codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00

Author	SHA1	Message	Date
semmle-qlci	89f2dbf8db	Merge pull request #195 from esben-semmle/js/reflected-xss-through-filenames Approved by asger-semmle	2018-09-19 12:42:22 +01:00
Jonas Jensen	86fe0ce42e	Merge pull request #107 from rdmarsh2/rdmarsh/cpp/HashCons C++: HashCons library	2018-09-18 11:45:26 +02:00
Esben Sparre Andreasen	bb48421d77	JS: address doc review comments	2018-09-17 11:08:35 +02:00
Esben Sparre Andreasen	5781b518bc	JS: change notes for js/stored-xss	2018-09-14 15:30:44 +02:00
Asger F	a3562aa4a7	Merge pull request #193 from esben-semmle/js/reduce-precision-of-remote-property-injection JS: lower @precision of js/remote-property-injection	2018-09-14 11:14:13 +01:00
semmle-qlci	abbadf24f0	Merge pull request #192 from esben-semmle/js/additional-array-taint-steps Approved by asger-semmle	2018-09-14 10:02:36 +01:00
Esben Sparre Andreasen	81aeda69e1	JS: lower @precision of js/remote-property-injection	2018-09-14 07:37:47 +02:00
semmle-qlci	961ecfb43f	Merge pull request #187 from esben-semmle/js/additional-whitelisting-form-unbound-event-handlers Approved by asger-semmle	2018-09-14 06:35:39 +01:00
Esben Sparre Andreasen	cb2bd9e0ae	JS: change notes for additional array taint steps	2018-09-13 21:36:53 +02:00
Robert Marsh	1a14b13703	C++: migrate change note	2018-09-13 09:53:41 -07:00
semmle-qlci	3d022298dc	Merge pull request #186 from Semmle/rc/1.18 Approved by esben-semmle	2018-09-13 12:34:54 +01:00
Esben Sparre Andreasen	52013f3071	JS: change notes for improved js/unbound-event-handler-receiver	2018-09-13 08:43:01 +02:00
Felicity Chapman	4d512a5b01	Remove non-LGTM query (see following PR)	2018-09-11 22:54:37 +01:00
Felicity Chapman	7dd891d908	Further updates and addition of query @ids	2018-09-11 22:51:14 +01:00
Felicity Chapman	223bf6cf56	Updates for consistency	2018-09-11 22:31:32 +01:00
semmle-qlci	b17aeb689c	Merge pull request #118 from esben-semmle/js/request-forgery Approved by asger-semmle	2018-09-11 16:28:59 +01:00
Felicity Chapman	f48317f381	Minor updates to prepare for publication	2018-09-11 08:27:20 +01:00
Felicity Chapman	620f99c5a3	Remove template text	2018-09-11 08:14:17 +01:00
Tom Hvitved	70e713122f	Merge branch 'rc/1.18' into merge-rc	2018-09-11 09:11:03 +02:00
Robert Marsh	990bfb4663	C++: change note for HashCons library	2018-09-10 12:22:45 -07:00
Esben Sparre Andreasen	aaf1ac770d	JS: reduce declared precision of js/request-forgery	2018-09-09 21:30:43 +02:00
Jonas Jensen	4051e348eb	Merge pull request #169 from felicity-semmle/1.18/cpp-finalize-change-notes LGTM 1.18: finalize change notes for C/C++	2018-09-09 15:39:40 +02:00
Felicity Chapman	a08177f16b	Address initial feebback	2018-09-09 11:52:35 +01:00
Tom Hvitved	f3eed4aec7	Merge pull request #163 from calumgrant/cs/extractor-fixes C#: Add tests for extractor fixes, and improve CFG for ConstCases	2018-09-07 17:37:40 +02:00
Felicity Chapman	3eab1de2f5	Remove non-LGTM queries from notes (will move to 'studio-cpp.md')	2018-09-07 13:56:55 +01:00
Felicity Chapman	2e0818d8e6	Text changes for consistency and clarity	2018-09-07 13:55:24 +01:00
Felicity Chapman	e7116f57a0	Add query identifiers	2018-09-07 13:24:41 +01:00
Felicity Chapman	6aa6b64b81	Remove placeholders and sort table	2018-09-07 12:05:40 +01:00
semmle-qlci	62e9946fe2	Merge pull request #150 from asger-semmle/ts-asi-bug Approved by xiemaisi	2018-09-05 21:22:29 +01:00
calum	c2f3cb6a2a	C#: Update analysis change notes.	2018-09-05 17:48:45 +01:00
Aditya Sharad	f27945216f	Merge rc/1.18 into master.	2018-09-05 15:32:30 +01:00
Tom Hvitved	061b3d40ea	C#: Fix typos in change note	2018-09-05 14:20:27 +02:00
Tom Hvitved	82b2c00c19	C#: Add change note	2018-09-05 14:20:27 +02:00
semmle-qlci	50b5a3bd71	Merge pull request #151 from asger-semmle/ts-ambient-toplevel Approved by xiemaisi	2018-09-05 10:52:08 +01:00
Jonas Jensen	1bcae97447	Merge pull request #114 from geoffw0/samate-realloc CPP: Handle 'realloc' better in MemoryMayNotBeFreed.ql	2018-09-05 08:35:13 +02:00
Esben Sparre Andreasen	b9d825b379	JS: better matching of String.prototype.search in js/regex-injection	2018-09-05 08:35:00 +02:00
Asger F	4e9c52a3c3	TypeScript: add change note	2018-09-04 15:20:16 +01:00
Asger F	6ceb10371a	TypeScript: rephrase change note	2018-09-04 15:06:04 +01:00
Asger F	f7827b72ab	TypeScript: update change note to mention TypeScript 3.0 support	2018-09-04 14:30:16 +01:00
Asger F	2b8bc63b01	TypeScript: add change note	2018-09-04 14:23:37 +01:00
Esben Sparre Andreasen	68b7a8b57e	JS: change notes for `UrlRequest` libraries and `js/request-forgery`	2018-09-04 09:26:45 +02:00
semmle-qlci	4dec7c5036	Merge pull request #127 from xiemaisi/js/incomplete-sanitisation-doc-improvement Approved by esben-semmle	2018-09-03 16:25:44 +01:00
Jonas Jensen	2fd73f2171	C++: getEnclosingElement-without-macros changenote	2018-09-03 11:29:03 +02:00
Jonas Jensen	b34dbfa68b	C++: Correct change note formatting In Markdown, nested bullet lists are formatted with indented asterisks rather than double asterisks.	2018-09-03 11:29:02 +02:00
Jonas Jensen	18dc1d0af0	Merge pull request #129 from Semmle/changenote-desig-init cherry-pick onto rc/1.18: C++: change note for designated intializer fixes	2018-09-03 11:28:20 +02:00
Max Schaefer	759d98661c	Merge pull request #117 from esben-semmle/js/push-sort-taint-steps JS: support `push` and `sort` taint steps for arrays	2018-09-03 09:20:35 +01:00
Geoffrey White	8e5c170af6	CPP: Change note.	2018-09-03 08:30:05 +01:00
Max Schaefer	58e384558c	JavaScript: Improve query name and help for `js/incomplete-sanitization`. The query applies more generally to all kinds of string escaping and encoding, not just sanitization.	2018-09-03 08:20:01 +01:00
Max Schaefer	20bff709b1	Merge pull request #136 from esben-semmle/js/composed-function-taint JS: model composed functions (RC)	2018-09-03 08:18:20 +01:00
Max Schaefer	7e3adec789	Merge pull request #135 from esben-semmle/js/pick-get-taint-steps JS: model property projection calls (RC)	2018-09-03 08:17:42 +01:00

... 30 31 32 33 34

1667 Commits