Malayke
|
02bab4c15a
|
Update go/ql/src/experimental/CWE-770/DenialOfService.ql
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
|
2024-03-06 17:57:20 +08:00 |
|
github-actions[bot]
|
661e68dab5
|
Release preparation for version 2.16.4
|
2024-03-05 18:13:58 +00:00 |
|
Angela P Wen
|
967963a653
|
Revert "Release preparation for version 2.16.4"
|
2024-03-05 08:53:33 -08:00 |
|
Tony Torralba
|
a264ea23c6
|
Go: Add SQLi sinks for Squirrel
|
2024-03-05 15:35:34 +01:00 |
|
github-actions[bot]
|
a67218a027
|
Release preparation for version 2.16.4
|
2024-03-04 17:42:08 +00:00 |
|
Owen Mansel-Chan
|
dcc2b2c50d
|
Merge pull request #15057 from aydinnyunus/main
Web Cache Deception Vulnerability on Go Frameworks
|
2024-03-04 14:36:39 +00:00 |
|
Owen Mansel-Chan
|
6a1bb9bfb0
|
Merge branch 'main' into main
|
2024-03-04 13:42:53 +00:00 |
|
Owen Mansel-Chan
|
0bf0c069c6
|
Fix formatting
|
2024-03-04 13:39:44 +00:00 |
|
Owen Mansel-Chan
|
910725939f
|
Update QLDoc
|
2024-03-04 13:06:23 +00:00 |
|
Merdan Aziz
|
72e6853792
|
address the review comments
|
2024-03-03 20:36:43 +08:00 |
|
Malayke
|
7072ab9364
|
Update go/ql/src/experimental/CWE-770/DenialOfServiceGood.go
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
|
2024-03-03 18:09:33 +08:00 |
|
Am
|
376c6ea09a
|
Merge branch 'main' into amammad-go-bombs
|
2024-02-21 21:42:25 +03:30 |
|
amammad
|
3307457deb
|
use implements predicate for io interfaces,
so we can reduce many repetitive parts of query
|
2024-02-21 01:07:31 +04:00 |
|
github-actions[bot]
|
37f8fa3413
|
Post-release preparation for codeql-cli-2.16.3
|
2024-02-20 16:50:47 +00:00 |
|
github-actions[bot]
|
6d061fbc35
|
Release preparation for version 2.16.3
|
2024-02-20 14:26:23 +00:00 |
|
Tony Torralba
|
8b8cebd599
|
Apply suggestions from code review
Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
|
2024-02-19 08:59:03 +01:00 |
|
Tony Torralba
|
582f341d9e
|
Add references to qhelp
|
2024-02-14 17:25:09 +01:00 |
|
Tony Torralba
|
769ec16803
|
Apply suggestions from code review
Co-authored-by: Chris Smowton <smowton@github.com>
|
2024-02-14 17:25:08 +01:00 |
|
Tony Torralba
|
85b22a2b98
|
Fix QHelp
|
2024-02-14 17:25:08 +01:00 |
|
Tony Torralba
|
2a30898af6
|
Go: Promote go/missing-jwt-signature-check from experimental
|
2024-02-14 17:25:03 +01:00 |
|
Tony Torralba
|
304998d50e
|
Update go/ql/src/Security/CWE-798/HardcodedCredentials.ql
|
2024-02-14 12:15:20 +01:00 |
|
Tony Torralba
|
ba1faea630
|
Go: Promote go/hardcoded-key from experimental
|
2024-02-14 12:15:14 +01:00 |
|
github-actions[bot]
|
b5139078d0
|
Post-release preparation for codeql-cli-2.16.2
|
2024-02-06 19:22:35 +00:00 |
|
github-actions[bot]
|
c1b35fbf47
|
Release preparation for version 2.16.2
|
2024-02-05 17:58:57 +00:00 |
|
github-actions[bot]
|
d0b74c00fe
|
Post-release preparation for codeql-cli-2.16.1
|
2024-01-23 23:02:29 +00:00 |
|
github-actions[bot]
|
7ef611e6dc
|
Release preparation for version 2.16.1
|
2024-01-23 19:45:16 +00:00 |
|
Alexander Eyers-Taylor
|
934474681d
|
Merge pull request #15254 from github/post-release-prep/codeql-cli-2.16.0
Post-release preparation for codeql-cli-2.16.0
|
2024-01-16 14:50:40 +00:00 |
|
github-actions[bot]
|
57df8b92df
|
Post-release preparation for codeql-cli-2.16.0
|
2024-01-15 15:00:50 +00:00 |
|
amammad
|
2fe10942da
|
minor change for resolving rebase conflicts
|
2024-01-15 01:02:55 +04:00 |
|
amammad
|
3fcb0ee228
|
move MultipartAndFormRemoteSource to DecompressionBombs.qll
|
2024-01-15 01:01:51 +04:00 |
|
amammad
|
a1c384c57b
|
change Decompression bombs Query structure
|
2024-01-15 00:22:55 +04:00 |
|
amammad
|
0efb00724d
|
Add hasFlowToComparison to all sinks as a sanitizer
|
2024-01-15 00:05:11 +04:00 |
|
Tony Torralba
|
31c11add85
|
Updated change note
|
2024-01-12 08:55:24 +01:00 |
|
Tony Torralba
|
05b487e3a6
|
Go: Recognize unsafe candidate selection in go/insecure-randomness
|
2024-01-11 11:58:12 +01:00 |
|
Tony Torralba
|
80526e509e
|
Go: Adds sources and sinks to go/clear-text-logging
|
2024-01-10 13:33:41 +01:00 |
|
Tony Torralba
|
da4049e25c
|
Go: Migrate AppenderOrSprinter model to models-as-data
|
2024-01-09 16:35:47 +01:00 |
|
github-actions[bot]
|
a6c8cc9551
|
Release preparation for version 2.16.0
|
2024-01-08 13:11:26 +00:00 |
|
Owen Mansel-Chan
|
697aa609f4
|
Merge pull request #15211 from owen-mc/go/redefine-successfully-extracted-files
Go: report any extracted file as successfully extracted
|
2024-01-03 16:07:09 +00:00 |
|
Owen Mansel-Chan
|
14cffc3170
|
Merge pull request #15128 from owen-mc/go/fix-fp-incorrect-integer-conversion-signedness
Go: fix FP in incorrect integer conversion query relating to strict comparisons with MaxInt and MaxUint
|
2024-01-03 14:57:34 +00:00 |
|
Owen Mansel-Chan
|
0279e4903f
|
Mention query in change note
|
2024-01-03 13:02:49 +00:00 |
|
Owen Mansel-Chan
|
9f8b5bccc2
|
Go: report any extracted file as successfully extracted
|
2024-01-02 21:39:28 +00:00 |
|
github-actions[bot]
|
8f72b0e4f7
|
Post-release preparation for codeql-cli-2.15.5
|
2023-12-19 10:32:57 +00:00 |
|
github-actions[bot]
|
19af35b29a
|
Release preparation for version 2.15.5
|
2023-12-18 21:22:44 +00:00 |
|
amammad
|
87b1028aab
|
fix pgzip missed sink, apply isBarrier directly to CopyN sink, add new flow state for pgzip
|
2023-12-17 19:55:50 +01:00 |
|
Owen Mansel-Chan
|
5a2c48f37f
|
Add change note
|
2023-12-17 06:28:35 +00:00 |
|
Malayke
|
ac465b9234
|
Merge branch 'github:main' into main
|
2023-12-16 18:02:14 +08:00 |
|
Yunus AYDIN
|
8a7c3c19fe
|
Merge branch 'main' into main
|
2023-12-15 09:05:50 +03:00 |
|
Yunus AYDIN
|
ac3cb7f6c4
|
update camelcase
|
2023-12-14 15:29:28 +03:00 |
|
Yunus AYDIN
|
a17c704f46
|
update expected file
|
2023-12-14 15:27:27 +03:00 |
|
Yunus AYDIN
|
d899267acb
|
add httprouter example code
|
2023-12-14 00:23:09 +03:00 |
|