hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-05 07:06:47 +01:00
Code Issues Packages Projects Releases Wiki Activity
74,533 Commits 1,700 Branches 161 Tags
2e3d3494de013950721becd32ff7c84021d7be0b
Commit Graph

74533 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kylie Stradley
2dd3adac51 clarify immutable actions help text 2024-12-20 09:51:51 -05:00
Michael Nebel
1aa7c3fdcc C#: Add test for the new lock type. 2024-12-20 15:02:36 +01:00
Michael Nebel
29a0db8053 C#: Update test expected output. 2024-12-20 15:00:54 +01:00
Michael Nebel
4a716c6005 C#: Add a test example in the statements test. 2024-12-20 15:00:30 +01:00
Paolo Tranquilli
f13d03b18c Rust: fix typo (thanks copilot!) 2024-12-20 14:18:36 +01:00
Florin Coada
5f812342a8 Merge pull request #18338 from github/changedocs/2.20.0 
Update CodeQL changelog for versions 2.19.4 and 2.20.0
 2024-12-20 15:12:55 +02:00
Paolo Tranquilli
485586f780 Rust: reinstate extraction of test code 
Users will still be able to opt out:
* for unit tests, by providing the `cargo_cfg_overrides=-test` extractor
  option
* for integration tests, by excluding the test files from the analysis
  using `paths-ignore` in the codescanning configuration file

We may want to revisit whether we want a single option for both. Also
further work will be needed to restrict our security queries to non-test
code on the QL side.
 2024-12-20 14:12:41 +01:00
Jeroen Ketema
6ecaf20cdd C++: Update expected test results 2024-12-20 13:53:35 +01:00
Jeroen Ketema
ecf3c53eba C++: Introduce SizeofPackOperator subclasses for expressions and types 
Note that template template parameters are considered types in this context.
 2024-12-20 13:51:45 +01:00
Jeroen Ketema
90d8fb1a05 Merge pull request #18335 from jketema/test-cleanup 
C++: Simplify some semmle-extractor-options in tests
 2024-12-20 13:43:59 +01:00
Arthur Baars
2b2a37353b Merge pull request #18328 from github/redsun82/fix-cargo-fmt-checks 
CI: fix rust formatting
 2024-12-20 13:41:28 +01:00
Calum Grant
d5571c5f68 Merge pull request #18309 from github/calumgrant/bmn/return-stack-allocated-memory 
C++: Fix FPs to cpp/return-stack-allocated-memory
 2024-12-20 10:54:24 +00:00
Florin Coada
82fdd1125c Update docs/codeql/codeql-overview/codeql-changelog/codeql-cli-2.20.0.rst 
Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>
 2024-12-20 12:50:05 +02:00
Jeroen Ketema
dd021fdcbf Merge pull request #18339 from jketema/typo 
C++: Remove duplicate word from change note
 2024-12-20 11:50:01 +01:00
Jeroen Ketema
51f625b90c C++: Allow sizeof pack in sizeof_bind 2024-12-20 11:49:37 +01:00
Florin Coada
5c5049e5fd Fix typo in CodeQL changelog entry 2024-12-20 12:35:40 +02:00
Florin Coada
66f3b718a6 Update docs/codeql/codeql-overview/codeql-changelog/codeql-cli-2.20.0.rst 
Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>
 2024-12-20 12:19:53 +02:00
Jeroen Ketema
757d5d6e6d C++: Remove duplicate word from change note 2024-12-20 11:18:26 +01:00
Paolo Tranquilli
8e28d99a62 QL for QL: accept test changes 2024-12-20 10:42:19 +01:00
Florin Coada
3bd8d7c0bb Update CodeQL changelog for versions 2.19.4 and 2.20.0 2024-12-20 11:37:33 +02:00
Calum Grant
3193fe856a C++: Update comments 2024-12-20 09:11:58 +00:00
Jeroen Ketema
6f9968d2c2 C++: Update test after extractor changes 2024-12-20 08:27:39 +01:00
Edward Minnix III
453913cd9f Remove Parameter from this PR 2024-12-19 23:11:07 -05:00
Dave Bartolomeo
772b972e7d Merge pull request #18321 from github/dbartol/actions-merge 
Migrate Actions queries to public repo
 2024-12-19 16:04:49 -05:00
Jeroen Ketema
6200a1d5b9 C++: Simplify some semmle-extractor-options in tests 2024-12-19 21:46:33 +01:00
Rasmus Wriedt Larsen
22b35f5fe7 Merge pull request #18318 from RasmusWL/fastapi-request 
Python: Model FastAPI requests
 2024-12-19 19:52:17 +01:00
Dave Bartolomeo
30dbc3b172 Merge pull request #18332 from github/dbartol/actions-changenote 
Add `actions` as a supported language for change notes
 2024-12-19 12:23:52 -05:00
Dave Bartolomeo
2b4161e16c Add actions as a supported language for change notes 2024-12-19 12:15:00 -05:00
Paolo Tranquilli
42422632ba Merge pull request #18331 from github/redsun82/rust-paths-exclude 
Rust: support `paths` and `paths-ignore` from the code scanning configuration file
 2024-12-19 17:59:49 +01:00
Paolo Tranquilli
73a5a3f7ee Rust: support paths and paths-ignore from the code scanning configuration file 
This is done by simply adding the autobuilder from the shared
tree-sitter extractor library.
 2024-12-19 17:37:56 +01:00
Calum Grant
7abe7003dc Update cpp/ql/test/query-tests/Likely Bugs/Memory Management/ReturnStackAllocatedMemory/test.cpp 
Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>
 2024-12-19 16:01:05 +00:00
Dave Bartolomeo
e4bce701a0 Add change notes 2024-12-19 10:53:23 -05:00
Jeroen Ketema
84b60d2676 Merge pull request #18320 from jketema/template-parameters 
C++: Support non-type template parameters
 2024-12-19 16:21:49 +01:00
Dave Bartolomeo
bfa105fc0d Fix typo 2024-12-19 10:00:20 -05:00
Paolo Tranquilli
2ff0394a10 Rust: add --no-deps to clippy checks 2024-12-19 15:58:45 +01:00
Paolo Tranquilli
2e150772fd Merge branch 'main' into redsun82/fix-cargo-fmt-checks 2024-12-19 15:52:36 +01:00
Dave Bartolomeo
8b132274b5 Revert "Accept DB consistency check for now" 
This reverts commit dba6f0bb9f.
 2024-12-19 09:47:42 -05:00
Dave Bartolomeo
3e2fe46993 Merge remote-tracking branch 'origin/main' into dbartol/actions-merge 2024-12-19 09:34:29 -05:00
Calum Grant
e067ac92a7 C++: Address review comments 2024-12-19 14:27:13 +00:00
Ed Minnix
d0c9ba19d7 Fix test results 2024-12-19 09:02:06 -05:00
Ed Minnix
ae6752adf7 Update tests 2024-12-19 09:02:05 -05:00
Ed Minnix
84936c0fc0 Change note 2024-12-19 09:02:02 -05:00
Ed Minnix
b618ae06e8 Model Blazor attributes as marking sources 
The attributes

- `[Parameter]`
- `[SupplyParameterFromFormAttribute]`
- `[SupplyParameterFromQueryAttribute]`

Tell Blazor to initialize the variables with parameters defined by the
route/form values/query parameters/etc. Values derived from the URI or
form should be classified as `remote` flow sources.
 2024-12-19 09:01:56 -05:00
Edward Minnix III
90dbc34c16 Merge pull request #18323 from egregius313/egregius313/csharp/blazor/navigation-manager/typo 
Fix typo in `NavigationManager` name in models
 2024-12-19 09:00:17 -05:00
Rasmus Wriedt Larsen
a9704d8de0 Update change-note wording 
Co-authored-by: Aditya Sharad <6874315+adityasharad@users.noreply.github.com>
 2024-12-19 14:08:23 +01:00
Simon Friis Vindum
5141f7b87c Merge pull request #18330 from paldepind/rust-variables-macro 
Rust: Add variables example with let statement in macro
 2024-12-19 13:47:43 +01:00
Simon Friis Vindum
a28ddd642c Rust: Add variables example with let statement in macro 2024-12-19 13:12:45 +01:00
Paolo Tranquilli
df39610029 Rust: skip injected sources in clippy and fmt checks 2024-12-19 12:29:27 +01:00
Paolo Tranquilli
110d3994ea Rust: fix workflow 2024-12-19 12:23:36 +01:00
Paolo Tranquilli
7f5b8fdcec Rust: remove clippy warnings 2024-12-19 12:22:40 +01:00