codeql

mirror of https://github.com/github/codeql.git synced 2026-01-06 11:10:23 +01:00

Author	SHA1	Message	Date
Tony Torralba	149cae9603	Merge pull request #10971 from joefarebrother/android-certificate-pinning Java: Add Android missing certificate pinning query (CWE-295)	2022-12-20 11:03:16 +01:00
Edward Minnix III	39a7c7bb12	Merge pull request #11282 from egregius313/egregiu313/webview-addjavascriptinterface Java: Query for detecting addJavascriptInterface method calls	2022-12-19 11:28:45 -05:00
Henry Mercer	30451ee950	Merge pull request #11681 from github/henrymercer/mergeback-3.8 Merge `rc/3.8` back to `main`	2022-12-16 17:43:12 +00:00
Jami	fd63348549	Merge pull request #11585 from jcogs33/jcogs33/mad-metrics-query Java: add MaD metrics query	2022-12-15 19:26:51 -05:00
Michael Nebel	12c1ebd81c	C#/Java: Add change note.	2022-12-15 09:41:14 +01:00
Henry Mercer	7167f078be	Merge branch 'main' into henrymercer/mergeback-3.8	2022-12-13 18:40:53 +00:00
Jami	93d8a03e73	Merge branch 'main' into jcogs33/mad-metrics-query	2022-12-12 20:31:53 -05:00
Jami Cogswell	a77acd6745	Java: add change note	2022-12-12 17:28:12 -05:00
Edward Minnix III	0ebfee8b11	Merge pull request #11241 from egregius313/egregius313/webview-file-access Java: Query to detect Android Webview file access	2022-12-12 11:12:26 -05:00
github-actions[bot]	0b2fb4f70a	Release preparation for version 2.11.6	2022-12-10 15:49:35 +00:00
Chris Smowton	af08fe8659	Add change note re: Kotlin version limit	2022-12-10 15:32:22 +00:00
Joe Farebrother	a14ebb7c03	Fixes	2022-12-09 13:41:18 +00:00
Joe Farebrother	fae4043008	Add change note	2022-12-09 13:41:18 +00:00
Chris Smowton	49bc524fd0	Merge remote-tracking branch 'origin/rc/3.8' into smowton/admin/merge-rc38-into-main	2022-12-08 11:12:30 +00:00
Edward Minnix III	170c9af9e8	Merge pull request #11238 from egregius313/egregius313/webview-setjavascriptenabled Java: Query for detecting enabling Javascript in Android WebSettings	2022-12-07 09:31:58 -05:00
Jami	edfcc0cd6d	Merge pull request #11487 from jcogs33/jcogs33/supportedexternalapis-telemetry-query Java/C#: add SupportedExternalApis telemetry query	2022-12-02 13:27:51 -05:00
Jami Cogswell	aa633412f4	add change notes	2022-12-01 15:25:45 -05:00
github-actions[bot]	31ab22e3a0	Release preparation for version 2.11.5	2022-12-01 20:05:14 +00:00
Ian Lynagh	cd8c40e063	Kotlin: Enable java/non-serializable-field for Kotlin It now ignores compiler-generated classes	2022-11-30 17:58:43 +00:00
Ian Lynagh	a423f5f695	Kotlin: Enable java/misnamed-type query We used to get alerts for the class around a local function, a lambda, or a function reference, which we give name "". Now those are marked as compiler-generated, and the query ignores compiler-generated types.	2022-11-25 17:11:40 +00:00
Tony Torralba	1667fbad88	Add change note	2022-11-22 11:48:21 +01:00
Jami	8a73675483	Merge pull request #11070 from jcogs33/java-regex-injection Java: Promote regex injection query from experimental	2022-11-21 15:04:26 -05:00
Edoardo Pirovano	6c33ddcd47	Merge pull request #11349 from github/edoardo/2.11.4-mergeback Merge `rc/3.8` into `main`	2022-11-21 18:08:27 +00:00
Tony Torralba	aa2c7426ad	Add change note	2022-11-21 11:42:40 +01:00
Chris Smowton	d45c35a02e	Copyedit the Java src qlpack 0.4.4 release nnotes	2022-11-17 16:57:08 +00:00
github-actions[bot]	e105c13e77	Release preparation for version 2.11.4	2022-11-17 16:40:45 +00:00
Joe Farebrother	b4216767ad	Add change note	2022-11-16 10:54:13 +00:00
Ed Minnix	38d47d63ec	Java: Add change note for `addJavascriptInterface` query	2022-11-15 23:40:03 -05:00
Ed Minnix	631a08496e	Java: WebView file access query change note	2022-11-12 10:09:35 -05:00
Ed Minnix	7712ec2523	Java: setJavascriptEnabled query change notes	2022-11-12 09:54:26 -05:00
Jami	cfbaf5e53b	Merge pull request #10785 from jcogs33/insuff-key-size-globalflow-keysize Java: Promote insufficient key size query from experimental	2022-11-08 18:05:01 -05:00
Jami Cogswell	e49c5213ca	update change note	2022-11-08 15:29:33 -05:00
Jami Cogswell	f6f26fe6c5	refactor code; add change note	2022-11-08 15:29:33 -05:00
github-actions[bot]	508327235a	Release preparation for version 2.11.3	2022-11-04 20:16:23 +00:00
Jami Cogswell	910eebcf5d	update change note	2022-11-03 14:44:04 -04:00
Jeroen Ketema	1d7efd8e82	Merge pull request #10905 from jsoref/spelling-code-scanning-product Spelling code scanning product	2022-10-27 12:55:37 +02:00
Josh Soref	8ff24bc3b9	spelling: additional Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>	2022-10-20 08:18:23 -04:00
github-actions[bot]	9a0848bbc4	Release preparation for version 2.11.2	2022-10-20 11:05:19 +00:00
Jami Cogswell	b7f360647e	rename change note	2022-10-19 11:37:42 -04:00
Tony Torralba	fd8f8cb930	Merge pull request #10223 from atorralba/atorralba/unsafe-content-resolver Java: New Android query to detect unsafe content URI resolution	2022-10-19 11:22:04 +02:00
Edward Minnix III	ce740b47ae	Merge pull request #10637 from egregius313/egregius313/android-misconfigured-contentprovider Android ContentProvider Incomplete Permissions	2022-10-12 09:41:03 -04:00
Jami Cogswell	7d94590d79	add change note	2022-10-11 16:56:10 -04:00
github-actions[bot]	a02dcdc5e1	Release preparation for version 2.11.1	2022-10-07 02:20:28 +00:00
Tony Torralba	4a18892da9	Second query version Remove sinks flowing to write operations requirement	2022-10-06 16:28:17 +02:00
Tony Torralba	89d905cc03	Add change note	2022-10-04 12:27:01 +02:00
Ed Minnix	09077935b1	Added query change note	2022-10-03 11:30:43 -04:00
erik-krogh	7d643e41f3	Merge branch 'main' into java-followMsg	2022-10-01 10:48:06 +02:00
Joe Farebrother	6cb26d5129	Merge pull request #10241 from joefarebrother/android-webview-dubugging Java: Add query for WebView debugging enabled	2022-09-28 10:50:51 +01:00
erik-krogh	46b5bf32f9	update alert-messsages of java queries	2022-09-26 12:15:25 +02:00
github-actions[bot]	f5cf8cffa3	Release preparation for version 2.11.0	2022-09-22 20:14:12 +00:00

1 2 3 4

195 Commits