codeql

mirror of https://github.com/github/codeql.git synced 2026-01-03 01:30:19 +01:00

Author	SHA1	Message	Date
Anders Schack-Mulligen	b3bf570fb7	Merge pull request #4301 from lcartey/java/update-cwe-claims Java: Update some CWE claims	2020-09-18 16:08:40 +02:00
lcartey@github.com	2c6f587ee9	Java: Add coverage claim for CWE 193 (off by one)	2020-09-18 12:51:24 +01:00
lcartey@github.com	39200566c3	Java: Update CWE claims for XXE. This matches the claims in the C# equivalent.	2020-09-18 12:30:52 +01:00
Joe	3258134098	Java: Remove superfluous conjunct	2020-09-18 10:41:06 +01:00
lcartey@github.com	32f43a84be	Java: Add CWE 564 (SQL Injection: Hibernate)	2020-09-18 10:20:21 +01:00
Joe	2da6234317	Java: Fix QLDoc	2020-09-17 17:31:24 +01:00
Joe	6d0df7cb3a	Java: Add a container node for Imports in the PrintAst view	2020-09-17 17:29:36 +01:00
Tamás Vajk	5079deb92a	Merge pull request #4268 from tamasvajk/feature/java-range-analysis-fn Java: Fix range analysis false negative	2020-09-16 11:08:33 +02:00
Joe	7e9b1a2975	Java: PrintAst: Fix more formatting issues	2020-09-15 17:15:00 +01:00
Joe	3be8fa5155	Java: PrintAst: Fix formatting	2020-09-15 15:10:56 +01:00
Joe	28338eb32e	Java: PrintAst: Various minor fixes of typos Fix references to C# Fix getAPrimaryQlClass for JavadocTag Fix typo for Import Update test outputs	2020-09-15 15:02:56 +01:00
Joe	53ab8dac06	Java: PrintAst: Fix failing tests	2020-09-15 14:45:48 +01:00
Joe	112b6d28a1	Java: PrintAst: Handle multiple javadocs in one element correctly	2020-09-15 14:45:48 +01:00
Joe	e38b583ec4	Java: PrintAst: Add tests	2020-09-15 14:45:48 +01:00
Joe	b73e7d8390	Java: PrintAST: Support Javadoc	2020-09-15 14:45:48 +01:00
Joe	c3320eeb3c	Java: Improve getAPrimaryQlClass Implement it for more types Fix typos	2020-09-15 14:45:48 +01:00
Joe	908f025888	Java: PrintAst: Fix a couple of issues related to Annotations	2020-09-15 14:45:48 +01:00
Joe	c20f802666	Java: PrintAst: Supprt generic parameters	2020-09-15 14:45:48 +01:00
Joe	19af3e5e30	Java: Add PrintAST	2020-09-15 14:45:48 +01:00
Joe	efe3ac0a37	Java: Rename the existing file called PrintAst.qll	2020-09-15 11:30:56 +01:00
Tamas Vajk	23a9d0764e	Java: Fix range analysis false negative	2020-09-15 12:09:05 +02:00
Tamas Vajk	c66473cb8a	Java: Add test for range analysis	2020-09-15 12:07:30 +02:00
Rasmus Wriedt Larsen	2172fb6e65	Dataflow: s/data flow/taint propagation/ in QLDoc for sanitizers	2020-09-09 14:30:33 +02:00
Rasmus Wriedt Larsen	d90f0be2c4	Dataflow: defaultTaintBarrier => defaultTaintSanitizer Just keeping things a bit more consistent :)	2020-09-09 14:11:56 +02:00
Mathias Vorreiter Pedersen	9de1fb7c18	Merge pull request #4222 from jbj/BlockStmt C++/Java/JS: Rename Block -> BlockStmt	2020-09-09 10:02:37 +02:00
CodeQL CI	9879c6c204	Merge pull request #4184 from aschackmull/java/cleanup-queryinjection Approved by aibaars	2020-09-08 14:52:17 +01:00
Anders Schack-Mulligen	442de2e2d2	Java: Add qldoc.	2020-09-08 15:09:39 +02:00
Jonas Jensen	464d3630a2	Java: Rename Block -> BlockStmt	2020-09-08 08:40:20 +02:00
Arthur Baars	90f013d74f	Merge pull request #4176 from aibaars/missing-qhelp Add missing QHelp files	2020-09-02 16:12:42 +02:00
Anders Schack-Mulligen	ed6c1798e2	Java: Fix reference to Unit.	2020-09-02 14:47:01 +02:00
Rasmus Wriedt Larsen	7a54d0b493	Java: Move files in experiemntal dirs to be consistent	2020-09-02 13:19:21 +02:00
Anders Schack-Mulligen	89829e870d	Java: Clean up SqlInjectionLib.	2020-09-02 11:17:56 +02:00
Anders Schack-Mulligen	cc61e6117e	Merge pull request #3542 from porcupineyhairs/mongoJava Java : add MongoDB injection sinks	2020-09-01 16:19:17 +02:00
CodeQL CI	311e62f21d	Merge pull request #4081 from aschackmull/java/dispatch-ctx-this-param Approved by aibaars	2020-09-01 15:06:47 +01:00
CodeQL CI	b9a6183ec2	Merge pull request #4175 from aschackmull/java/adjust-cwe-089-qltest Approved by aibaars	2020-09-01 12:43:56 +01:00
Arthur Baars	2729d109a5	Merge pull request #4123 from aschackmull/java/records-dataflow Java: Add data flow for record getters.	2020-09-01 13:02:24 +02:00
Anders Schack-Mulligen	e5d7208c12	Java: Adjust a few qltests.	2020-09-01 12:49:09 +02:00
Arthur Baars	aedfa47cb4	Add missing QHelp files	2020-09-01 12:46:57 +02:00
Anders Schack-Mulligen	82692876d8	Java: Add some test cases.	2020-09-01 11:24:30 +02:00
Anders Schack-Mulligen	c25dd4be8c	Merge pull request #3363 from ggolawski/xslt-injection CodeQL query to detect XSLT injections	2020-09-01 11:03:19 +02:00
Anders Schack-Mulligen	1dae99e4a5	Merge pull request #3543 from porcupineyhairs/WebsocketReadAsSource Java: add websocket reads as remote flow source.	2020-09-01 10:58:02 +02:00
Anders Schack-Mulligen	beca44ec2f	Merge pull request #4172 from rvermeulen/java/xss-sink-extensible Java: Customizable XSS analysis	2020-09-01 09:27:50 +02:00
Remco Vermeulen	2bdd3d7712	Apply qldoc suggestions Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>	2020-08-31 17:28:51 +02:00
CodeQL CI	79e87a6c3d	Merge pull request #4088 from aschackmull/java/string-formatted Approved by aibaars	2020-08-31 15:02:49 +01:00
CodeQL CI	dc9cc20fdd	Merge pull request #4161 from yoff/SharedDataflow_PostUpdateNodes Approved by RasmusWL, aschackmull, hvitved, jbj	2020-08-31 11:57:44 +01:00
CodeQL CI	9d6b2e7684	Merge pull request #4042 from aschackmull/java/xsssink-extensible Approved by aibaars	2020-08-31 11:54:25 +01:00
Anders Schack-Mulligen	b89a22b583	Merge pull request #4170 from aibaars/drop-inefficient-toarray Java: remove InefficientToArray.ql	2020-08-31 12:45:06 +02:00
Arthur Baars	66d39bb5f6	Java: remove InefficientToArray.ql This query was deprecated 4 years ago. Fixes: #4167	2020-08-31 10:39:03 +02:00
Grzegorz Golawski	0f555d42ed	Fix test	2020-08-30 22:55:17 +02:00
Porcupiney Hairs	441825919c	Java : add MongoDB injection sinks	2020-08-31 02:24:23 +05:30

1 2 3 4 5 ...

1142 Commits