hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-06-03 04:40:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
47,658 Commits 1,773 Branches 168 Tags
2bbd010db1d6831919652d90b3b2b32aa36cf974
Commit Graph

47658 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
tiferet
2bbd010db1 Start work on extracting the "training" part of the prompt from positive and negative examples in the current repo. 2022-12-01 17:10:34 -08:00
tiferet
413db2b15e Make it clearer to codex which parts of the prompt are code by using `` 2022-12-01 15:48:50 -08:00
tiferet
7eb04f8c32 Bug fix 2022-12-01 15:48:50 -08:00
tiferet
58bd6ac504 Fix implicit uses of this 2022-12-01 15:48:50 -08:00
tiferet
47b8f1420c Tokenize a neighborhood around the endpoint and properly create the last row of the codex prompt 2022-12-01 15:48:50 -08:00
tiferet
486752d19e Code improvements: 
- Replace the containment logic with built in `Location` functionality.
- Generalize `tokenize` to output the tokens that fall within any location.
 2022-12-01 15:48:50 -08:00
tiferet
a79bdf1cbc Generalize endpoint tokenization to work correctly across multiple lines 2022-12-01 15:48:50 -08:00
tiferet
3be6b42200 Add in Aditya's endpoint tokenization 2022-12-01 15:48:50 -08:00
tiferet
55839c8df2 small update 2022-12-01 15:48:50 -08:00
tiferet
0c87b25698 Typo fix 2022-12-01 15:48:50 -08:00
tiferet
33a8962f5a For now hardcode a training prompt string 2022-12-01 15:48:50 -08:00
tiferet
456aab0497 Make predicates private if they don't need to be public 2022-12-01 15:48:50 -08:00
tiferet
1919206e1e Start adding the codex prompt feature 2022-12-01 15:48:50 -08:00
tiferet
ad13f5585d Extract only a single feature, the codex prompt for the current endpoint. 2022-12-01 15:48:50 -08:00
Rasmus Wriedt Larsen
8af2138ade Merge pull request #11518 from RasmusWL/fix-call-graph-meta-query 
Python: Fix `py/meta/points-to-call-graph`
 2022-12-01 20:40:24 +01:00
Paolo Tranquilli
2976daa8eb Merge pull request #11524 from github/redsun82/swift-remove-dangling-ql-file 
Swift: remove obsolete file
 2022-12-01 17:32:59 +01:00
AlexDenisov
35060659ee Merge pull request #11500 from github/alexdenisov/remove-patches-from-extractor 
Swift: remove patches from the extractor
 2022-12-01 17:17:36 +01:00
Paolo Tranquilli
68504c097c Swift: remove obsolete file 2022-12-01 17:07:54 +01:00
Rasmus Wriedt Larsen
d47b3265c4 Python: Fix py/meta/points-to-call-graph 2022-12-01 14:56:10 +01:00
Ian Lynagh
ef8e52a4b0 Merge pull request #11437 from igfoo/igfoo/NonSerializableField 
Kotlin: Enable java/non-serializable-field for Kotlin
 2022-12-01 11:01:15 +00:00
Paolo Tranquilli
4ac9c875f1 Merge pull request #11508 from github/redsun82/swift-frontend-invocations 
Swift: add `-merge-modules` to `frontend-invocations` test
 2022-12-01 11:26:58 +01:00
Rasmus Wriedt Larsen
e7264fb495 Merge pull request #11480 from RasmusWL/sink-meta-query 
Python: Add taint-sinks meta query
 2022-12-01 10:23:33 +01:00
Tiferet Gazit
7c1bfdbf41 Merge pull request #11511 from github/tiferet/renamings 
Rename predicates to fit style guide
 2022-11-30 18:19:07 -08:00
tiferet
4a6de3e444 Apply suggestion from code review 2022-11-30 17:25:19 -08:00
Harry Maclean
bd129ede42 Merge pull request #11136 from hmac/json-flow-summaries 
Ruby: JSON flow summaries
 2022-12-01 14:19:47 +13:00
tiferet
a0a742eb82 Rename predicates to fit style guide: 
- `getEndpoints` → `appliesToEndpoint`
- `getImplications` → `hasImplications`
- `getAlerts` → `hasAlert`
 2022-11-30 17:01:56 -08:00
Harry Maclean
91421528df Ruby: Update test 2022-12-01 09:01:03 +13:00
Ian Lynagh
cd8c40e063 Kotlin: Enable java/non-serializable-field for Kotlin 
It now ignores compiler-generated classes
 2022-11-30 17:58:43 +00:00
Paolo Tranquilli
4e29ff1d6e Swift: add -merge-modules to frontend-invocations test 
Also, moved from Makefile to a bash source.
 2022-11-30 17:46:47 +01:00
Tony Torralba
6ae10c5171 Merge pull request #11501 from atorralba/atorralba/swift/fix-data-test-expectations 
Swift: Fix expectations in data.swift
 2022-11-30 17:12:32 +01:00
Tony Torralba
d958a62bf2 Fix expectations in data.swift 2022-11-30 16:19:55 +01:00
Karim Ali
8f456295e0 Merge pull request #11185 from karimhamdanali/swift-string-taint-steps 
Swift: add `String` taint steps
 2022-11-30 17:03:15 +02:00
Alex Denisov
0bfe502bb0 Swift: remove patches from the extractor 
Moved elsewhere https://github.com/dsp-testing/codeql-swift-artifacts/pull/3
 2022-11-30 15:36:09 +01:00
Karim Ali
f6bc88471a update the expected output for CWE-079 
Now that we have support for taint through fields of String, we can now detect certain flows that we previously marked as [NOT DETECTED]. This commit updates the expected output of CWE-079 (and the in-code annotation of the accompanying test case) to reflect that update.
 2022-11-30 16:34:24 +02:00
Paolo Tranquilli
b8c11de89c Merge pull request #11498 from github/redsun82/swift-codegen 
Swift: enhance `codegen` UX
 2022-11-30 15:17:18 +01:00
Owen Mansel-Chan
45e2a13c37 Merge pull request #11494 from owen-mc/dataflow/some-trivial-fixes 
Dataflow: some trivial fixes
 2022-11-30 13:59:41 +00:00
Anders Schack-Mulligen
1ce28540fb Merge pull request #11495 from intrigus-lgtm/patch-7 
Docs: Add missing `language[monotonicAggregates]` annotation
 2022-11-30 14:58:44 +01:00
Paolo Tranquilli
b4e3554af7 Merge pull request #11370 from github/alexdenisov/swift-5.7.1 
Swift: upgrade to Swift 5.7.1
 2022-11-30 14:23:12 +01:00
Paolo Tranquilli
bb3aa9e908 Swift: add --force to codegen 2022-11-30 14:19:33 +01:00
Paolo Tranquilli
d6aad13a98 Swift: make codegen run when no registry is there 2022-11-30 13:47:12 +01:00
Paolo Tranquilli
76db5f22b3 Swift: make codegen resilient to formatting errors 
More in general, the managed renderer flow does things more sensibly
in case an exception is thrown:
* it will not remove any file
* it will drop already written files from the registry, so that codegen
  won't be skipped for those files during the next run
 2022-11-30 13:43:29 +01:00
intrigus-lgtm
4e7e70f981 Docs: Add missing language[monotonicAggregates] annotation 
This adds the `language[monotonicAggregates]` annotation so that the example compiles.
 2022-11-30 13:12:06 +01:00
Alex Denisov
fe0ae6bf0b Swift: add 5.7.1 migration scripts 2022-11-30 12:52:26 +01:00
Alex Denisov
ad663533c7 Swift: bump setup Swift action 2022-11-30 12:40:42 +01:00
Alex Denisov
67fb56deb8 Swift: workaround an internal crash coming from Swift 5.7.1 2022-11-30 12:40:42 +01:00
Alex Denisov
f618d53302 Swift: add new implicit conversion 2022-11-30 12:40:34 +01:00
Alex Denisov
90d471b486 Swift: upgrade to Swift 5.7.1 2022-11-30 12:40:27 +01:00
Mathias Vorreiter Pedersen
d53d275bba Merge pull request #11450 from d10c/swift/missing-enum-cases 
Swift: extract missing cases of `AccessorKind` and `AccessSemantics` enums
 2022-11-30 11:18:52 +00:00
Owen Mansel-Chan
75940dc8b1 Remove @codeql-go from code owners for dataflow 2022-11-30 11:16:53 +00:00
Owen Mansel-Chan
635c202ced Use ArgumentPosition instead of int 
This matches what all of the other languages do.
 2022-11-30 11:16:52 +00:00