hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 18:56:32 +01:00
Code Issues Packages Projects Releases Wiki Activity
29,908 Commits 1,672 Branches 157 Tags
z80coder/ATM-feature-optimisation
Commit Graph

6131 Commits

Author SHA1 Message Date
Asger Feldthaus
7ee3846142 JS: Add missing qldoc 2020-10-28 12:43:48 +00:00
Asger Feldthaus
7a3f0095f6 JS: Autoformat 2020-10-28 11:57:23 +00:00
Asger Feldthaus
d116b424f4 JS: Add model of react hooks and react-router 2020-10-28 11:57:11 +00:00
Asger Feldthaus
42c03ab2fd JS: Add flow steps through dynamic imports 2020-10-28 11:57:08 +00:00
Erik Krogh Kristensen
75d996a0f9 make promisify smaller 2020-10-28 11:59:21 +01:00
Erik Krogh Kristensen
bce06d3194 add test that promisify is not imprecise 2020-10-28 11:59:03 +01:00
Erik Krogh Kristensen
c49d5081cc Update javascript/ql/src/semmle/javascript/frameworks/NoSQL.qll 
Co-authored-by: Asger F <asgerf@github.com>
 2020-10-28 11:45:58 +01:00
Asger Feldthaus
a9adb2912a JS: Improve lodash model 2020-10-28 10:09:41 +00:00
Asger Feldthaus
9fc5c0bdb8 JS: Update ComposedFunctions 2020-10-28 10:09:40 +00:00
Erik Krogh Kristensen
2e514c4d7b add model for Node Redis 2020-10-28 09:52:54 +01:00
Asger Feldthaus
7345df63c0 JS: Include DataFlow::AdditionalFlowStep in TaintSteps metric 2020-10-27 08:41:50 +00:00
Erik Krogh Kristensen
33465dbe6b refactor parameterPropRead and reachesReturn to get a slight performance improvement 2020-10-26 16:49:49 +01:00
Asger Feldthaus
c353f61091 JS: Add test case 2020-10-26 09:58:37 +00:00
Erik Krogh Kristensen
0b41a59dbf add support for imports into "outDir" from tsconfig.json 2020-10-25 22:51:21 +01:00
toufik-airane
7d2741a287 Add newline 2020-10-23 17:42:55 +02:00
toufik-airane
3ccdc2c518 Update ElectronShellOpenExternalSink location 
Move the class ElectronShellOpenExternalSink to
ClientSideUrlRedirect.qll. It's been to be a more appropriate location.
 2020-10-23 17:39:03 +02:00
toufik-airane
e87790b828 Add ElectronShellOpenExternalSink class 
Add ElectronShellOpenExternalSink class to detect untrusted input
interpreted by `openExternal` function call in `electron` module.

Based on the #14 Electron Security checklist:
https://www.electronjs.org/docs/tutorial/security#14-do-not-use-openexternal-with-untrusted-content
 2020-10-23 15:41:03 +02:00
CodeQL CI
da58306f2d Merge pull request #4506 from asgerf/js/separate-jquery-config 
Approved by esbena
 2020-10-21 03:13:42 -07:00
CodeQL CI
9faf675f1f Merge pull request #4486 from erik-krogh/lessTokens 
Approved by asgerf
 2020-10-21 02:56:38 -07:00
CodeQL CI
897d8de65a Merge pull request #4523 from erik-krogh/optionalPromise 
Approved by asgerf
 2020-10-21 00:34:12 -07:00
Erik Krogh Kristensen
996488511c Merge pull request #4520 from erik-krogh/LessTests 
JS: Aggregate tests cases
 2020-10-20 19:03:47 +02:00
Erik Krogh Kristensen
bdbc8f5c91 add support for OptionalUse in js/missing-await 2020-10-20 16:52:57 +02:00
CodeQL CI
7ea8652f49 Merge pull request #4521 from erik-krogh/moreMiddle 
Approved by asgerf
 2020-10-20 07:14:14 -07:00
Erik Krogh Kristensen
e061c6a006 add support for more custom CSRF checking middlewares 2020-10-20 15:16:14 +02:00
Erik Krogh Kristensen
05d4858d4f autoformat 2020-10-20 14:27:09 +02:00
CodeQL CI
d2282fc474 Merge pull request #4517 from erik-krogh/logAssign 
Approved by esbena
 2020-10-20 05:24:49 -07:00
Erik Krogh Kristensen
1096cb0708 aggregate the tests in library-tests/InterProceduralFlow into a single .ql file 2020-10-20 14:08:55 +02:00
Erik Krogh Kristensen
234cb5c67a aggregate the tests in library-tests/JSLint into a single .ql file 2020-10-20 14:08:55 +02:00
Erik Krogh Kristensen
6b86b53a2c aggregate the tests in library-tests/LocalObjects into a single .ql file 2020-10-20 14:08:55 +02:00
Erik Krogh Kristensen
3e3e9de45f aggregate the tests in library-tests/TaintBarriers into a single .ql file 2020-10-20 14:08:55 +02:00
Erik Krogh Kristensen
f8d38227e8 aggregate the tests in library-tests/TypeInference/AnalyzedModule into a single .ql file 2020-10-20 14:08:55 +02:00
Erik Krogh Kristensen
036187cd70 aggregate the tests in library-tests/Util into a single .ql file 2020-10-20 14:08:55 +02:00
Erik Krogh Kristensen
90bb38b522 aggregate the tests in library-tests/variables into a single .ql file 2020-10-20 14:08:55 +02:00
Erik Krogh Kristensen
2707531ddd aggregate the tests in library-tests/Closure into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
15fe0bc38a aggregate the tests in library-tests/Comprehensions into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
0ac55bd521 aggregate the tests in library-tests/Flow into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
b43e21a4c7 aggregate the tests in library-tests/HTML/HTMLElementAndHTMLAttribute into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
003854ebe7 aggregate the tests in library-tests/SensitiveActions into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
d678cc17ba aggregate the tests in library-tests/Templates into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
ad7844a6ac aggregate the tests in library-tests/ClassNode into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
5d401f98a3 aggregate the tests in library-tests/Externs into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
e461c92708 aggregate the tests in library-tests/JSX into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
0c65eee120 aggregate the tests in library-tests/YAML into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
55f130fe62 aggregate the tests in library-tests/AMD into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
10f41878a7 aggregate the tests in library-tests/frameworks/Concepts into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
aece1717aa aggregate the tests in library-tests/frameworks/xUnit into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
771cab233e aggregate the tests in library-tests/frameworks/Firebase into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
a3e6054ee5 aggregate the tests in library-tests/frameworks/Electron into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
ed77e055ed aggregate some of the tests in library-tests/frameworks/HTTP-heuristics into a single .ql file 2020-10-20 14:08:54 +02:00
Erik Krogh Kristensen
1e537db103 aggregate the tests in library-tests/frameworks/Vue into a single .ql file 2020-10-20 14:08:54 +02:00