hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-30 19:11:23 +02:00
Code Issues Packages Projects Releases Wiki Activity
35,194 Commits 1,763 Branches 168 Tags
17ce41165daa4cb7c515cc705b41d8a6997fa283
Commit Graph

6825 Commits

Author SHA1 Message Date
Esben Sparre Andreasen
17ce41165d address review comments 2022-04-29 16:58:22 +02:00
Esben Sparre Andreasen
3ff35e8658 Apply suggestions from code review 
Co-authored-by: Henry Mercer <henrymercer@github.com>
 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
9e2a211b16 fix semantic merge conflict 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
437f48c908 rename new features 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
a1925b5bd6 add more features 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
bf186dd441 improve feature documentation 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
f9c7ea1c1d improve feature tests with more cases 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
e524792a4d improve access path strings 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
daa64dbaff support import in getSimpleAccessPath 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
a46a802000 support await in getSimpleAccessPath 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
df2ca897cb avoid using new feautes by default 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
034218742e add CompareFeatures.ql 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
9110fbb77e add generic tests for features 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
6c8c2b2044 Document EndpointFeatures.qll 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
dde084ca1a add ParameterAccessPathSimpleFromArgumentTraversal 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
93551a3145 improve getSimpleAccessPath 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
5800c9d83d refactor calleeAccessPath feature to class 2022-04-29 16:58:19 +02:00
Stephan Brandauer
4eb4929a5d refactor getACallBasedTokenFeature to class-use 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
8fe5f54cd7 Add CalleeAccessPathSimpleFromArgumentTraversal 2022-04-29 16:58:18 +02:00
Esben Sparre Andreasen
66a5e57e59 refactor EndpointFeatures.ql to use classes 2022-04-29 16:58:18 +02:00
Henry Mercer
d3e92f72c4 JS: Nit: Fix typo in QLDoc 2022-04-29 10:54:07 +01:00
Erik Krogh Kristensen
080271f14f Merge pull request #8221 from erik-krogh/libProto 
JS: recognize more module exports from the factory pattern
 2022-04-29 11:23:53 +02:00
Stephan Brandauer
fa377ac763 Merge pull request #8946 from kaeluka/deepFillIn-FN 
JS: fix a FN for prototype polluting function query
 2022-04-29 10:14:41 +01:00
Erik Krogh Kristensen
b74d1fdb1a Merge pull request #8783 from erik-krogh/jsAbstractBi 
JS: don't initialize sanitizer-guards in the standard library
 2022-04-29 11:12:16 +02:00
Stephan Brandauer
3f13a5e082 fix a FN for prototype polluting function query 2022-04-28 22:00:09 +02:00
Stephan Brandauer
f4104e2b72 Merge pull request #8886 from kaeluka/add-rest-parameter-flowstep 
JS: Add flow step to `...rest` parameters
 2022-04-28 08:39:50 +01:00
Anna Railton
00b74d8b1c Merge pull request #8895 from github/annarailton-patch-1 
ATM: Update `TaintedPathInjection` -> `TaintedPath`
 2022-04-27 16:15:46 +01:00
Stephan Brandauer
ee280cda32 Improve docs after PR comment 
Co-authored-by: Asger F <asgerf@github.com>
 2022-04-27 16:24:20 +02:00
Stephan Brandauer
4964f2df9a add flow step to rest parameters 2022-04-27 16:03:19 +02:00
Erik Krogh Kristensen
e1c7d369be Merge pull request #8796 from erik-krogh/redundantImport 
Remove redundant imports
 2022-04-27 12:39:51 +02:00
Anna Railton
1f1ef22f90 Update TaintedPathInjection -> TaintedPath 
Lines up with usual naming in https://github.com/github/ml-ql-adaptive-threat-modeling-backend
 2022-04-27 11:27:43 +01:00
Anna Railton
eacfceb6ce Merge pull request #8605 from github/annarailton/new-query-label-mappings 
Experimental (ATM): update query label mappings
 2022-04-26 16:39:06 +01:00
Erik Krogh Kristensen
d389012b75 Merge branch 'main' into redundantImport 2022-04-26 14:24:51 +02:00
Erik Krogh Kristensen
6738270b65 Merge pull request #8229 from erik-krogh/parenSan 
JS: step through parentheses in barrier functions
 2022-04-26 10:30:21 +02:00
Mathias Vorreiter Pedersen
aca4c8727f Merge pull request #8802 from github/post-release-prep/codeql-cli-2.9.0 
Post-release preparation for codeql-cli-2.9.0
 2022-04-25 22:52:55 +01:00
Jean Helie
47fdb79cf8 Merge pull request #8751 from github/jhelie/add-gitkeep-to-model-resources 
ML: add .gitkeep to resources dir in which ML models are to be found
 2022-04-25 18:08:24 +02:00
Anders Schack-Mulligen
40a16325a9 Minor clean-up in AccessPathSyntax. 2022-04-25 12:27:48 +02:00
Jeroen Ketema
79164056d1 Replace help.semmle.com links by codeql.github.com links 2022-04-22 20:42:11 +02:00
annarailton
9c25da20a4 Update queryNames 2022-04-22 13:42:29 +01:00
CodeQL CI
06e5962da7 Merge pull request #8791 from asgerf/js/static-accessors 
Approved by erik-krogh
 2022-04-22 13:39:32 +01:00
Erik Krogh Kristensen
3b0066e93d address review comments 2022-04-22 14:01:24 +02:00
Erik Krogh Kristensen
8fcbaea273 Merge branch 'main' into labelNaming 2022-04-22 13:19:44 +02:00
Erik Krogh Kristensen
ff73dbc35c delete redundant imports 2022-04-22 12:55:28 +02:00
Khang. Võ Vĩ
f4581ae866 fix PrototypePollutingAssignment examples 2022-04-22 11:55:45 +07:00
github-actions[bot]
1aecfc67c2 Post-release preparation for codeql-cli-2.9.0 2022-04-21 19:22:19 +00:00
github-actions[bot]
eeaf233c29 Release preparation for version 2.9.0 2022-04-21 14:49:00 +00:00
Tom Hvitved
bd09c61504 Merge pull request #8786 from hvitved/ruby/dataflow/argument-tokens 
Ruby: Implement `Argument[any]` and `Argument[n..]`
 2022-04-21 16:31:24 +02:00
Erik Krogh Kristensen
c1798c4ebd remove redundant extends clause 2022-04-21 09:13:18 +02:00
Erik Krogh Kristensen
6007dfa101 fix qldoc in StoredXssCustomizations 
Co-authored-by: Asger F <asgerf@github.com>
 2022-04-21 09:11:08 +02:00
Erik Krogh Kristensen
b9a7c563d1 fix typo in change note 
Co-authored-by: Asger F <asgerf@github.com>
 2022-04-21 09:09:56 +02:00