hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-31 03:21:23 +02:00
Code Issues Packages Projects Releases Wiki Activity
40,969 Commits 1,763 Branches 168 Tags
3435fc439795dc2caa7eb7d61c4bf365545957f6
Commit Graph

40969 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Esben Sparre Andreasen
3435fc4397 XXX make use of resulting model 2022-06-29 16:47:51 +02:00
Stephan Brandauer
87c54621d8 enable new features for experimentation 2022-06-29 15:15:38 +02:00
Stephan Brandauer
d04974a12b add stringConcatenatedWith feature to help the model learn that string concatenation leaves are usually not sinks 2022-06-29 15:15:38 +02:00
Stephan Brandauer
8f9ca33f59 add assignedToPropName feature to let the model improve number of false positives for XSS query 2022-06-29 15:15:38 +02:00
Stephan Brandauer
e1b9945383 fix bug in InputArgumentIndex feature 2022-06-29 15:15:38 +02:00
Stephan Brandauer
c1af1e0cc5 performance fixes 2022-06-29 15:15:38 +02:00
Stephan Brandauer
b1103b7c5a use ? for unknown parameternames 2022-06-29 15:15:38 +02:00
Stephan Brandauer
d2b5cd1a45 add documentations and rename a feature 2022-06-29 15:15:38 +02:00
Stephan Brandauer
05f2bd6f0a add functionInterfacesInFile and surroundingFunctionParameters features 2022-06-29 15:15:38 +02:00
Stephan Brandauer
4d6942cf06 documentation for calleeImports ATM feature 2022-06-29 15:15:38 +02:00
Stephan Brandauer
a35ec612e5 documentation for new feature 2022-06-29 15:15:38 +02:00
Stephan Brandauer
8b0075f2b4 ATM: new feature to list all imports in an endpoint's file 2022-06-29 15:15:38 +02:00
Esben Sparre Andreasen
d30316f1ea use proper import instead of inlining 2022-06-29 15:15:38 +02:00
Esben Sparre Andreasen
6f5bc6c8a6 remove Input_ArgumentIndexAndAccessPathFromCallee 2022-06-29 15:15:38 +02:00
Esben Sparre Andreasen
04dfd0f5f3 add docstring examples 2022-06-29 15:15:38 +02:00
Esben Sparre Andreasen
ac956f93ad address review comments 2022-06-29 15:15:38 +02:00
Esben Sparre Andreasen
006ac2599f Apply suggestions from code review 
Co-authored-by: Henry Mercer <henrymercer@github.com>
 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
c2fc89c96d fix semantic merge conflict 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
d196af4972 rename new features 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
1bba9a557a add more features 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
6eeb8be082 improve feature documentation 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
751b807fbe improve feature tests with more cases 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
0189206af2 improve access path strings 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
7c8549ca2f support import in getSimpleAccessPath 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
553014ac51 support await in getSimpleAccessPath 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
ccdec2fb98 avoid using new feautes by default 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
53b33c0a32 add CompareFeatures.ql 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
9dc8774624 add generic tests for features 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
fdecb35c7c Document EndpointFeatures.qll 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
0ed5785a15 add ParameterAccessPathSimpleFromArgumentTraversal 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
2948f5bc47 improve getSimpleAccessPath 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
e0e6e0eb9e refactor calleeAccessPath feature to class 2022-06-29 15:15:37 +02:00
Stephan Brandauer
2581d183da refactor getACallBasedTokenFeature to class-use 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
2dfa68dd2a Add CalleeAccessPathSimpleFromArgumentTraversal 2022-06-29 15:15:37 +02:00
Esben Sparre Andreasen
dadc99b641 refactor EndpointFeatures.ql to use classes 2022-06-29 15:15:37 +02:00
Paolo Tranquilli
d00fec34c3 Merge pull request #9336 from MathiasVP/swift-decls-in-cfg 
Swift: CFG for local declarations
 2022-06-29 15:10:45 +02:00
Mathias Vorreiter Pedersen
e03646aba4 Merge pull request #9737 from geoffw0/arithmetic 
Swift: Add ArithmeticOperation.qll library
 2022-06-29 13:40:20 +01:00
yoff
8988a02806 Merge pull request #9733 from tausbn/python-fix-bad-mro-flatten-list-join 
Python: Fix bad join in MRO `flatten_list`
 2022-06-29 13:29:48 +02:00
yoff
f122af81ea Merge pull request #9741 from tausbn/python-fix-bad-join-in-regexpbackref-getgroup 
Python: Fix bad join in `RegExpBackRef::getGroup`
 2022-06-29 13:23:07 +02:00
Mathias Vorreiter Pedersen
f35ab7c292 Swift: Accept test changes to the cfg. These happen due to the fixes in 9e0cf62cda. 2022-06-29 12:20:07 +01:00
yoff
731f866242 Merge pull request #9717 from tausbn/python-fix-bad-mro-linearization-of-bases-join 
Python: Fix bad join in MRO
 2022-06-29 13:08:18 +02:00
Mathias Vorreiter Pedersen
15dc08351e Merge pull request #9747 from MathiasVP/fix-joins-in-swift-cwe-135 
Swift: Don't join on index in `swift/string-length-conflation`
 2022-06-29 11:58:36 +01:00
Geoffrey White
8b7535af81 Swift: Don't use abstract classes. 2022-06-29 11:49:22 +01:00
Geoffrey White
2cf65c7d35 Swift: Autoformat tests. 2022-06-29 11:49:21 +01:00
Geoffrey White
822002d37d Swift: Missing qldoc. 2022-06-29 11:49:20 +01:00
Mathias Vorreiter Pedersen
cc25e2644f Swift: Don't join on index in 'swift/string-length-conflation'. 2022-06-29 11:40:46 +01:00
Ian Lynagh
d285e19e77 Merge pull request #9731 from igfoo/igfoo/private 
Kotlin: Make more methods private
 2022-06-29 11:24:33 +01:00
Mathias Vorreiter Pedersen
4356155eeb Merge branch 'main' into swift-decls-in-cfg 2022-06-29 10:03:34 +01:00
AlexDenisov
1997d6b18c Merge pull request #9745 from github/alexdenisov/put-traps-into-a-temp-folder 
Swift: store TRAP files in a temporary folder until the extraction is complete
 2022-06-29 10:55:27 +02:00
Jeroen Ketema
55e052af26 Merge pull request #9686 from aschackmull/dataflow/no-node-scan 
Dataflow performance: Avoid node scans
 2022-06-29 10:38:56 +02:00