codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00

Author	SHA1	Message	Date
ubuntu	cd1d50b637	Update expected output	2020-08-26 23:50:15 +02:00
Erik Krogh Kristensen	db57f3661e	Merge branch 'main' into ts4	2020-08-21 15:08:30 +02:00
ubuntu	5d6e6be4e4	Add query-tests	2020-08-16 15:02:52 +02:00
Erik Krogh Kristensen	15a74493e0	more permissive path elements in `js/incomplete-url-substring-sanitization`	2020-08-13 11:46:13 +02:00
Erik Krogh Kristensen	3fb9c28806	adjust comment about slash position	2020-08-13 11:46:13 +02:00
Erik Krogh Kristensen	d95d427c5b	better support for the `&&=`, `\|\|=`, and `??=` operators	2020-08-13 09:22:32 +02:00
Erik Krogh Kristensen	1d111c3e1f	expand what urls are detected by `js/incomplete-url-substring-sanitization`	2020-08-12 14:25:35 +02:00
CodeQL CI	8855ab8c8c	Merge pull request #3835 from Raz0r/js/xss-protocol-sinks Approved by erik-krogh	2020-08-03 15:40:05 +01:00
CodeQL CI	a4f8b19ae4	Merge pull request #3876 from erik-krogh/CWE078-Correctness Approved by esbena	2020-08-03 15:38:51 +01:00
Max Schaefer	91762ec274	JavaScript: Add partial model for `opener`. 3.5M weekly downloads. Note that we do not treat the first argument as a command-injection sink. While it is possible to inject commands that way, it is more likely to cause false positives where the user input is concatenated with some prefix that makes the opening heuristic decide to treat it as a URL.	2020-07-27 11:42:32 +01:00
Max Schaefer	9aa26fa4bc	JavaScript: Add model for `foreground-child`. >1M weekly downloads, so seems worth doing.	2020-07-27 11:37:06 +01:00
Max Schaefer	2f842042ea	JavaScript: Model another `execa` function relevant for command injection.	2020-07-27 11:34:04 +01:00
Erik Krogh Kristensen	ec38df69b3	update consistency comments for CWE-918	2020-07-08 10:24:55 +02:00
Erik Krogh Kristensen	c5285f7418	update inconsistency comment for CWE-843	2020-07-08 10:16:43 +02:00
Erik Krogh Kristensen	45b6906a0d	move comments to match alert location for CWE-834	2020-07-08 10:16:04 +02:00
Erik Krogh Kristensen	71a3d49d2b	update comments to match alert location for CWE-807	2020-07-08 10:15:26 +02:00
Erik Krogh Kristensen	d814e73023	update comment position to match alert location for CWE-798	2020-07-08 10:12:12 +02:00
Erik Krogh Kristensen	bcffc97de7	update comment position to match alert location for CWE-776	2020-07-08 10:10:31 +02:00
Erik Krogh Kristensen	2235634347	update consistency comments for CWE-754	2020-07-08 10:08:51 +02:00
Erik Krogh Kristensen	0d64a0f2c8	update consistency comment for CWE-730	2020-07-08 10:07:34 +02:00
Erik Krogh Kristensen	5a87628478	update consistency comments for CWE-611	2020-07-08 10:03:03 +02:00
Erik Krogh Kristensen	1f1c09af02	update consistency comments for CWE-601	2020-07-08 10:02:29 +02:00
Erik Krogh Kristensen	ce6a211340	update inconsistency comment for CWE-506	2020-07-08 10:01:40 +02:00
Erik Krogh Kristensen	bf36137834	update inconsistency comment for CWE-346	2020-07-08 10:01:04 +02:00
Erik Krogh Kristensen	16b0427dc4	update inconsistency comment for CWE-338	2020-07-08 10:00:19 +02:00
Erik Krogh Kristensen	9bcbedde46	update consistency comment in passwords.js	2020-07-08 09:55:00 +02:00
Erik Krogh Kristensen	664c5e64b4	add [INCONSISTENCY] comment in CodeInjection test	2020-07-08 09:48:12 +02:00
Raz0r	3487ec17d0	add tests	2020-07-07 16:26:14 +03:00
Erik Krogh Kristensen	442ee8d1cc	add consistency-checking for CWE-089	2020-07-06 19:02:50 +02:00
semmle-qlci	fe0c5a9ea6	Merge pull request #3892 from asger-semmle/js/redirect-starts-with-sanitizer Approved by esbena	2020-07-06 17:04:30 +01:00
semmle-qlci	6d80445f24	Merge pull request #3851 from erik-krogh/queryStuff Approved by esbena	2020-07-06 14:40:41 +01:00
Erik Krogh Kristensen	2a8b37e004	update consistency comments in unsafe-jquery-plugin.js Co-authored-by: Esben Sparre Andreasen <esbena@github.com>	2020-07-06 14:15:23 +02:00
Erik Krogh Kristensen	c986f3bb7c	add consistency checking for CWE-079	2020-07-06 13:42:35 +02:00
Erik Krogh Kristensen	dc8042adeb	introduce conistency-checking for CWE-078	2020-07-06 12:47:56 +02:00
Erik Krogh Kristensen	8585312271	fix typo in js/shell-command-constructed-from-input	2020-07-06 10:33:49 +02:00
Asger Feldthaus	b5104ae42d	JS: Add StartsWith sanitizer	2020-07-03 14:46:07 +01:00
Asger Feldthaus	4c06eb8bfe	JS: Add test showing FPs	2020-07-03 14:45:42 +01:00
Erik Krogh Kristensen	261821b32c	Merge remote-tracking branch 'upstream/master' into queryStuff	2020-07-02 16:08:05 +02:00
semmle-qlci	97128b1475	Merge pull request #3829 from asger-semmle/js/xss-substr Approved by erik-krogh	2020-07-02 11:58:32 +01:00
semmle-qlci	45ef3ec4a8	Merge pull request #3619 from erik-krogh/CWE022-Correctness Approved by asgerf	2020-07-01 20:07:58 +01:00
Erik Krogh Kristensen	3157cd724d	add noSQL tests for type-tracking req.query	2020-07-01 11:45:09 +02:00
Erik Krogh Kristensen	bace2994c3	add test for type-tracking req.params	2020-07-01 11:38:54 +02:00
Esben Sparre Andreasen	c7f67fafd9	JS: support additional promisification of the fs-module members	2020-06-30 09:10:30 +02:00
semmle-qlci	b3e68ef81c	Merge pull request #3806 from erik-krogh/moreDownloads Approved by asgerf	2020-06-29 13:53:10 +01:00
Asger Feldthaus	03c91a66c5	JS: Update expected output	2020-06-29 07:52:25 +01:00
Asger Feldthaus	9ca25d5bef	JS: Support .hash extraction via a few more methods	2020-06-28 01:38:59 +01:00
Asger Feldthaus	19db418395	JS: Add missing store step in Xss query	2020-06-28 01:26:11 +01:00
Erik Krogh Kristensen	926f2c139f	require that a write must dominate the enclosing stmt of a read	2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen	cc2e61531e	update expected output	2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen	e467d3ccbf	use dominating write check in js/path-injection	2020-06-25 23:00:52 +02:00

... 3 4 5 6 7 ...

911 Commits