hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-30 14:52:57 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,748 Commits 1,684 Branches 159 Tags
104f58151ca130bbaaa722b31791719ddef5af74
Commit Graph

1748 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sauyon Lee
104f58151c Merge pull request #473 from sauyon/revel 
Add models for Revel and HTML templates
 2021-03-18 18:21:53 -07:00
Sauyon Lee
f2b390af5f Force git not to modify line endings for HTML test files as well 2021-03-18 10:54:34 -07:00
Sauyon Lee
870fcb4531 Explicity pass working directory to index-files 2021-03-18 10:54:33 -07:00
Sauyon Lee
012825323d Add change note 2021-03-18 10:54:33 -07:00
Sauyon Lee
68dca955a8 Rework tests and fix output 2021-03-18 10:54:32 -07:00
Sauyon Lee
c2321bd365 Add support for XSS sink kinds 2021-03-18 10:51:16 -07:00
Sauyon Lee
9f5a9cf7b8 Add HTTP template response body concept 2021-03-18 10:51:15 -07:00
Sauyon Lee
844f0e49a6 Add getEnclosingTextNode to template statements 2021-03-18 10:51:15 -07:00
Sauyon Lee
96d2777431 Add models for Revel raw templates 2021-03-18 10:51:14 -07:00
Sauyon Lee
4932574083 Add HTML template variable model 2021-03-18 10:51:14 -07:00
Sauyon Lee
e3f68771fc Add VariableWithFields 2021-03-18 10:51:13 -07:00
Sauyon Lee
8438b893ec Add HTML tracing capability 2021-03-18 10:51:12 -07:00
Sauyon Lee
ff2034d122 Merge pull request #506 from sn00pyd0g3/add-transport-roundtrip 
Add Transport.RoundTrip()
 2021-03-18 09:40:24 -07:00
sn00py
22c3110602 Update change-notes/2021-03-16-nethttp-updated.md 
Co-authored-by: Sauyon Lee <sauyon@github.com>
 2021-03-18 23:32:23 +08:00
snoopywu
4abf6bbbff Merge branch 'add-transport-roundtrip' of https://github.com/sn00pyd0g3/codeql-go into add-transport-roundtrip 2021-03-16 23:55:16 +08:00
sn00py
263d813b58 Merge branch 'main' into add-transport-roundtrip 2021-03-16 23:54:53 +08:00
snoopywu
af60a448ad Merge branch 'add-transport-roundtrip' of https://github.com/sn00pyd0g3/codeql-go into add-transport-roundtrip 2021-03-16 23:53:52 +08:00
snoopywu
161ce91159 Add changenote for #506 2021-03-16 23:51:26 +08:00
Chris Smowton
772b9b8178 Merge pull request #507 from owen-mc/cache-tcontrolflownode 
Cache TControlFlowNode
 2021-03-16 14:45:35 +00:00
Owen Mansel-Chan
f9c4e12c95 Make this. explicit 2021-03-16 13:40:58 +00:00
Owen Mansel-Chan
ea7ecbaa55 Add hint so optimizer doesn't choose bad join order 2021-03-16 13:40:58 +00:00
Owen Mansel-Chan
c940eb61e7 Cache TControlFlowNode 2021-03-16 13:40:58 +00:00
Chris Smowton
ea2b3906b9 Merge pull request #508 from sauyon/change-note-fix 
Fix change note checker
 2021-03-16 13:37:19 +00:00
Sauyon Lee
645e9867a4 Fix change note checker 2021-03-16 06:23:54 -07:00
sn00py
4318ffee3e Merge branch 'main' into add-transport-roundtrip 2021-03-16 16:52:37 +08:00
Owen Mansel-Chan
8318dcf971 Merge pull request #502 from owen-mc/find-latest-codeql-cli-automatically 
Find latest release of the CLI automatically
 2021-03-16 06:22:50 +00:00
snoopywu
cee30cfde4 fix: autoformat 2021-03-16 01:43:33 +08:00
sn00py
00f12f9210 Update ql/src/semmle/go/frameworks/stdlib/NetHttp.qll 
Co-authored-by: Sauyon Lee <sauyon@github.com>
 2021-03-16 00:41:52 +08:00
Owen Mansel-Chan
52a535463d Find latest release of the CLI automatically 
Also download OS-specific zip files while we're at it.

There are two files in `codeql-win64.zip` called `codeql/codeql` and
`codeql/codeql.exe`. Because of the order they were put into the zip,
they come out in the order `codeql/codeql.exe` followed by
`codeql/codeql`, and something on Windows thinks that the second file
has the same name as the first. It's because it's trying to emulate
linux and running `codeql/codeql` could run either one of them. We need
to make sure we definitely have the `.exe` file, so we explicitly
extract it again afterwards. This workaround is already used in some
other places. The order that the zip file is made in has now been fixed
so this shouldn't be a problem for future releases, so this workaround
can be removed in future.
 2021-03-15 09:25:51 +00:00
snoopywu
e1219480d8 Add Transport.RoundTrip() 2021-03-13 03:17:58 +08:00
Owen Mansel-Chan
4b004b8f25 Merge pull request #501 from owen-mc/add-problem-matchers-to-ci 
Highlight error messages in CI
 2021-03-12 15:22:33 +00:00
Cornelius Riemenschneider
1f4b91dcb0 Merge branch 'main' into add-problem-matchers-to-ci 2021-03-12 14:53:20 +01:00
Chris Smowton
c58ae845e0 Merge pull request #497 from sauyon/package-restrict 
Fix performance issue with 'package'
 2021-03-12 11:17:38 +00:00
Owen Mansel-Chan
ea7af2e4a2 Highlight error messages in CI 
Copied problem-matchers from github/semmle-code, which is used for
running CI for github/codeql.
 2021-03-11 17:14:38 +00:00
Sauyon Lee
db20119267 Remove now-unnecessary bindingset annotations 2021-03-10 08:58:45 -08:00
Sauyon Lee
8ad1010860 Restrict 'package' to real package paths 2021-03-10 08:58:41 -08:00
Aditya Sharad
fecf265641 Merge pull request #496 from github/adityasharad/actions/docs-review-fix 
Actions: Fix comment that tags the Docs team
 2021-03-08 10:53:28 -08:00
Aditya Sharad
86052520a5 Actions: Fix comment that tags the Docs team 2021-03-08 09:18:59 -08:00
Chris Smowton
2752505e84 Merge pull request #495 from owen-mc/fix-evanphxjsonpatch-test 
Model Apply methods correctly
 2021-03-05 18:03:28 +00:00
Owen Mansel-Chan
0a48fef0e7 Model Apply methods correctly 
They were accidentally modeled as functions
 2021-03-05 15:55:44 +00:00
Aditya Sharad
769fddeb38 Merge pull request #491 from adityasharad/actions/docs-review 
Actions: Add workflow to request docs review
 2021-03-03 07:40:26 -08:00
Aditya Sharad
348f8c16d1 Actions: Add workflow to request docs review 
When a PR is labelled with 'ready-for-docs-review',
this workflow comments on the PR to notify the GitHub CodeQL docs team.
Runs on `pull_request_target` events so it can write comments to the PR.
Since this runs in the context of the base repo, it must not check out the PR
or use untrusted data from the event payload.
 2021-03-02 18:05:02 -08:00
Chris Smowton
530b791529 Merge pull request #490 from sauyon/gomoduleauto 
Explicitly set GO111MODULE to auto
 2021-03-01 12:45:39 +00:00
Sauyon Lee
0684143291 Merge pull request #483 from owen-mc/sync-dataflow-libraries 
Sync dataflow libraries
 2021-02-25 11:40:50 -08:00
Sauyon Lee
be14df042d Explicitly set GO111MODULE to auto 2021-02-25 08:22:06 -08:00
Owen Mansel-Chan
f6ff3c009e Merge branch 'main' into sync-dataflow-libraries 2021-02-24 14:14:44 +00:00
Owen Mansel-Chan
e1402b3881 Merge pull request #486 from owen-mc/add-missing-licences-for-stubbed-libraries 
Add license files for stubbed dependencies
 2021-02-23 18:32:42 +00:00
Owen Mansel-Chan
6c0fe2ed45 Merge branch 'main' into add-missing-licences-for-stubbed-libraries 2021-02-23 17:14:28 +00:00
Owen Mansel-Chan
b7323bf9b6 Merge pull request #487 from sauyon/add-shati 
Add shati-patel to CODEOWNERS
 2021-02-23 17:11:28 +00:00
Sauyon Lee
f3969372a4 Add shati-patel to CODEOWNERS 2021-02-23 09:00:10 -08:00