codeql

mirror of https://github.com/github/codeql.git synced 2026-03-17 13:06:48 +01:00

Author	SHA1	Message	Date
Mark Shannon	2ba122373a	Merge pull request #1128 from taus-semmle/python-paramiko-unsafe-host-key-validation Python: Add query for insecure SSH host key policies in Paramiko.	2019-04-04 16:57:13 +01:00
Taus	c5f41c1a5a	Merge pull request #1207 from markshannon/python-fix-cwe-ref Fix CWE tag for Code injection query.	2019-04-04 17:08:51 +02:00
Mark Shannon	c2e814a11a	Fix CWE tag for Code injection query.	2019-04-04 15:09:12 +01:00
Anders Schack-Mulligen	15fa4f8b7a	Merge pull request #1007 from jbj/dataflow-dispatch-no-ctx C++: Simplify stubs in DataFlowDispatch.qll	2019-04-04 11:25:50 +02:00
yh-semmle	b226cb64cd	Merge pull request #1189 from aschackmull/java/preconditions Java: Support precondition calls as guards (ODASA-7796).	2019-04-03 21:36:08 -04:00
Tom Hvitved	f5d52d0652	Merge pull request #274 from lukecartey/csharp/remove-security-tags C#: Remove the 'security' tag from some queries	2019-04-03 17:04:25 +02:00
Jonas Jensen	d0091b28ee	Merge pull request #1199 from geoffw0/printfld CPP: Support %Ld in printf.qll	2019-04-03 15:38:16 +02:00
Taus	b79b53f5e3	Merge pull request #1103 from markshannon/python-encapsulate-builtins Python: encapsulate extensionals dealing with 'builtin' objects.	2019-04-03 15:20:42 +02:00
Anders Schack-Mulligen	9211927112	Java: Add change note.	2019-04-03 13:17:18 +02:00
Geoffrey White	aa21db3ed3	CPP: Change note.	2019-04-03 11:57:38 +01:00
Geoffrey White	d4c931cf11	CPP: Permit %Ld and similar.	2019-04-03 11:46:48 +01:00
Geoffrey White	b3fd7ab757	CPP: Add test cases.	2019-04-03 11:46:30 +01:00
semmle-qlci	1da828fa80	Merge pull request #1195 from esben-semmle/js/firebase-express-requests Approved by xiemaisi	2019-04-03 11:36:02 +01:00
Anders Schack-Mulligen	5379c6e3c5	Merge pull request #1197 from felicity-semmle/java/update-query-description Java: Fix typo in query description	2019-04-03 12:09:26 +02:00
Felicity Chapman	ffeb61c698	Fix typo in query description	2019-04-03 10:46:48 +01:00
Jonas Jensen	f9c9efeabe	Merge pull request #1188 from geoffw0/donotedit CPP: Consider more files to be generated.	2019-04-03 09:52:28 +02:00
Esben Sparre Andreasen	f23a5a5fee	JS: model firebase-functions/https.onRequest	2019-04-03 08:01:45 +02:00
Robert Marsh	65d0412692	Merge pull request #1194 from geoffw0/dead-goto CPP: Fix false positive from DeadCodeGoto.ql	2019-04-02 10:03:15 -07:00
Jonas Jensen	eae2fe5a16	Merge pull request #1190 from Semmle/rc/1.20 Merge 1.20 into master	2019-04-02 15:29:12 +02:00
Geoffrey White	2e106879b8	CPP: Change note.	2019-04-02 14:25:38 +01:00
Geoffrey White	8979361255	CPP: Exclude functions containing preprocessor logic.	2019-04-02 14:24:37 +01:00
Geoffrey White	5cb30b04cc	CPP: Add a test case.	2019-04-02 13:15:40 +01:00
semmle-qlci	4ec2df6bad	Merge pull request #1179 from asger-semmle/js-windoc Approved by xiemaisi	2019-04-02 11:21:07 +01:00
Jonas Jensen	b7e6f9a43e	Merge pull request #1183 from aibaars/fix-query-metadata Fix queries with inconsistent `@kind` and `select` statements	2019-04-02 12:00:25 +02:00
Anders Schack-Mulligen	b1e364b56a	Java: Support precondition calls as guards.	2019-04-02 10:58:46 +02:00
Geoffrey White	bce6ee5c27	CPP: Consider more files to be generated.	2019-04-02 09:19:55 +01:00
semmle-qlci	02f4695a5b	Merge pull request #1152 from esben-semmle/js/koa-improvements Approved by xiemaisi	2019-04-02 08:51:19 +01:00
semmle-qlci	54b4e59d12	Merge pull request #1182 from esben-semmle/js/sourcenode-regexp-literals Approved by xiemaisi	2019-04-01 21:58:58 +01:00
Esben Sparre Andreasen	2622fc64db	JS: autoformat	2019-04-01 22:55:17 +02:00
Esben Sparre Andreasen	86a046a28e	JS: change notes for Koa improvements	2019-04-01 22:55:17 +02:00
Esben Sparre Andreasen	7fec005806	JS: use DataFlow::SourceNode in three locations in Koa	2019-04-01 22:55:17 +02:00
Esben Sparre Andreasen	919eed6630	JS: add koa tests	2019-04-01 22:55:17 +02:00
Esben Sparre Andreasen	00c8387bb3	JS: model Koa redirects	2019-04-01 22:55:17 +02:00
Esben Sparre Andreasen	298dbe13c4	JS: improve Koa model to account for aliases on the context object	2019-04-01 22:49:00 +02:00
Esben Sparre Andreasen	0e01988622	JS: add koa tests	2019-04-01 22:49:00 +02:00
semmle-qlci	a4de82de06	Merge pull request #1185 from xiemaisi/js/improve-amd-imports Approved by asger-semmle	2019-04-01 16:30:47 +01:00
Arthur Baars	5eb58f3ba2	C++: fix HubClasses.ql by changing its kind to 'table'	2019-04-01 16:17:23 +02:00
Tom Hvitved	007cee8426	Merge pull request #1184 from calumgrant/cs/static-cryptotransform C#: Remove static SHA1CryptoServiceProvider	2019-04-01 16:03:53 +02:00
semmle-qlci	a7d9a50dcf	Merge pull request #1176 from xiemaisi/js/fix-socket-io-type-tracking Approved by asger-semmle	2019-04-01 13:57:13 +01:00
calum	932961bf19	C#: Remove static SHA1CryptoServiceProvider	2019-04-01 10:46:39 +01:00
Arthur Baars	4b95fbbb39	C++ Fix select statements of AV 3 and 81	2019-04-01 11:20:12 +02:00
Arthur Baars	ba7fdddafb	Change @kind to 'table' for test and sanity checks queries that don't select problems	2019-04-01 11:20:12 +02:00
Esben Sparre Andreasen	6908c54df6	JS: change notes	2019-04-01 09:25:07 +02:00
Esben Sparre Andreasen	364ba1b4ac	JS: use RegExpLiteral as a SourceNode	2019-04-01 09:19:25 +02:00
Esben Sparre Andreasen	7923c9d77c	JS: add tests for missing flow of regular expressions	2019-04-01 09:19:25 +02:00
Esben Sparre Andreasen	42d3012f81	JS: let RegExpLiteral be a DataFlow::SourceNode	2019-04-01 09:19:25 +02:00
Jonas Jensen	76caad0fb4	Merge pull request #1119 from geoffw0/wprintf2 CPP: Better handling of %s/%c/%S/%C in Printf/FormattingFunction.qll	2019-04-01 08:47:20 +02:00
semmle-qlci	ed0ef36427	Merge pull request #1035 from asger-semmle/firebase Approved by xiemaisi	2019-03-29 13:44:02 +00:00
Asger F	4c99c01c1a	JS: review comments	2019-03-29 13:42:22 +00:00
Max Schaefer	e4c4f7a5ae	Update javascript/ql/src/semmle/javascript/DOM.qll Co-Authored-By: asger-semmle <42069257+asger-semmle@users.noreply.github.com>	2019-03-29 13:42:00 +00:00

1 2 3 4 5 ...

4249 Commits