Alex Ford
5fafd9ecc1
Merge branch 'main' into rb/rack-extend-app-and-resp
2023-07-04 11:43:30 +01:00
Geoffrey White
7f9cb16ab1
Swift: Add a test with multiple evaluations.
2023-07-04 11:34:10 +01:00
Geoffrey White
cb4139f173
Swift: Add test cases with sanitized inputs.
2023-07-04 11:19:15 +01:00
Geoffrey White
72f500b501
Swift: Change note.
2023-07-04 10:21:39 +01:00
Tom Hvitved
5f6586600e
Merge pull request #13630 from github/post-release-prep/codeql-cli-2.13.5
...
Post-release preparation for codeql-cli-2.13.5
2023-07-04 10:58:44 +02:00
Alex Denisov
3b2bbcc95c
Docs: update supported Swift versions
2023-07-04 10:09:28 +02:00
Michael Nebel
3cde59e409
Merge pull request #13651 from michaelnebel/telemetrytop100
...
Java/C#: Reduce the amount of telemetry being produced.
2023-07-04 08:33:53 +02:00
Michael Nebel
238f390738
Merge pull request #13452 from michaelnebel/refactorstackprinting
...
Re-factor printing of summary component stacks.
2023-07-04 08:29:10 +02:00
Taus
b7e4bd290d
Java: Use an IPA type instead of a string
...
While the string representation is useful for quickly modifying queries, it's
a bit clunky when the data needs to be further parsed. Instead, the two queries
now select all of the columns of the sinkmodel separately (which makes it easy
to pull them out of the relevant output later on).
2023-07-03 23:17:55 +02:00
Robert Marsh
1c2c48c74a
C++: more constant-array-overflow tests
2023-07-03 16:59:02 -04:00
Geoffrey White
a050de7e15
Swift: Grammar.
2023-07-03 17:11:49 +01:00
Michael Nebel
243c592447
Address review comments.
2023-07-03 17:01:08 +02:00
Michael Nebel
23a119b8c2
Java/C#: Reduce the amount of telemetry being produced.
2023-07-03 16:54:07 +02:00
Chuan-kai Lin
6912f7ed3a
Merge pull request #13638 from cklin/remove-pragma-assume-small-delta
...
Remove pragma[assume_small_delta]
2023-07-03 07:00:36 -07:00
Geoffrey White
6c10b934ea
Swift: Add examples as tests.
2023-07-03 13:39:14 +01:00
Geoffrey White
373eb00975
Swift: Add qhelp and examples.
2023-07-03 13:39:13 +01:00
Michael Nebel
b942cd9085
C#: Address review comments.
2023-07-03 14:36:07 +02:00
Michael Nebel
e06bc8fd8d
Ruby: Use serialize to for the string representation of ConstantValue.
2023-07-03 14:36:07 +02:00
Michael Nebel
bddd22f522
Sync files and make language specific adjustments.
2023-07-03 14:36:07 +02:00
Michael Nebel
62fc1b641c
C#: Adjust the model generator to produce kinds for neutrals.
2023-07-03 14:36:06 +02:00
Michael Nebel
d62a5524f8
Python: Improve AccessPath printing.
2023-07-03 14:36:06 +02:00
Michael Nebel
0665f4f004
Ruby: Update TaintStep expected test output.
2023-07-03 14:36:06 +02:00
Michael Nebel
6aded7b461
Ruby: Improve AccessPath printing.
2023-07-03 14:36:06 +02:00
Michael Nebel
e73d6d5ee4
Go: Update expected test output to reflect the new printing of summary component stacks.
2023-07-03 14:36:06 +02:00
Michael Nebel
c18f4b1604
Sync files and make language specific rename.
2023-07-03 14:36:06 +02:00
Michael Nebel
4ee2d628fe
C#: Re-factor printing of summary component stacks.
2023-07-03 14:36:06 +02:00
Geoffrey White
4cdc257a06
Swift: Add more sinks.
2023-07-03 12:34:28 +01:00
Ian Lynagh
d90ddf1b43
Merge pull request #13639 from igfoo/igfoo/revert
...
Revert "Kotlin: Remove a use of ObsoleteDescriptorBasedAPI"
2023-07-03 11:42:32 +01:00
Geoffrey White
315cae21ce
Swift: Tests for regex injection query.
2023-07-03 11:35:55 +01:00
Asger F
4c9501eba5
Merge pull request #13529 from jorgectf/seclab/webix-modeling
...
JS: Add models for `webix`
2023-07-03 12:03:18 +02:00
Geoffrey White
b41fd52be5
Swift: First version swift/regex-injection query.
2023-07-03 10:37:54 +01:00
Jeroen Ketema
5d855594ba
Python: Use correct class in inline expectation test
...
These were missed earlier, and still referred to the classes from the legacy
interface and not the parameterized module.
2023-07-03 10:23:26 +02:00
Jeroen Ketema
e26336af21
Deprecate the class-based inline expectation test interface
2023-07-03 10:22:56 +02:00
Jeroen Ketema
abe06e5b95
Python: Update remaining inline expectation tests to use the paramterized module
2023-07-03 10:22:35 +02:00
Philip Ginsbach
cff886177f
Update docs/codeql/ql-language-reference/ql-language-specification.rst
...
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com >
2023-07-03 08:59:57 +01:00
Porcupiney Hairs
dc0deb5e49
Go : Improvements to DSN Injection query
2023-07-02 17:38:01 +05:30
erik-krogh
8c871621f1
sync to ruby
2023-07-01 20:33:02 +02:00
erik-krogh
f9eee906cf
fix FP by requiring that the regular expression mention on of the chars important in the prefix
2023-07-01 20:30:09 +02:00
erik-krogh
bd400be6ec
add FP for incomplete-multi-char-sanitization
2023-07-01 20:28:31 +02:00
Taus
6f24d939f6
Java: Also select query id
2023-07-01 15:04:06 +02:00
Alvaro Muñoz
5788292eb7
use depstubber
2023-06-30 23:13:30 +02:00
Alvaro Muñoz
db33d7f2cf
remove vendor/
2023-06-30 22:38:29 +02:00
Ian Lynagh
fcf003ceb5
Revert "Kotlin: Remove a use of ObsoleteDescriptorBasedAPI"
...
This reverts commit a50d804ad7
2023-06-30 19:32:37 +01:00
Chuan-kai Lin
ce464a7d69
Remove pragma[assume_small_delta]
2023-06-30 11:09:29 -07:00
Mathias Vorreiter Pedersen
95ddc01ccb
Merge pull request #13502 from rvermeulen/rvermeulen/compare-using-integer-precision
...
C++: Account for the signedness of the lesser operand in `cpp/comparison-with-wider-type`
2023-06-30 17:44:28 +01:00
Mathew Payne
67160f4663
fix: update stubs and fix import issues
2023-06-30 15:14:56 +01:00
Mathew Payne
2007e81089
fix: update stubs
2023-06-30 14:50:09 +01:00
Mathias Vorreiter Pedersen
32045f87f1
Merge pull request #13635 from MathiasVP/dont-barrier-on-valid-state-config
...
C++: Revert parts of #13623
2023-06-30 14:33:21 +01:00
Mathew Payne
0b696c962e
feat: add stubs for Protobuf and go-micro.api
2023-06-30 14:23:42 +01:00
Taus
dca227389d
Java: Add metric queries for counting sinks coming from models
...
Adds two queries for gathering metrics on the number of alerts (for a selection of queries)
that arise from models with the `ai-generated` provenance.
2023-06-30 15:07:13 +02:00
