codeql

mirror of https://github.com/github/codeql.git synced 2025-12-18 01:33:15 +01:00

Author	SHA1	Message	Date
Arthur Baars	b53e3499cb	Merge pull request #7249 from ShockwaveNN/patch-1 Fix ruby incorrect version in documentation	2021-12-15 18:32:24 +01:00
Asger Feldthaus	53b3581ed0	JS: Add test to stress flow through properties	2021-12-15 17:16:56 +01:00
Asger F	784991cce5	Update javascript/ql/lib/semmle/javascript/Routing.qll Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2021-12-15 16:38:38 +01:00
Asger Feldthaus	79e6dcaf68	JS: Rename getValueAtAccessPath->getValueImplicitlyStoredInAccessPath	2021-12-15 16:37:28 +01:00
Asger Feldthaus	8aa4d8227e	JS: Rename RouteHandlerInput->RouteHandlerParameter	2021-12-15 16:32:18 +01:00
Tom Hvitved	3bc6247ad8	Merge pull request #7378 from hvitved/ruby/module-infinite-loop Ruby: Prevent infinite recursion in module resolution library	2021-12-15 16:27:36 +01:00
Asger Feldthaus	218b746f6f	JS: Rename getAUseSite -> getRouteInstallation	2021-12-15 16:21:41 +01:00
Asger Feldthaus	4d85799fc7	JS: Add test for fastify-rate-limit	2021-12-15 16:18:22 +01:00
Asger Feldthaus	615b2ec539	JS: Fix handling of fastify-plugin	2021-12-15 16:04:46 +01:00
Asger Feldthaus	b226f767ad	JS: Fix tracking of fastify server instance	2021-12-15 16:04:45 +01:00
Asger Feldthaus	0ca9feb854	JS: Always treat routers as resuming dispatch	2021-12-15 16:01:59 +01:00
Asger F	1b20506947	Update javascript/ql/lib/semmle/javascript/frameworks/Fastify.qll Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2021-12-15 16:00:19 +01:00
Asger Feldthaus	995e33158f	JS: Add test for res.locals flow to template	2021-12-15 16:00:19 +01:00
Asger Feldthaus	04bdba85ea	JS: Shift line numbers in test expectations	2021-12-15 16:00:19 +01:00
Asger F	c1bb40f439	Update javascript/ql/lib/semmle/javascript/frameworks/Express.qll Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2021-12-15 16:00:19 +01:00
Asger Feldthaus	b2016bddac	JS: Merge concepts of client/database in MongoDB model	2021-12-15 16:00:19 +01:00
Tom Hvitved	c6696adfde	Ruby: Add test case that would make old module resolution library diverge	2021-12-15 15:18:42 +01:00
Tom Hvitved	2187994f5c	Ruby: Prevent infinite recursion in module resolution library	2021-12-15 15:15:19 +01:00
Arthur Baars	7ddfc00655	Merge branch 'main' into patch-1	2021-12-15 14:52:35 +01:00
Tony Torralba	7e644d8d7b	Merge pull request #6098 from atorralba/atorralba/entrypoint-field-steps Java: Preserve taint on field-read-steps on entrypoint types	2021-12-15 14:51:38 +01:00
Erik Krogh Kristensen	76dcfd479e	more specific search path for dataset measure job	2021-12-15 14:36:43 +01:00
Erik Krogh Kristensen	133c496b94	Merge branch 'main' into erik-krogh/publish-ql-for-ql	2021-12-15 14:34:04 +01:00
Erik Krogh Kristensen	4beaceec68	QL: fix Buildins/Builtins typo	2021-12-15 14:26:58 +01:00
Erik Krogh Kristensen	fb979231f3	QL: merge the .codeqlmanifest.json file in the root	2021-12-15 14:22:40 +01:00
Erik Krogh Kristensen	0ac3e5c3ad	Merge QL for QL into github/codeql	2021-12-15 14:19:53 +01:00
Erik Krogh Kristensen	8d91ba2a6e	QL: fix Esbens workflow comments	2021-12-15 14:07:36 +01:00
Erik Krogh Kristensen	77cb822907	QL: fix search path for dataset measure	2021-12-15 13:34:33 +01:00
Tony Torralba	c1e4c05aa2	Update change note to new format	2021-12-15 13:08:34 +01:00
Tony Torralba	e2022f467c	Update java/ql/lib/semmle/code/java/dataflow/internal/TaintTrackingUtil.qll Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>	2021-12-15 13:00:16 +01:00
Tony Torralba	a3b25f0eb5	Don't consider subtypes of fields	2021-12-15 13:00:16 +01:00
Tony Torralba	47002a3bd7	Fix test	2021-12-15 13:00:16 +01:00
Tony Torralba	1426c5b406	Consider parameterized types	2021-12-15 13:00:16 +01:00
Tony Torralba	7ce9b04941	Add change note	2021-12-15 13:00:15 +01:00
Tony Torralba	5e80044f11	Preserve taint on field-read-steps on entrypoint types	2021-12-15 13:00:15 +01:00
Asger Feldthaus	e64a6dc12a	JS: Add qldoc	2021-12-15 12:47:23 +01:00
Erik Krogh Kristensen	faaa74b1cd	QL: move .git files into the ql/ folder	2021-12-15 12:25:08 +01:00
Erik Krogh Kristensen	24c2578540	QL: cache query compilation	2021-12-15 12:25:08 +01:00
Erik Krogh Kristensen	5d93309ada	QL: call the product `QL for QL` (because it rolls nicely). and update the readme.	2021-12-15 12:25:06 +01:00
Erik Krogh Kristensen	d89c41bae4	QL: update the readme	2021-12-15 12:24:51 +01:00
Asger Feldthaus	43ec721a87	JS: Add link to MDN docs for trusted types	2021-12-15 11:52:58 +01:00
Geoffrey White	9363d64166	Merge pull request #7395 from MathiasVP/fix-fp-in-pointless-self-comparison C++: Fix FP in `cpp/comparison-of-identical-expressions`	2021-12-15 10:47:57 +00:00
Mathias Vorreiter Pedersen	65c301c39f	Update cpp/ql/test/query-tests/Likely Bugs/Arithmetic/BadAdditionOverflowCheck/templates.cpp Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2021-12-15 09:22:41 +00:00
Michael Nebel	0e7fdbeeab	Merge pull request #7384 from michaelnebel/csharp-mad-xml C#: Convert XML related flow summaries to CSV and fix flow summaries test cases.	2021-12-15 09:51:20 +01:00
Harry Maclean	062f7fe390	Merge pull request #7340 from github/hmac/private-methods Ruby: handle private module methods	2021-12-15 21:07:49 +13:00
Harry Maclean	a32711245f	Ruby: Further speed up private method modelling	2021-12-15 17:38:52 +13:00
Tom Hvitved	15caaa7ad6	Merge pull request #7377 from hvitved/csharp/overriable-class C#: Introduce class `Overridable`	2021-12-14 20:01:12 +01:00
Mathias Vorreiter Pedersen	310353060e	C++: Also fix the FP in 'cpp/comparison-canceling-subexpr'.	2021-12-14 17:08:10 +00:00
Mathias Vorreiter Pedersen	b2082cc3da	C++: Fix false positive in 'cpp/cpp/comparison-of-identical-expressions'.	2021-12-14 16:39:25 +00:00
Mathias Vorreiter Pedersen	9d14a85f3f	C++: Add false positive.	2021-12-14 16:38:19 +00:00
Erik Krogh Kristensen	dc9187778b	QL: simplify the build/analyze workflow into a single workflow	2021-12-14 17:29:35 +01:00

1 2 3 4 5 ...

31029 Commits