hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 09:43:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
78,658 Commits 1,672 Branches 157 Tags
rust-ti-implementing-type-method
Commit Graph

1667 Commits

Author SHA1 Message Date
Robert Marsh
34f8653979 C++: change note for taint def-by-ref 2019-04-22 10:46:36 -07:00
yh-semmle
04954f77de Merge pull request #1262 from sb-semmle/more-spring-sources 
Parameters annotated with Spring's @RequestBody and @PathVariable are remote input sources.
 2019-04-18 18:08:44 -04:00
Sebastian Bauersfeld
734fe542ab Update change notes. 2019-04-18 16:37:08 -04:00
Geoffrey White
56e0adf152 CPP: Change note. 2019-04-18 10:34:20 +01:00
semmle-qlci
f36eafce3f Merge pull request #1246 from xiemaisi/js/hardcoded-password 
Approved by asger-semmle
 2019-04-17 08:54:09 +01:00
calum
b628060ddd C#: Address review comments. 2019-04-16 17:38:55 +01:00
calum
e16cbe0ca1 C#: Analysis change notes. 2019-04-16 16:45:49 +01:00
Max Schaefer
4c9edafef3 Merge pull request #1211 from esben-semmle/js/type-tracking-for-incomplete-hostname-regexp 
JS: type tracking for js/incomplete-hostname-regexp
 2019-04-15 12:19:46 +01:00
Max Schaefer
1d5bb97121 JavaScript: Refine PasswordInConfigurationFile to avoid FPs. 
We now exclude passwords that look like they might be filled in via
templating or shell substitution.
 2019-04-15 12:10:21 +01:00
Esben Sparre Andreasen
2d66069d60 JS: change notes for js/incomplete-hostname-regexp 2019-04-12 08:51:28 +02:00
semmle-qlci
ccbb7ce04b Merge pull request #1224 from asger-semmle/cheerio 
Approved by esben-semmle
 2019-04-11 15:21:44 +01:00
semmle-qlci
ed5fd96603 Merge pull request #1227 from asger-semmle/typescript3.4 
Approved by xiemaisi
 2019-04-11 10:39:57 +01:00
Esben Sparre Andreasen
a6cf9503da Merge pull request #1235 from xiemaisi/js/include-yaml 
JavaScript: Teach AutoBuilder to extract YAML files by default.
 2019-04-11 09:28:59 +02:00
Max Schaefer
f22cb186e3 JavaScript: Teach AutoBuilder to extract YAML files by default. 2019-04-10 18:47:06 -07:00
Asger F
91f4916d07 TS: update supported compiler versions 2019-04-10 14:13:45 +01:00
Asger F
78b00e16d7 TS: change note 2019-04-10 14:11:11 +01:00
Robert Marsh
75ab311c3a Merge pull request #1223 from geoffw0/commentedoutcode 
CPP: Detect commented out preprocessor logic
 2019-04-09 16:16:19 -04:00
Asger F
39bafa354e JS: Add change note 2019-04-09 12:22:20 +01:00
Tom Hvitved
3f403b8f0d Merge pull request #1208 from felicity-semmle/support/SD-3189-move 
Documentation: move support information into a version-neutral location
 2019-04-09 10:01:14 +02:00
Geoffrey White
5bd5b1b6ce CPP: Change note. 2019-04-08 18:19:30 +01:00
Esben Sparre Andreasen
52d86471af JS: whitelist another emptiness check for the type-confusion query 2019-04-08 09:52:27 +02:00
Max Schaefer
cb22192378 Merge pull request #1196 from asger-semmle/shelljs 
JS: Add model for shelljs
 2019-04-05 16:45:45 +01:00
yh-semmle
3d2ae00788 Merge pull request #1201 from aschackmull/java/intmulttolong-w-range 
Java: Use range analysis in IntMultToLong (ODASA-7836).
 2019-04-05 11:14:46 -04:00
Asger F
80f413177a Merge branch 'master' into shelljs 2019-04-05 14:44:32 +01:00
semmle-qlci
063dbeeff3 Merge pull request #1198 from esben-semmle/js/more-express-route-handlers 
Approved by xiemaisi
 2019-04-05 09:47:51 +01:00
Anders Schack-Mulligen
b5681a1260 Java: Add change note. 2019-04-05 10:44:42 +02:00
Max Schaefer
2f84aac7df Merge pull request #1193 from esben-semmle/js/improve-createServer 
JS: treat the last argument to https.createServer as a route handler
 2019-04-05 08:57:24 +01:00
Tom Hvitved
67ed863c76 Merge pull request #1200 from calumgrant/cs/icryptotransform 
C#: Tidy up cs/thread-unsafe-icryptotransform-field-in-class
 2019-04-05 09:28:24 +02:00
Jonas Jensen
b555f5025e Merge pull request #1209 from geoffw0/gmtime 
CPP: Add variants to PotentiallyDangerousFunction.ql
 2019-04-05 09:19:40 +02:00
yh-semmle
6ba57fc639 Merge pull request #1202 from aschackmull/java/slf4j-print-array 
Java: Exclude slf4j calls in PrintLnArray as it supports array formatting.
 2019-04-04 20:08:20 -04:00
Esben Sparre Andreasen
0ec0aa35be JS: change notes for Express 2019-04-04 21:42:23 +02:00
Mark Shannon
2ba122373a Merge pull request #1128 from taus-semmle/python-paramiko-unsafe-host-key-validation 
Python: Add query for insecure SSH host key policies in Paramiko.
 2019-04-04 16:57:13 +01:00
Geoffrey White
e8b7bf9ddf CPP: Change note. 2019-04-04 16:38:42 +01:00
Felicity Chapman
bec6316c09 Move support information into a version-neutral location 2019-04-04 16:17:09 +01:00
Asger F
a2b8721898 JS: Add change note 2019-04-04 11:45:59 +01:00
Anders Schack-Mulligen
d144ea2f1c Java: Exclude slf4j calls in PrintLnArray as it supports array formatting. 2019-04-04 11:09:41 +02:00
yh-semmle
b226cb64cd Merge pull request #1189 from aschackmull/java/preconditions 
Java: Support precondition calls as guards (ODASA-7796).
 2019-04-03 21:36:08 -04:00
Ziemowit Laski
970c45e896 Merge branch 'master' into cpp340a 2019-04-03 17:52:46 -07:00
Jonas Jensen
d0091b28ee Merge pull request #1199 from geoffw0/printfld 
CPP: Support %Ld in printf.qll
 2019-04-03 15:38:16 +02:00
Anders Schack-Mulligen
9211927112 Java: Add change note. 2019-04-03 13:17:18 +02:00
calum
42b2f09315 C#: Tidy up query, remove false-positives and add some more test cases. 2019-04-03 12:17:01 +01:00
Geoffrey White
aa21db3ed3 CPP: Change note. 2019-04-03 11:57:38 +01:00
Esben Sparre Andreasen
3c608fe11e Merge branch 'master' into js/improve-createServer 2019-04-03 12:37:33 +02:00
semmle-qlci
1da828fa80 Merge pull request #1195 from esben-semmle/js/firebase-express-requests 
Approved by xiemaisi
 2019-04-03 11:36:02 +01:00
Esben Sparre Andreasen
f23a5a5fee JS: model firebase-functions/https.onRequest 2019-04-03 08:01:45 +02:00
Geoffrey White
2e106879b8 CPP: Change note. 2019-04-02 14:25:38 +01:00
Esben Sparre Andreasen
0b733b4f23 JS: treat the last argument to https.createServer as a route handler 2019-04-02 14:38:31 +02:00
semmle-qlci
02f4695a5b Merge pull request #1152 from esben-semmle/js/koa-improvements 
Approved by xiemaisi
 2019-04-02 08:51:19 +01:00
Ziemowit Laski
96b8bdfeb5 [CPP-340] Add new queries to analysis-cpp.md; correct id of 
TooFewArguments.ql
 2019-04-01 19:15:27 -07:00
Esben Sparre Andreasen
86a046a28e JS: change notes for Koa improvements 2019-04-01 22:55:17 +02:00