codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00

Author	SHA1	Message	Date
Nora Dimitrijević	690446149a	Java: add CleartextStorageCookie test Given that it's a non-path-problem dataflow query, the InlineExpectationsTest is not as useful.	2025-06-24 18:12:19 +02:00
Nora Dimitrijević	e213e3fc37	Java: convert ImplicitPendingIntents test to .qlref	2025-06-24 16:42:37 +02:00
Nora Dimitrijević	e0311e26c6	Java: convert ImproperIntentVerification test to .qlref It's a non-path query, so the InlineExpectationsTest postprocessor doesn't do anything.	2025-06-24 16:42:35 +02:00
Nora Dimitrijević	aac4f63e9a	Java: convert RequestForgery test to .qlref	2025-06-24 16:42:32 +02:00
Nora Dimitrijević	7f05b72e10	Java: convert OgnlInjection test to .qlref	2025-06-24 16:42:30 +02:00
Nora Dimitrijević	cadfd0dcaa	Java: convert RsaWithoutOaep test to .qlref	2025-06-24 16:42:28 +02:00
Nora Dimitrijević	b7e47e2cf3	Java: convert PolynomialReDoS and RegexInjection tests to .qlref Leaves ReDoS.ql unmodified since it's not a dataflow query; just moves it to its own directory.	2025-06-24 16:42:26 +02:00
Nora Dimitrijević	f5c7ef6ab4	Java: convert XPathInjection test to .qlref	2025-06-24 16:42:23 +02:00
Nora Dimitrijević	162b1c51a9	Java: convert XXE test to .qlref	2025-06-24 16:42:21 +02:00
Nora Dimitrijević	7f33f57c9b	Java: convert UrlForward test to .qlref	2025-06-24 16:42:19 +02:00
Nora Dimitrijević	bf1a699982	Java: convert CWE-522 tests to .qlref	2025-06-24 16:42:17 +02:00
Nora Dimitrijević	4412335223	Java: convert UnsafeDeserialization test to .qlref	2025-06-24 16:42:14 +02:00
Nora Dimitrijević	c4b0955045	Java: convert WebviewDebuggingEnabled test to .qlref	2025-06-24 16:42:12 +02:00
Nora Dimitrijević	192f45ed2b	Java: convert FragmentInjection test to .qlref	2025-06-24 16:42:10 +02:00
Nora Dimitrijević	2b19cbcd7e	Java: convert UnsafeContentUriResolution test to .qlref	2025-06-24 16:42:08 +02:00
Nora Dimitrijević	28694276e2	Java: convert MissingJWTSignatureCheck test to .qlref	2025-06-24 16:42:06 +02:00
Nora Dimitrijević	85c2f72892	Java: convert InsecureRandomness test to .qlref	2025-06-24 16:42:04 +02:00
Nora Dimitrijević	288a938814	Java: convert InsufficientKeySize test to .qlref	2025-06-24 16:42:02 +02:00
Nora Dimitrijević	993b261b63	Java: convert InsecureTrustManager test to .qlref	2025-06-24 16:42:00 +02:00
Nora Dimitrijević	b736e3733c	Java: convert IntentUriPermissionManipulation test to .qlref	2025-06-24 16:41:58 +02:00
Nora Dimitrijević	c77875d834	Java: convert TemplateInjection test to .qlref	2025-06-24 16:41:56 +02:00
Nora Dimitrijević	b8c7bd29c3	Java: convert SpelInjection test to .qlref	2025-06-24 16:41:54 +02:00
Nora Dimitrijević	2a837b208b	Java: convert MvelInjection test to .qlref	2025-06-24 16:41:52 +02:00
Nora Dimitrijević	1b61cb660a	Java: convert JexlInjection test to .qlref	2025-06-24 16:41:50 +02:00
Nora Dimitrijević	1cc91e964d	Java: convert GroovyInjection test to .qlref	2025-06-24 16:41:48 +02:00
Nora Dimitrijević	8e53da285f	Java: convert XSS test to .qlref	2025-06-24 16:41:46 +02:00
Nora Dimitrijević	199eabdd20	Java: convert XsltInjection test to .qlref Also, split off into separate directory from JndiInjectionTest because their $Alerts were interfering with each other.	2025-06-24 16:41:43 +02:00
Nora Dimitrijević	3f9e0fee81	Java: convert JndiInjection test to .qlref	2025-06-24 16:41:41 +02:00
Nora Dimitrijević	e1ddce8456	Java: convert PartialPathTraversalFromRemote test to .qlref	2025-06-24 16:41:39 +02:00
Nora Dimitrijević	588efe4b2b	Java: Convert TaintedPath test to .qlref	2025-06-24 16:41:35 +02:00
Tamas Vajk	60e726bdf2	Java: Add `java/javautilconcurrentscheduledthreadpoolexecutor` query for zero thread pool size	2025-06-23 12:52:45 +02:00
Owen Mansel-Chan	663c83d8c6	Merge pull request #19556 from owen-mc/java/pr/19512 Java: Fix SpringRequestMappingMethod URL Extraction #2	2025-05-22 15:08:31 +01:00
Owen Mansel-Chan	79453cc103	Add test showing correct usage	2025-05-22 14:30:32 +01:00
Owen Mansel-Chan	708bbe391e	Add test for `SpringRequestMappingMethod.getAValue`	2025-05-22 12:22:34 +01:00
Anders Schack-Mulligen	db01828717	Java: Deprecate redundant basic block predicates.	2025-05-21 09:01:46 +02:00
Michael Nebel	ee83ca9125	Java: Update model generator implementation and test expected output.	2025-05-13 13:44:42 +01:00
Mathias Vorreiter Pedersen	bce5f2539f	C++/C#/Java/Rust: Fixup tests.	2025-05-02 16:52:05 +01:00
Mathias Vorreiter Pedersen	4d2f2b89e7	Shared/Java/C#/Rust/C++: Rename 'captureHeuristicFlow' to 'captureFlow'.	2025-05-02 14:02:41 +01:00
Mathias Vorreiter Pedersen	d5bc95daeb	Merge branch 'main' into generate-more-value-preserving-summaries-2	2025-05-02 10:51:11 +01:00
Mathias Vorreiter Pedersen	07641e48ab	Java: Fixup queries and accept test changes.	2025-04-30 20:34:32 +01:00
Michael Nebel	2535055de0	Java: Re-factor implementation to use the new model generator interface.	2025-04-29 15:22:07 +02:00
Michael Nebel	71d0409bb7	Java: Convert the model generator neutral test to use the combined neutral generator.	2025-04-25 15:50:00 +02:00
Michael Nebel	7e51dae743	Java: Change the heuristic summary test tag to heuristic-summary.	2025-04-25 15:49:58 +02:00
Michael Nebel	08f7caaf39	Java: Adjust model generator test cases to the new implementation.	2025-04-25 15:49:56 +02:00
Jami	4483a24133	Merge pull request #19075 from jcogs33/jcogs33/java/do-not-use-finalizers Java: Add new quality query to detect `finalize` calls	2025-04-22 14:11:14 -04:00
Jami	72d49f21ee	Merge branch 'main' into jcogs33/java/do-not-use-finalizers	2025-04-21 09:57:53 -04:00
Jami	02ded89d84	Merge branch 'main' into jcogs33/java/junit5-missing-nested-annotation	2025-04-21 09:46:49 -04:00
Owen Mansel-Chan	e1c5517de7	Keep COMPLIANT and NON_COMPLIANT comments in test	2025-04-10 12:21:05 +01:00
Owen Mansel-Chan	04ec1d7830	Update test expectations	2025-04-10 12:21:03 +01:00
Owen Mansel-Chan	042fe07494	Adjust alert message	2025-04-10 11:47:19 +01:00

... 3 4 5 6 7 ...

4346 Commits