Erik Krogh Kristensen
|
17005dde2d
|
QL: fix query-id, and add description
|
2022-04-25 15:21:35 +02:00 |
|
Erik Krogh Kristensen
|
45080e7777
|
PY: add missing qldoc
|
2022-04-22 15:30:31 +02:00 |
|
Erik Krogh Kristensen
|
acac8919b3
|
PY: update expected output for deprecation warning in test file
|
2022-04-22 15:28:31 +02:00 |
|
Erik Krogh Kristensen
|
ff73dbc35c
|
delete redundant imports
|
2022-04-22 12:55:28 +02:00 |
|
Erik Krogh Kristensen
|
ae20393e38
|
QL: add redundant-import query
|
2022-04-22 12:47:13 +02:00 |
|
Erik Krogh Kristensen
|
a96489b23d
|
delete duplicate imports
|
2022-04-22 12:41:30 +02:00 |
|
Erik Krogh Kristensen
|
c015ef6ef4
|
Merge pull request #8810 from erik-krogh/rubyPathgraph
Ruby: dont import the PathGraph module from Query.qll files
|
2022-04-22 12:02:59 +02:00 |
|
Mathias Vorreiter Pedersen
|
489355cdab
|
Merge pull request #8793 from MathiasVP/exclude-internal-diagnostics
Exclude internal diagnostics from all selectors
|
2022-04-22 10:55:38 +01:00 |
|
Tom Hvitved
|
093a3879be
|
Merge pull request #8794 from hvitved/ruby/capture-barrier-guards
Ruby: Handle captured variables in `BarrierGuard::getAGuardedNode()`
|
2022-04-22 11:47:36 +02:00 |
|
Erik Krogh Kristensen
|
a737350f27
|
RB: dont import the PathGraph module from Query.qll files
|
2022-04-22 11:46:06 +02:00 |
|
Anders Schack-Mulligen
|
bf921177f4
|
Merge pull request #8811 from erik-krogh/syncLate
Java: get tainttracking3/TaintTrackingImpl.qll in sync
|
2022-04-22 11:21:01 +02:00 |
|
Asger F
|
0187e9a3b1
|
Merge pull request #8808 from vovikhangcdv/doublevkay/fixing-PrototypePollutngAssignment-examples
Javascript: Fix PrototypePollutingAssignment example which is incorrect use of express leads to no result when scanning.
|
2022-04-22 11:18:23 +02:00 |
|
Tom Hvitved
|
be5363ea53
|
Merge pull request #8801 from hvitved/ruby/exclude-splat-in-taint-tracking
Ruby: Exclude `SplatExpr` from taint tracking
|
2022-04-22 11:12:05 +02:00 |
|
Erik Krogh Kristensen
|
dca74a1f45
|
get tainttracking3/TaintTrackingImpl.qll in sync
|
2022-04-22 10:37:31 +02:00 |
|
Chris Smowton
|
d309e15072
|
Merge pull request #8748 from smowton/smowton/admin/dependent-dataflow-configs
Java: Avoid higher-numbered dataflow configs that depend on lower-numbered ones
|
2022-04-22 08:56:00 +01:00 |
|
Mathias Vorreiter Pedersen
|
35471ff23c
|
Merge pull request #8809 from AlexDenisov/alexdenisov/rename-swift-db-columns
Swift: rename certain dbscheme columns
|
2022-04-22 08:17:37 +01:00 |
|
Mathias Vorreiter Pedersen
|
52dc016a7a
|
Merge pull request #8798 from jketema/using
C++: Fix tests after extractor changes that improve `using` position accuracy
|
2022-04-22 08:15:34 +01:00 |
|
Alex Denisov
|
e85cdf2ec3
|
Swift: rename certain dbscheme columns
|
2022-04-22 08:31:09 +02:00 |
|
AlexDenisov
|
a5189eae9f
|
Merge pull request #8735 from redsun82/swift-dbscheme-gen
Swift: dbscheme generator
|
2022-04-22 08:26:59 +02:00 |
|
Khang. Võ Vĩ
|
f4581ae866
|
fix PrototypePollutingAssignment examples
|
2022-04-22 11:55:45 +07:00 |
|
Tom Hvitved
|
c20ce62767
|
Ruby: Exclude SplatExpr from taint tracking
`SplatExpr`s are modelled using flow summaries, so there is no need to include them
explicitly in `defaultAdditionalTaintStep`.
|
2022-04-21 20:27:04 +02:00 |
|
Mathias Vorreiter Pedersen
|
813de65118
|
Merge pull request #8799 from jketema/comment-fix
C++: Fix the layout of comments in `getBufferSize`
|
2022-04-21 17:17:42 +01:00 |
|
Jeroen Ketema
|
a09fd8c35e
|
C++: Fix the layout of comments in getBufferSize
|
2022-04-21 17:42:10 +02:00 |
|
Jeroen Ketema
|
8139e1a2a8
|
C++: Fix tests after extractor changes that improve using position accuracy
|
2022-04-21 17:36:11 +02:00 |
|
Tom Hvitved
|
bd09c61504
|
Merge pull request #8786 from hvitved/ruby/dataflow/argument-tokens
Ruby: Implement `Argument[any]` and `Argument[n..]`
|
2022-04-21 16:31:24 +02:00 |
|
Michael Nebel
|
0ec5aa6095
|
Merge pull request #8675 from michaelnebel/csharp/capturemodelimprovement
C#: CaptureModel improvements
|
2022-04-21 15:16:35 +02:00 |
|
Tom Hvitved
|
addb92f13b
|
Ruby: Handle captured variables in BarrierGuard::getAGuardedNode()
|
2022-04-21 13:25:47 +02:00 |
|
Tom Hvitved
|
325b451288
|
Ruby: Add barrier guards test involving captured variables
|
2022-04-21 13:25:40 +02:00 |
|
Michael Nebel
|
6180970ae7
|
C#: Address review comments.
|
2022-04-21 13:05:32 +02:00 |
|
Mathias Vorreiter Pedersen
|
74906fcbaf
|
Add exclusion rules for internal diagnostics queries to all the suite selectors (previously it was only excluded in the Code Scanning selector).
|
2022-04-21 10:11:26 +01:00 |
|
Tom Hvitved
|
b6309c9db0
|
Merge pull request #8792 from hvitved/csharp/exclude-model-generation-from-cs-suites
C#: Exclude model generation queries from all suites
|
2022-04-21 11:06:56 +02:00 |
|
Tom Hvitved
|
f65b6ae3d1
|
C#: Exclude model generation queries from all suites
|
2022-04-21 09:51:52 +02:00 |
|
Mathias Vorreiter Pedersen
|
966c6f108b
|
Merge pull request #8720 from MathiasVP/smaller-join-in-get-root-cause
C++: Remove TC from `Element.getRootCause`
|
2022-04-21 08:23:05 +01:00 |
|
Harry Maclean
|
3ea6ba5398
|
Merge pull request #8618 from hmac/hmac/qlhelp-comment-workflow
Update existing qhelp comment, if it exists
|
2022-04-21 14:01:17 +12:00 |
|
Erik Krogh Kristensen
|
9927a82520
|
Merge pull request #8789 from erik-krogh/apiIpaBranches
JS/PY: mention newtype constructors in API graph label classes
|
2022-04-20 23:39:46 +02:00 |
|
Erik Krogh Kristensen
|
ff5b873557
|
Merge pull request #8773 from erik-krogh/exhaustion
JS: promote `js/resource-exhaustion` out of experimental
|
2022-04-20 19:33:42 +02:00 |
|
Erik Krogh Kristensen
|
aec8413487
|
PY: mention newtype constructors in API graph label classes
|
2022-04-20 18:38:44 +02:00 |
|
Erik Krogh Kristensen
|
ef51b46795
|
JS: mention newtype constructors in API graph label classes
|
2022-04-20 18:37:19 +02:00 |
|
Erik Krogh Kristensen
|
8bd975a6ec
|
Merge pull request #8785 from hvitved/ruby/api-graph-labels
Ruby: Mention `newtype` constructors in API graph label classes
|
2022-04-20 18:32:09 +02:00 |
|
Arthur Baars
|
040dd09c5a
|
Merge pull request #8718 from github/sj/codeowners-pms
Update CODEOWNERS for documentation and license changes
|
2022-04-20 18:08:43 +02:00 |
|
Arthur Baars
|
98df392b4f
|
Merge pull request #8719 from github/sj/update-readme-license-explanation
Update README to clarify license explanation
|
2022-04-20 18:07:00 +02:00 |
|
AlexDenisov
|
a187939424
|
Merge pull request #8784 from AlexDenisov/alexdenisov/swift-package-test-sdk
Swift: package test SDK
|
2022-04-20 16:07:40 +02:00 |
|
Bas van Schaik
|
732a2c32a8
|
Update README.md
|
2022-04-20 15:03:49 +01:00 |
|
Anders Schack-Mulligen
|
677c436e99
|
Merge pull request #8703 from aschackmull/dataflow/revert-state-in-out-barriers
Dataflow: Revert support for flow-state based in-/out-barriers
|
2022-04-20 14:54:02 +02:00 |
|
Tom Hvitved
|
ea229d361c
|
Sync files
|
2022-04-20 13:55:18 +02:00 |
|
Tom Hvitved
|
b4542c58c2
|
Ruby: Implement Argument[any] and Argument[n..]
|
2022-04-20 13:55:18 +02:00 |
|
Tom Hvitved
|
501b03149f
|
Ruby: Mention newtype constructors in API graph label classes
|
2022-04-20 13:37:55 +02:00 |
|
Nick Rolfe
|
3d109a4051
|
Merge pull request #8777 from github/nickrolfe/post_update_node
Ruby: make PostUpdateNode public
|
2022-04-20 12:04:37 +01:00 |
|
Alex Denisov
|
682c910d49
|
Swift: package test SDK
|
2022-04-20 12:35:19 +02:00 |
|
Mathias Vorreiter Pedersen
|
3388196c27
|
Merge branch 'main' into smaller-join-in-get-root-cause
|
2022-04-20 11:16:00 +01:00 |
|