1848 Commits

Author	SHA1	Message	Date
Simon Friis Vindum	daf0cf1c1b	Rust: Rename predicates	2025-10-01 11:43:51 +02:00
Simon Friis Vindum	a359a24c9e	Merge pull request #20559 from paldepind/rust/string-add-ref ... Rust: Add taint model for add on `String`	2025-10-01 09:38:54 +02:00
Geoffrey White	d9955ce93c	Merge pull request #20503 from geoffw0/cookie ... Rust: New query rust/insecure-cookie	2025-09-30 15:26:37 +01:00
Tom Hvitved	701cff3ca4	Rust: Macro call resolution	2025-09-30 16:21:02 +02:00
Simon Friis Vindum	49efd574a0	Rust: Add taint model for add on String	2025-09-30 14:48:03 +02:00
Simon Friis Vindum	c878af2b9d	Rust: Remove member predicates on Type	2025-09-30 13:28:33 +02:00
Geoffrey White	a286631018	Merge pull request #20512 from geoffw0/stmtlist ... Rust: Improve StmtList	2025-09-30 09:53:55 +01:00
github-actions[bot]	a7a4e43991	Post-release preparation for codeql-cli-2.23.2	2025-09-29 15:10:19 +00:00
Simon Friis Vindum	98a20f9820	Rust: Add change note	2025-09-29 14:58:34 +02:00
Simon Friis Vindum	37ffe82ac9	Rust: Handle functions as lambdas	2025-09-29 14:49:04 +02:00
Simon Friis Vindum	84c6a3a376	Rust: Add change note for actix-web models	2025-09-29 13:03:10 +02:00
github-actions[bot]	d2130a589b	Release preparation for version 2.23.2	2025-09-29 10:28:45 +00:00
Simon Friis Vindum	6b7d5d2902	Rust: Add models for actix-web	2025-09-29 09:14:03 +02:00
Geoffrey White	1236e2b829	Rust: Add references to alternatives in the getStmtOrExpr methods.	2025-09-26 14:55:06 +01:00
Geoffrey White	4570d7e46e	Rust: Replace getBlockChildNode with uses of getStmtOrExpr.	2025-09-26 14:32:36 +01:00
Geoffrey White	27b6f12b3c	Rust: Use the suggested cleaner implementation for getStmtOrExpr.	2025-09-26 14:30:31 +01:00
Geoffrey White	1635ef9ad9	Merge branch 'main' into convert	2025-09-26 14:11:04 +01:00
Tom Hvitved	615b0a0310	Merge pull request #20502 from hvitved/rust/path-resolution-check-arity ... Rust: Check call arities in path resolution	2025-09-26 13:45:26 +02:00
Tom Hvitved	4c7b66c66a	Address review comments	2025-09-26 13:14:44 +02:00
Geoffrey White	77e7898f71	Rust: Use US spelling in comment.	2025-09-26 11:49:23 +01:00
Geoffrey White	57f84873b4	Rust: Split off cookieOptionalBarrier predicate (as suggested) and expand / clarify the QLDoc.	2025-09-26 11:29:17 +01:00
Geoffrey White	3a03bb5a0b	Rust: Repair rust/hard-coded-cryptographic-value, which had an unintentional dependence on the taint flow.	2025-09-26 10:03:38 +01:00
Tom Hvitved	7a74efcc82	Update rust/ql/lib/codeql/rust/elements/internal/UnionImpl.qll ... Co-authored-by: Simon Friis Vindum <paldepind@github.com>	2025-09-26 09:57:13 +02:00
Geoffrey White	ff554055a6	Rust: Correct 'from' model to taint.	2025-09-26 08:43:35 +01:00
Tom Hvitved	2a814dd37c	Rust: Model union, never, and pointer types	2025-09-25 12:33:51 +02:00
Geoffrey White	7e8e855f28	Rust: Fix bug when there are no statements.	2025-09-24 17:16:26 +01:00
Geoffrey White	b12b36f302	Rust: Codegen.	2025-09-24 17:04:28 +01:00
Geoffrey White	8debce0349	Rust: Add helper predicates for accessing statements and expressions together.	2025-09-24 17:04:08 +01:00
Geoffrey White	85945dba29	Rust: Codegen.	2025-09-24 16:08:06 +01:00
Geoffrey White	ed3a6fd799	Rust: Codegen.	2025-09-24 15:32:10 +01:00
Tom Hvitved	e6b1e8ec56	Rust: Check call arities in path resolution	2025-09-24 10:19:56 +02:00
Tom Hvitved	92cced201e	Merge pull request #20496 from hvitved/rust/path-resolution-use-visibility ... Rust: Visibility check for qualified path resolution	2025-09-24 10:19:22 +02:00
Simon Friis Vindum	26aa938acc	Merge pull request #20452 from paldepind/rust/mad-source-parameter ... Rust, shared: Support `Parameter` in source MaD models	2025-09-24 09:37:25 +02:00
Tom Hvitved	1183e50435	Update rust/ql/lib/change-notes/2025-09-19-parameter-mad.md	2025-09-22 19:45:34 +02:00
Geoffrey White	5ad332e37f	Merge pull request #20432 from github/copilot/fix-f50317f8-0a91-4bb4-a01b-353dcf0f6f3f ... Rust: Implement new query for non-HTTPS URLs (CWE-319)	2025-09-22 18:03:52 +01:00
Geoffrey White	6362884d16	Rust: Autoformat.	2025-09-22 16:59:11 +01:00
Geoffrey White	43ac75ed62	Rust: Address another tiny suggestion from review.	2025-09-22 16:58:07 +01:00
Geoffrey White	94afc82304	Rust: Fix an issue with the local flow.	2025-09-22 16:12:25 +01:00
Geoffrey White	a3ed83bfff	Rust: Make state transition / barrier nodes more reliable.	2025-09-22 16:12:23 +01:00
Geoffrey White	2654affeee	Rust: Account for the 'secure' and 'partitioned' attributes.	2025-09-22 16:12:22 +01:00
Geoffrey White	257a1b0179	Rust: Refactor sources, sinks into an extensions source file.	2025-09-22 16:09:30 +01:00
Geoffrey White	eadf922280	Rust: Use models-as-data, add source/sink/flow models.	2025-09-22 16:04:56 +01:00
Simon Friis Vindum	45b84ffb31	Rust: Ensure singleton	2025-09-22 14:23:50 +02:00
Simon Friis Vindum	4244a6569c	Rust: Add change note	2025-09-22 14:19:01 +02:00
Simon Friis Vindum	265e8b3623	Shared: Pass SummaryComponentStack to isSource and getSourceType	2025-09-22 14:18:54 +02:00
Simon Friis Vindum	014c27ee8a	Rust: Discard sources with spaces in inline flow tests	2025-09-22 14:13:39 +02:00
Tom Hvitved	78641b4dde	Rust: Reduce size of unqualifiedPathLookup	2025-09-22 09:46:28 +02:00
Tom Hvitved	b5b6f06005	Rust: Fix bad join ... ``` Evaluated relational algebra for predicate _PathResolution::CrateItemNode.getName/0#dispred#91b4dd6b_PathResolution::SourceFileItemNode#bd8f490__#antijoin_rhs@e84aee8k with tuple counts: 35406180 ~0% {3} r1 = JOIN PathResolution::SourceFileItemNode#bd8f4905 WITH `PathResolution::CrateItemNode.getName/0#dispred#91b4dd6b` CARTESIAN PRODUCT OUTPUT Lhs.0, Rhs.1, Rhs.0 8455 ~2% {4} | JOIN WITH `PathResolution::declaresDirectly/3#7d0350fb_021#join_rhs` ON FIRST 2 OUTPUT Rhs.2, Lhs.0, Lhs.2, Lhs.1 3259 ~0% {3} | JOIN WITH num#PathResolution::TTypeNamespace#4897e416 ON FIRST 1 OUTPUT Lhs.1, Lhs.2, Lhs.3 return r1 ```	2025-09-22 09:38:43 +02:00
Tom Hvitved	b2cc01c490	Rust: Visibility check for qualified path resolution	2025-09-22 09:38:30 +02:00
Tom Hvitved	223ab5e60c	Rust: Add missing model	2025-09-21 15:28:50 +02:00