Anders Schack-Mulligen
|
e671b463dc
|
Java: Add change note for https://github.com/github/codeql/pull/4123
|
2020-10-29 16:20:35 +01:00 |
|
Anders Schack-Mulligen
|
d6f595f6af
|
Java: Add change note for https://github.com/github/codeql/pull/3543
|
2020-10-29 16:14:56 +01:00 |
|
Anders Schack-Mulligen
|
8b6c3ab9d2
|
Java: Add change note for https://github.com/github/codeql/pull/4088
|
2020-10-29 16:11:26 +01:00 |
|
Anders Schack-Mulligen
|
1efb377465
|
Java: Add change note for https://github.com/github/codeql/pull/3855
|
2020-10-29 16:09:01 +01:00 |
|
Anders Schack-Mulligen
|
d9cef5bd48
|
Java: Add change note for https://github.com/github/codeql/pull/4044
|
2020-10-29 16:05:43 +01:00 |
|
Anders Schack-Mulligen
|
4677eb649e
|
Java: Add change note for https://github.com/github/codeql/pull/3938
|
2020-10-29 16:02:34 +01:00 |
|
Anders Schack-Mulligen
|
9dbfc835fe
|
Java: Add change note for https://github.com/github/codeql/pull/3881
|
2020-10-29 15:54:25 +01:00 |
|
Anders Schack-Mulligen
|
1beb3bdccd
|
Java: Add change note for extensible security queries.
This covers #3928, #3968, and #4172, among others.
|
2020-10-29 15:37:35 +01:00 |
|
Anders Schack-Mulligen
|
e3ba05937f
|
Java: Add change note for https://github.com/github/codeql/pull/3948
|
2020-10-29 15:30:09 +01:00 |
|
Anders Schack-Mulligen
|
7f9713956f
|
Java: Add change note for https://github.com/github/codeql/pull/4312.
|
2020-10-29 15:24:28 +01:00 |
|
Anders Schack-Mulligen
|
0d926dcf70
|
Java: Tweak qhelp to make it markdown-compatible.
|
2020-10-29 14:39:01 +01:00 |
|
luchua-bc
|
90d11812be
|
Update the regex to be the original one
|
2020-10-29 13:04:15 +00:00 |
|
luchua-bc
|
b1d6bc5ba9
|
Use getDeclaringType() for getIntent() method call
|
2020-10-29 12:55:03 +00:00 |
|
luchua-bc
|
2ee9a45e69
|
Use proper class inheritance
|
2020-10-28 22:05:30 +00:00 |
|
luchua-bc
|
908d659906
|
Minor updates
|
2020-10-28 20:23:22 +00:00 |
|
Alvaro Muñoz
|
a57308a519
|
Fix SnakeYaml query to account for Yaml subclasses and compose methods
|
2020-10-28 14:52:14 +01:00 |
|
Alvaro Muñoz
|
c28856d3dc
|
remove wicket taintstep from TaintTrackingUtil
|
2020-10-28 14:51:44 +01:00 |
|
Anders Schack-Mulligen
|
f3e2bd0fd9
|
Merge pull request #3141 from pwntester/InsecureBeanValidation
Insecure Bean Validation query
|
2020-10-28 12:04:12 +01:00 |
|
Anders Schack-Mulligen
|
34ae6e0576
|
Apply suggestions from code review
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-28 09:15:08 +01:00 |
|
luchua-bc
|
99c79f4aa3
|
Enhance the dataflow sink and update test cases
|
2020-10-28 03:07:01 +00:00 |
|
luchua-bc
|
3cc3fe9d37
|
Switch to TaintPreservingCallable and add test cases
|
2020-10-28 00:33:07 +00:00 |
|
Alvaro Muñoz
|
77b551b693
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:12:17 +01:00 |
|
Alvaro Muñoz
|
b9c75ea462
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:12:00 +01:00 |
|
Alvaro Muñoz
|
ac116da0dc
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:11:48 +01:00 |
|
Alvaro Muñoz
|
d5b470ea0c
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:11:27 +01:00 |
|
Alvaro Muñoz
|
9785013c29
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:11:15 +01:00 |
|
Alvaro Muñoz
|
d221930c81
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:10:56 +01:00 |
|
Alvaro Muñoz
|
a9ea63b976
|
Update java/change-notes/2020-10-27-insecure-bean-validation.md
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:10:46 +01:00 |
|
Alvaro Muñoz
|
1fdf0556d2
|
more fixes to make qlhelp linter happy
|
2020-10-27 17:05:00 +01:00 |
|
Alvaro Muñoz
|
aa981caea5
|
more fixes to make qlhelp linter happy
|
2020-10-27 16:32:13 +01:00 |
|
Alvaro Muñoz
|
8974f252ac
|
fix format and qlhelp errors blocking the merge
|
2020-10-27 16:19:39 +01:00 |
|