codeql

mirror of https://github.com/github/codeql.git synced 2026-02-12 05:01:06 +01:00

Author	SHA1	Message	Date
Owen Mansel-Chan	130f8f148b	Convert barrier to MaD I confirmed that without the model a test fails.	2026-01-13 10:29:16 +00:00
Owen Mansel-Chan	68b618176e	Convert barrier guard to MaD I checked that without the model a test fails.	2026-01-13 10:29:15 +00:00
Owen Mansel-Chan	b30bc5ea44	Allow MaD barriers relating to ExternalLocationSink	2026-01-13 10:29:13 +00:00
Owen Mansel-Chan	004d40ee93	Allow MaD barriers using sink kinds	2026-01-13 10:29:12 +00:00
Anders Schack-Mulligen	8257475ffb	Merge pull request #21132 from aschackmull/csharp/mad-barriers C#: Add support for MaD barriers and barrier guards.	2026-01-13 11:00:02 +01:00
Owen Mansel-Chan	a96cd399b1	Merge pull request #21157 from github/dependabot/go_modules/go/extractor/extractor-dependencies-0d17b202ee Bump golang.org/x/tools from 0.40.0 to 0.41.0 in /go/extractor in the extractor-dependencies group	2026-01-13 09:56:37 +00:00
Simon Friis Vindum	7f092e418e	Merge pull request #21152 from paldepind/rust/typeinference-dir Rust: Move everything type inference related into the typeinference directory	2026-01-13 10:41:13 +01:00
Asger F	ca52fe59e8	Merge pull request #20918 from asgerf/js/response-default-content-type JS: Handle default 'content-type' header in Response() objects	2026-01-13 10:34:40 +01:00
Owen Mansel-Chan	f5b13db4ea	Merge pull request #21015 from aschackmull/go/mad-barriers Go: Support for MaD barriers and barrier guards.	2026-01-13 09:31:09 +00:00
Anders Schack-Mulligen	1151fc3be2	Update csharp/ql/lib/semmle/code/csharp/dataflow/internal/ExternalFlow.qll Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>	2026-01-13 09:14:33 +01:00
Simon Friis Vindum	e7791120fa	Rust: Address review comments	2026-01-13 07:53:39 +01:00
dependabot[bot]	37bb9d77d3	Bump golang.org/x/tools Bumps the extractor-dependencies group in /go/extractor with 1 update: [golang.org/x/tools](https://github.com/golang/tools). Updates `golang.org/x/tools` from 0.40.0 to 0.41.0 - [Release notes](https://github.com/golang/tools/releases) - [Commits](https://github.com/golang/tools/compare/v0.40.0...v0.41.0) --- updated-dependencies: - dependency-name: golang.org/x/tools dependency-version: 0.41.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: extractor-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2026-01-13 05:38:36 +00:00
Simon Friis Vindum	9e74a7869a	Rust: Move everything type inference related into the typeinference directory	2026-01-12 16:31:34 +01:00
Tom Hvitved	c666fc71ca	Merge pull request #21147 from hvitved/rust/fix-more-models Rust: Add missing `.Reference` in various models	2026-01-12 15:27:51 +01:00
Tom Hvitved	17441a5462	Rust: Add missing `.Reference` in various models	2026-01-12 14:21:45 +01:00
Anders Schack-Mulligen	c28062aff5	Merge pull request #21127 from aschackmull/ssa/phi-input-perf SSA: Improve performance of finding relevant phi input nodes.	2026-01-12 13:29:58 +01:00
Tom Hvitved	6b34d0d250	Merge pull request #21123 from hvitved/rust/fix-path-models Rust: Improve/add various models	2026-01-12 12:20:56 +01:00
Simon Friis Vindum	e4db3b17b4	Merge pull request #20584 from paldepind/cpp/range-analysis-fix C++: Range analysis guard improvement	2026-01-12 11:23:48 +01:00
Simon Friis Vindum	c9e6d4235f	Merge pull request #21139 from paldepind/rust/fn-syntax-return Rust: Make function trait syntax without return type default to unit	2026-01-12 11:22:50 +01:00
Owen Mansel-Chan	57ec850397	Merge pull request #21146 from github/dependabot/go_modules/go/extractor/extractor-dependencies-555680b348 Bump golang.org/x/mod from 0.31.0 to 0.32.0 in /go/extractor in the extractor-dependencies group	2026-01-12 09:44:33 +00:00
Anders Schack-Mulligen	aae8ec2240	SSA: Use fastTC for even better performance.	2026-01-12 09:39:15 +01:00
dependabot[bot]	4318c285cb	Bump golang.org/x/mod Bumps the extractor-dependencies group in /go/extractor with 1 update: [golang.org/x/mod](https://github.com/golang/mod). Updates `golang.org/x/mod` from 0.31.0 to 0.32.0 - [Commits](https://github.com/golang/mod/compare/v0.31.0...v0.32.0) --- updated-dependencies: - dependency-name: golang.org/x/mod dependency-version: 0.32.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: extractor-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2026-01-12 03:07:33 +00:00
Chris Smowton	44089d84a3	Merge pull request #21102 from github/smowton/admin/respect-config-paths-filters-pre-finalize All languages: account for paths and paths-ignore in XML and other ancillary extraction	2026-01-09 16:23:26 +00:00
Chris Smowton	fa0e8cc4a4	Merge pull request #21137 from smowton/smowton/admin/reapply-java-xml-paths-filtering Java: revert revert of `paths` / `paths-ignore` handling in XML and other ancillary extractor	2026-01-09 16:22:26 +00:00
Simon Friis Vindum	41921a85bb	Rust: Make function trait syntax without return type default to unit	2026-01-09 16:08:01 +01:00
Simon Friis Vindum	d45269609a	Rust: Add test with fn trait syntax without return type	2026-01-09 15:38:12 +01:00
Chris Smowton	634e9e6c39	Reapply "Change note" This reverts commit `688f10daf1`.	2026-01-09 13:42:48 +00:00
Chris Smowton	13e0e6c694	Reapply "Add integration test for paths and paths-ignore vs. Java buildless mode" This reverts commit `9db11f73c5`.	2026-01-09 13:42:43 +00:00
Tom Hvitved	f3d78a4e0b	Rust: Update expected test output	2026-01-09 14:40:04 +01:00
Tom Hvitved	609eb17e30	Rust: Add more models	2026-01-09 14:40:03 +01:00
Tom Hvitved	0d0029f5a3	Rust: Update expected test output	2026-01-09 14:40:01 +01:00
Tom Hvitved	792908586a	Rust: Add some `ffi` models	2026-01-09 14:40:00 +01:00
Tom Hvitved	31b0d3eb1d	Rust: Fix some models in `fs.model.yml`	2026-01-09 14:39:59 +01:00
Tom Hvitved	636bbe30f9	Merge pull request #21122 from hvitved/rust/summary-read-taint-step Rust: Also lift read steps in summaries as taint steps	2026-01-09 14:39:39 +01:00
Simon Friis Vindum	ac62a9fe57	Merge pull request #21133 from paldepind/rust/type-item-path-resolution Rust: Use `TypeItem` in path resolution	2026-01-09 14:35:12 +01:00
Taus	89ddd67ebe	Merge pull request #21002 from github/tausbn/python-add-models-for-zstd-compression Python: Add modelling for `zstd.compression`	2026-01-09 14:05:06 +01:00
Tom Hvitved	209ee9236b	Rust: Also lift read steps in summaries as taint steps	2026-01-09 12:13:46 +01:00
Tom Hvitved	1a29b32af9	Merge pull request #20987 from hvitved/rust/type-inference-deref-trait Rust: Handle `Deref` trait in type inference and data flow	2026-01-09 12:10:46 +01:00
Owen Mansel-Chan	9493d9d5ab	Merge pull request #21131 from github/workflow/coverage/update Update CSV framework coverage reports	2026-01-09 10:48:36 +00:00
Simon Friis Vindum	11bd334370	Rust: Use `TypeItem` in path resolution	2026-01-09 11:40:16 +01:00
Tom Hvitved	e2eaf80202	Rust: Fix QL4QL finding	2026-01-09 11:28:37 +01:00
Owen Mansel-Chan	d7acb75f9d	Merge pull request #21055 from owen-mc/java/allow-mad-barriers Java: allow MaD barriers	2026-01-09 10:27:48 +00:00
Tom Hvitved	6028cd6636	Address review comments	2026-01-09 11:14:23 +01:00
Owen Mansel-Chan	ca805e9d84	Fix QLDoc	2026-01-09 10:09:22 +00:00
Owen Mansel-Chan	c271e52fe5	Validate models for barriers and barrier guards	2026-01-09 10:04:56 +00:00
Owen Mansel-Chan	8c9318b1a0	Minor tweaks to QLDocs	2026-01-09 09:38:10 +00:00
Anders Schack-Mulligen	e35fa923c7	C#: Add support for MaD barriers and barrier guards.	2026-01-09 10:32:19 +01:00
Owen Mansel-Chan	70c90a1063	Merge pull request #21129 from owen-mc/java/delete-promoted-experimental-models Java: Delete experimental models that have been promoted	2026-01-09 09:30:32 +00:00
Simon Friis Vindum	3a135888c7	C++: Improve bounds from inequalities on integers	2026-01-09 10:26:36 +01:00
Simon Friis Vindum	9af432d2f9	C++: Add simple range analysis tests for inequalities	2026-01-09 10:12:36 +01:00

1 2 3 4 5 ...

85159 Commits