codeql

mirror of https://github.com/github/codeql.git synced 2025-12-18 18:10:39 +01:00

Author	SHA1	Message	Date
Max Schaefer	e1d90e90ad	JavaScript: Add modelling for `Module.prototype._compile`.	2020-10-19 09:42:17 +01:00
Asger Feldthaus	4137d3f971	JS: Split CWE-079 tests into their own folders	2020-10-16 17:32:36 +01:00
Asger Feldthaus	4337c5adaf	JS: Workaround ascii PR check	2020-10-16 07:12:29 +01:00
Asger Feldthaus	afd82e202d	JS: Add Angular2 model	2020-10-16 07:12:29 +01:00
Erik Krogh Kristensen	8206933e85	add test for home grown CSRF protection	2020-10-15 14:51:02 +02:00
Max Schaefer	4100ab2919	JavaScript: Add another test to show that flow through functions still works.	2020-10-14 10:03:27 +01:00
Max Schaefer	1c04c07f07	JavaScript: Eliminate source of false positives in UnsafeShellCommandConstruction.	2020-10-14 10:03:04 +01:00
Max Schaefer	cd33d358aa	JavaScript: Add a test showing a false positive from UnsafeShellCommandConstruction due to infeasible paths. The path from the API entry point to the sink contains a "return" step. A client of the library cannot match that step, resulting in an infeasible path.	2020-10-12 14:50:47 +01:00
CodeQL CI	4e116ba0db	Merge pull request #4419 from erik-krogh/jsxFactory Approved by asgerf	2020-10-06 06:13:21 -07:00
CodeQL CI	0753c8a31b	Merge pull request #4247 from erik-krogh/CVE760-reexport Approved by asgerf	2020-10-06 06:10:21 -07:00
CodeQL CI	7e6fa7b4be	Merge pull request #4392 from erik-krogh/flask Approved by asgerf	2020-10-06 03:41:36 -07:00
Erik Krogh Kristensen	f7f82ffe4e	Merge branch 'main' into CVE760-reexport	2020-10-06 12:28:44 +02:00
Erik Krogh Kristensen	99213b94f5	detect uses of jsxFactory and jsxFragmentFactory in js/unused-local-variable	2020-10-06 12:23:15 +02:00
Erik Krogh Kristensen	d6dc4bb655	allow flask url_for urls in TargetBlank.ql	2020-10-05 21:40:24 +02:00
CodeQL CI	e95b665556	Merge pull request #4363 from erik-krogh/nosql-api Approved by max-schaefer	2020-10-05 12:01:34 -07:00
Erik Krogh Kristensen	abdbe92720	refactor the NoSQL model to use API graphs	2020-10-02 10:42:49 +02:00
Aditya Sharad	e712d16e7e	JavaScript: Track taint through RegExp.prototype.exec for URL redirection Regexp literals are currently handled, but not `RegExp` objects.	2020-09-30 15:13:02 -07:00
Erik Krogh Kristensen	d316cb512e	deprecate `exports` and replace uses with the new `getAnExportedValue`	2020-09-30 13:46:28 +02:00
CodeQL CI	d7add29dc2	Merge pull request #4359 from erik-krogh/cookieWrites Approved by esbena	2020-09-29 06:32:01 -07:00
CodeQL CI	11f39a9d88	Merge pull request #4342 from erik-krogh/track-where-prop Approved by asgerf	2020-09-29 02:09:53 -07:00
Erik Krogh Kristensen	e04404b713	also recognize cookie writes are leading to cookie access	2020-09-28 21:17:25 +02:00
Erik Krogh Kristensen	664342dd0f	change `SimpleParameter` to `Parameter` in the express model to support destructuring parameters	2020-09-26 21:31:06 +02:00
CodeQL CI	ea5feb2b0a	Merge pull request #4331 from erik-krogh/DVNA-files Approved by esbena	2020-09-25 05:21:03 -07:00
Erik Krogh Kristensen	b8154d41b1	type-track objects where the "$where" property has been written	2020-09-24 20:55:25 +02:00
Erik Krogh Kristensen	6163e6cf5f	adjust test case for XML entity expansion	2020-09-24 09:53:06 +02:00
Erik Krogh Kristensen	83f0514475	add req.files as a RequestInputAccess in the Express model	2020-09-23 15:50:59 +02:00
Max Schaefer	dc7b447895	JavaScript: Make alert locations for command injection more precise.	2020-09-23 14:07:36 +01:00
Max Schaefer	439aadf0b6	JavaScript: Do even more type tracking in command injection.	2020-09-23 14:07:36 +01:00
Max Schaefer	ef18b39124	JavaScript: Fix use of type backtracker in `IndirectCommandArgument.qll`.	2020-09-23 14:07:36 +01:00
Max Schaefer	825fc2228b	JavaScript: Add two new command-injection tests.	2020-09-23 14:07:36 +01:00
CodeQL CI	9a306866c5	Merge pull request #4282 from erik-krogh/es2021 Approved by esbena	2020-09-22 05:34:35 -07:00
Erik Krogh Kristensen	b09015380a	add support for String.prototype.replaceAll	2020-09-21 10:50:04 +02:00
Erik Krogh Kristensen	dafcd59148	add another indirect route-handler test	2020-09-18 09:26:33 +02:00
Erik Krogh Kristensen	43e5c0212c	add basic support for indirect route handlers	2020-09-18 09:26:33 +02:00
Erik Krogh Kristensen	fa255f3534	add test for self.importScripts(..)	2020-09-15 12:23:48 +02:00
Erik Krogh Kristensen	03a3c4f4b2	update expected output	2020-09-14 16:50:47 +02:00
Erik Krogh Kristensen	f4f96ce04d	use new source in client-side-url-redirect test	2020-09-14 16:50:47 +02:00
Erik Krogh Kristensen	6e84ac8e6c	add test for importScripts	2020-09-14 16:02:34 +02:00
CodeQL CI	903bc007b8	Merge pull request #4082 from max-schaefer/js/api-graph Approved by asgerf	2020-09-11 04:41:38 -07:00
Erik Krogh Kristensen	4515d27ad2	Merge branch 'main' of https://github.com/github/codeql into pr/erik-krogh/4220	2020-09-08 14:10:15 +00:00
Erik Krogh Kristensen	320879bc1e	recognize colon in command-prefixes	2020-09-07 13:12:38 +02:00
Erik Krogh Kristensen	fd05156298	clarifying comment on the last jQuery inconsistency	2020-09-04 10:30:42 +02:00
Erik Krogh Kristensen	b18f51806c	regain the lost property presence result	2020-09-04 10:30:38 +02:00
Erik Krogh Kristensen	6fccf5aa70	use `isLikelyIntentionalHtmlSink` in the sink instead of in the where clause	2020-09-04 09:26:03 +02:00
CodeQL CI	58f51899c9	Merge pull request #4173 from erik-krogh/targetBlankFP Approved by esbena	2020-09-04 08:21:22 +01:00
Erik Krogh Kristensen	d946a61d6e	update expected output	2020-09-03 13:32:54 +02:00
Erik Krogh Kristensen	3952553953	adjust comment about inconsistency for XSS in typeahead	2020-09-03 10:50:40 +02:00
CodeQL CI	2ba84be565	Merge pull request #4185 from erik-krogh/unusedArrDestruct Approved by esbena	2020-09-03 09:18:15 +01:00
Max Schaefer	d81d80430e	JavaScript: Add a regression test for `DeadStoreOfProperty`.	2020-09-02 19:45:27 +01:00
Max Schaefer	e3a9906071	JavaScript: Switch `MissingRateLimiting.qll` to API graphs. The added test shows how this helps us avoid false positives.	2020-09-02 17:35:47 +01:00

... 4 5 6 7 8 ...

1388 Commits