codeql

mirror of https://github.com/github/codeql.git synced 2025-12-21 19:26:31 +01:00

Author	SHA1	Message	Date
Erik Krogh Kristensen	8e98dcefb1	add clipboard data as a RemoteFlowSource	2021-09-13 20:43:31 +02:00
Erik Krogh Kristensen	3983aceb48	recognize types of the form "HTML%Element" as dom values	2021-09-13 20:43:31 +02:00
Erik Krogh Kristensen	bac80bf686	delete ClipboardXss.ql experimental query	2021-09-13 20:43:31 +02:00
Rasmus Wriedt Larsen	f402475dd3	Python: Fix `globals() == locals()` FP	2021-09-13 20:03:11 +02:00
Rasmus Wriedt Larsen	69fe2a36e5	Python: Add `globals() == locals()` test	2021-09-13 20:02:08 +02:00
Rasmus Wriedt Larsen	ba7cdec2ea	Python: Add some lines in test file These are just empty now, such that it's obvious the tests didn't change.	2021-09-13 20:00:50 +02:00
Rasmus Wriedt Larsen	a9694bf0ef	Python: Clean whitespace	2021-09-13 19:58:59 +02:00
Mathias Vorreiter Pedersen	a714966e9b	Import 'cpp' and add more description.	2021-09-13 18:43:34 +01:00
Ethan P	930a36df37	Add example step for ending build tracing	2021-09-13 13:40:49 -04:00
Mathias Vorreiter Pedersen	034899367d	C++: Exclude uninstantiated templates from AV Rule 114.	2021-09-13 18:08:51 +01:00
Ethan P	47a543e086	Add reviewer feedback	2021-09-13 12:02:31 -04:00
Tom Hvitved	3bdc92ba8e	Merge pull request #6681 from hvitved/java/files-folders-drop-columns Java: Drop redundant columns from `files` and `folders` relations	2021-09-13 17:43:31 +02:00
Chris Smowton	122ffca049	Merge pull request #6645 from Marcono1234/marcono1234/spurious-javadoc-param-generic-class Java: Detect spurious param Javadoc tag of generic classes	2021-09-13 16:41:06 +01:00
Benjamin Muskalla	24d740b2da	Merge branch 'main' into inlineFlowTest	2021-09-13 17:15:37 +02:00
Benjamin Muskalla	bf5a46f6d8	Simplify inline tests	2021-09-13 17:08:02 +02:00
Taus	b51ce1d2b3	Merge pull request #6640 from yoff/python-add-parameter-default-value-flow-step Python: add parameter default value flow step	2021-09-13 17:05:48 +02:00
Rasmus Lerchedahl Petersen	8f152a5bfb	Python: Port regex concepts and adapt PolyRedos	2021-09-13 16:50:00 +02:00
Anders Schack-Mulligen	7b764aec92	Merge pull request #6682 from aschackmull/java/callbacks Java: Add support for callback-based library models.	2021-09-13 16:43:03 +02:00
Chris Smowton	3c7b39f089	Add change note	2021-09-13 15:36:26 +01:00
Anders Fugmann	f202ddc5aa	C++: Add changenote	2021-09-13 16:31:06 +02:00
Tamas Vajk	80f5ec29d4	Log stdout and stderr in CSV coverage jobs	2021-09-13 16:16:03 +02:00
Tamas Vajk	1d8fae44cc	Only leave CSV coverage updater job enabled on github/codeql	2021-09-13 16:15:21 +02:00
Tom Hvitved	b60f1cd531	Java: Upgrade script	2021-09-13 16:09:47 +02:00
Tom Hvitved	9fdcacd865	Java: Drop redundant columns from `files` and `folders` relations	2021-09-13 16:09:47 +02:00
Anders Schack-Mulligen	ab862276fc	Java: Fix tests.	2021-09-13 16:04:11 +02:00
Anders Schack-Mulligen	12aeaeed56	Java: Address review comment.	2021-09-13 16:03:50 +02:00
Geoffrey White	67c6b35845	C++: We get many more real world results using taint tracking.	2021-09-13 15:03:28 +01:00
Geoffrey White	0e8064dbf9	C++: Add a test demonstrating taint.	2021-09-13 15:00:31 +01:00
Chris Smowton	47b5165f2a	Merge pull request #6653 from smowton/smowton/admin/javascript-unpaired-surrogate-test Java and JS: Add/adapt tests for literals with an unpaired surrogate character	2021-09-13 14:53:23 +01:00
Anders Schack-Mulligen	818e75bb8f	Java: Fix compilation error in telemetry lib.	2021-09-13 15:50:21 +02:00
Anders Fugmann	8e9ac18026	C++: Deprecate RangeSSA::isGuardPhi/3	2021-09-13 15:35:05 +02:00
Geoffrey White	902fa7d44a	C++: Subsection header.	2021-09-13 14:10:17 +01:00
Geoffrey White	acd1acd869	C++: Give it a section header.	2021-09-13 14:08:18 +01:00
Geoffrey White	befd1a7ccc	C++: Rename security tests readme.	2021-09-13 14:06:22 +01:00
Chris Smowton	abdd3a5dbe	Adjust Java tests that check for unpaired surrogate extraction	2021-09-13 14:02:05 +01:00
Erik Krogh Kristensen	05cc6bcf8a	adjust regexp libraries to how unpaired surrogate are parsed now	2021-09-13 14:02:05 +01:00
Chris Smowton	f24d7c4212	Acknowledge new FPs due to the extractor using U+FFFD for unpaired surrogates These were already misinterpreted, but the ReDoS code ignored them as they previously appeared to be `?` characters.	2021-09-13 14:02:05 +01:00
Chris Smowton	487ebdf173	Add test for Javascript literal with an unpaired surrogate character	2021-09-13 14:02:05 +01:00
Geoffrey White	ee7ccd7936	C++: Upgrade to path problem.	2021-09-13 13:52:12 +01:00
Anders Schack-Mulligen	89a6cdc711	Java: Add support for callback-based library models.	2021-09-13 14:49:28 +02:00
Ian Lynagh	3404bcf265	Merge pull request #6680 from github/igfoo/java_location Java: Use the standard URL format for Location.toString()	2021-09-13 13:43:32 +01:00
Ian Lynagh	4fbb165dce	Java: Use the standard URL format for Location.toString()	2021-09-13 12:53:50 +01:00
Harry Maclean	6f32401e5c	Add `unless x !=` test to barrier guards This tests that the following call to `foo bar` is guarded: unless bar != "bar" foo bar end	2021-09-13 11:58:17 +01:00
Anders Fugmann	9a35a699cb	C++: Update tests	2021-09-13 12:10:58 +02:00
Chris Smowton	68ed3250e8	Merge pull request #6478 from smowton/smowton/feature/jax-rs-request-filters Java: Add sources for Jax-RS filters	2021-09-13 10:59:17 +01:00
Geoffrey White	f58177f292	C++: Full dataflow version.	2021-09-13 10:53:09 +01:00
Felicity Chapman	1d76578202	Merge pull request #6659 from github/docs-311-update-version Update version numbers for LGTM Enterprise 1.28 lgtm/v1.28.0	2021-09-13 10:26:52 +01:00
James Fletcher	c86311e879	Merge pull request #6502 from github/dataflow-tutorial Add data flow debugging guide to CodeQL docs	2021-09-13 10:25:19 +01:00
Anders Fugmann	342b2df93f	C++: zero or one byte sized arrays in unions are considered as having the length of the union its a member of	2021-09-13 11:25:04 +02:00
Anders Fugmann	3172d5727a	C++: Relax constraints on Buffer::memberMayBeVarSize	2021-09-13 11:15:33 +02:00

... 51 52 53 54 55 ...

29908 Commits