Joe
|
1f99607624
|
Java: PrintAst: Improve test
|
2020-09-24 14:31:24 +01:00 |
|
Joe
|
45651cf123
|
Java: PrintAst: Add a synthetic node for the initialisers of for statements
|
2020-09-24 14:31:24 +01:00 |
|
Anders Schack-Mulligen
|
d4d4c0f3f9
|
Merge pull request #4325 from aibaars/hibernate-changenote
Java: change note for Hiberate ORM improvements
|
2020-09-24 12:58:45 +02:00 |
|
Jonathan Leitschuh
|
17603c8091
|
Update java/ql/src/Security/CWE/CWE-338/JHipsterGeneratedPRNG.qhelp
Co-authored-by: Felicity Chapman <felicitymay@github.com>
|
2020-09-23 13:59:49 -04:00 |
|
Arthur Baars
|
5894263671
|
Java: improve change note
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
|
2020-09-23 15:37:55 +02:00 |
|
Jonathan Leitschuh
|
645d7c8831
|
Fix documentation in apache/Lang.qll
|
2020-09-22 15:04:06 -04:00 |
|
Jonathan Leitschuh
|
8578bc5cf0
|
Update java/ql/src/Security/CWE/CWE-338/JHipsterGeneratedPRNG.qhelp
Co-authored-by: Felicity Chapman <felicitymay@github.com>
|
2020-09-22 15:02:00 -04:00 |
|
Jonathan Leitschuh
|
24fe3d0663
|
Apply suggestions from code review
Co-authored-by: Felicity Chapman <felicitymay@github.com>
|
2020-09-22 13:11:11 -04:00 |
|
Arthur Baars
|
252f8aa89d
|
Java: add Spring::MultipartRequest as taint source
|
2020-09-22 19:01:10 +02:00 |
|
Arthur Baars
|
b382711f14
|
Java: change note for Hiberate ORM improvements
|
2020-09-22 18:55:07 +02:00 |
|
Tamás Vajk
|
54c35748f0
|
Merge pull request #4193 from tamasvajk/feature/sign-analysis
C#: Sign analysis
|
2020-09-22 15:33:33 +02:00 |
|
Anders Schack-Mulligen
|
66e2ed9b65
|
Merge pull request #4031 from aibaars/hibernate
Add additional Hibernate SQL sinks
|
2020-09-22 15:29:40 +02:00 |
|
Anders Schack-Mulligen
|
47506a859e
|
Merge pull request #4287 from joefarebrother/exectainted-array
Java: Improve the ExecTainted query
|
2020-09-22 13:16:05 +02:00 |
|
Tom Hvitved
|
71da9045e5
|
Java/Python: Reduce size of blockPrecedesVar
|
2020-09-22 11:00:26 +02:00 |
|
Jonathan Leitschuh
|
ab618dcf2f
|
Java: QL Query Detector for JHipster Generated CVE-2019-16303
|
2020-09-21 18:46:13 -04:00 |
|
Tamas Vajk
|
8bf4a4209c
|
C#: Sign analysis
Synced between Java and C# through `identical-files.json`.
|
2020-09-21 16:15:12 +02:00 |
|
Tamas Vajk
|
441fbe3215
|
Add Java test file for sign analysis
|
2020-09-21 15:07:09 +02:00 |
|
Anders Schack-Mulligen
|
4a3118b13e
|
Merge pull request #4246 from RasmusWL/java-fix-ssa-varBlockReaches
Java: Minor fixup for SSA AdjacentUsesImpl::varBlockReaches
|
2020-09-21 13:28:20 +02:00 |
|
Rasmus Wriedt Larsen
|
233dd43635
|
Java: Port varBlockReaches fix to BaseSSA.qll
|
2020-09-21 12:11:25 +02:00 |
|
Joe
|
9baf2b9eff
|
Fix cartesian product
|
2020-09-18 15:42:03 +01:00 |
|
Joe
|
abb1731be7
|
Java: Simplify the implementation of ExecTainted
|
2020-09-18 15:21:03 +01:00 |
|
Anders Schack-Mulligen
|
b3bf570fb7
|
Merge pull request #4301 from lcartey/java/update-cwe-claims
Java: Update some CWE claims
|
2020-09-18 16:08:40 +02:00 |
|
Joe
|
3cc38feebc
|
Fix a couple of typos in QLDoc comments
|
2020-09-18 14:51:38 +01:00 |
|
lcartey@github.com
|
2c6f587ee9
|
Java: Add coverage claim for CWE 193 (off by one)
|
2020-09-18 12:51:24 +01:00 |
|
lcartey@github.com
|
39200566c3
|
Java: Update CWE claims for XXE.
This matches the claims in the C# equivalent.
|
2020-09-18 12:30:52 +01:00 |
|
Joe
|
3258134098
|
Java: Remove superfluous conjunct
|
2020-09-18 10:41:06 +01:00 |
|
lcartey@github.com
|
32f43a84be
|
Java: Add CWE 564 (SQL Injection: Hibernate)
|
2020-09-18 10:20:21 +01:00 |
|
Joe
|
9c643ec1cd
|
Java: Fix formatting
|
2020-09-17 17:46:05 +01:00 |
|
Joe
|
69fd579dfd
|
Java: Fix QLDoc
|
2020-09-17 17:37:16 +01:00 |
|
Joe
|
2da6234317
|
Java: Fix QLDoc
|
2020-09-17 17:31:24 +01:00 |
|
Joe
|
6d0df7cb3a
|
Java: Add a container node for Imports in the PrintAst view
|
2020-09-17 17:29:36 +01:00 |
|
Joe
|
810baad63f
|
Java: Fix formatting
|
2020-09-17 17:13:55 +01:00 |
|
Joe
|
fcfc836720
|
Java: Add tests for ExecTainted
|
2020-09-17 16:47:55 +01:00 |
|
Joe
|
b6cf1cce20
|
Java: Make the equivalent changes to ExecTaintedLocal
|
2020-09-17 15:53:04 +01:00 |
|
Joe
|
6bfc0afaeb
|
Java: Improve the ExecTainted query
|
2020-09-17 15:39:35 +01:00 |
|
Tamás Vajk
|
5079deb92a
|
Merge pull request #4268 from tamasvajk/feature/java-range-analysis-fn
Java: Fix range analysis false negative
|
2020-09-16 11:08:33 +02:00 |
|
Joe
|
7e9b1a2975
|
Java: PrintAst: Fix more formatting issues
|
2020-09-15 17:15:00 +01:00 |
|
Joe
|
3be8fa5155
|
Java: PrintAst: Fix formatting
|
2020-09-15 15:10:56 +01:00 |
|
Joe
|
28338eb32e
|
Java: PrintAst: Various minor fixes of typos
Fix references to C#
Fix getAPrimaryQlClass for JavadocTag
Fix typo for Import
Update test outputs
|
2020-09-15 15:02:56 +01:00 |
|
Joe
|
53ab8dac06
|
Java: PrintAst: Fix failing tests
|
2020-09-15 14:45:48 +01:00 |
|
Joe
|
112b6d28a1
|
Java: PrintAst: Handle multiple javadocs in one element correctly
|
2020-09-15 14:45:48 +01:00 |
|
Joe
|
e38b583ec4
|
Java: PrintAst: Add tests
|
2020-09-15 14:45:48 +01:00 |
|
Joe
|
b73e7d8390
|
Java: PrintAST: Support Javadoc
|
2020-09-15 14:45:48 +01:00 |
|
Joe
|
c3320eeb3c
|
Java: Improve getAPrimaryQlClass
Implement it for more types
Fix typos
|
2020-09-15 14:45:48 +01:00 |
|
Joe
|
908f025888
|
Java: PrintAst: Fix a couple of issues related to Annotations
|
2020-09-15 14:45:48 +01:00 |
|
Joe
|
c20f802666
|
Java: PrintAst: Supprt generic parameters
|
2020-09-15 14:45:48 +01:00 |
|
Joe
|
19af3e5e30
|
Java: Add PrintAST
|
2020-09-15 14:45:48 +01:00 |
|
Joe
|
efe3ac0a37
|
Java: Rename the existing file called PrintAst.qll
|
2020-09-15 11:30:56 +01:00 |
|
Tamas Vajk
|
23a9d0764e
|
Java: Fix range analysis false negative
|
2020-09-15 12:09:05 +02:00 |
|
Tamas Vajk
|
c66473cb8a
|
Java: Add test for range analysis
|
2020-09-15 12:07:30 +02:00 |
|