codeql

mirror of https://github.com/github/codeql.git synced 2026-03-28 10:18:17 +01:00

Author	SHA1	Message	Date
Esben Sparre Andreasen	3a5962aa34	JS: minor fixups in ClientRequests.qll	2018-12-17 10:32:30 +01:00
Geoffrey White	b8877f1d5f	Merge pull request #690 from jbj/prepareQueries-fix-warnings-2 C++: Delete dead code with warnings in it	2018-12-14 14:23:19 +00:00
Jonas Jensen	23a2bf1756	C++: Delete dead code with warnings in it	2018-12-14 10:59:41 +00:00
semmle-qlci	936094d0b6	Merge pull request #671 from xiemaisi/js/more-unhelpful-magic Approved by asger-semmle	2018-12-14 08:44:45 +00:00
Max Schaefer	f9106b3bfe	Merge pull request #685 from asger-semmle/useless-conditional-as-value JS: fix FPs in UselessConditional	2018-12-14 08:44:10 +00:00
semmle-qlci	7f21f145e2	Merge pull request #678 from asger-semmle/function-receiver Approved by xiemaisi	2018-12-14 08:39:04 +00:00
Tom Hvitved	b11d5c5075	Merge pull request #679 from calumgrant/cs/omitted-array-size C#: Extract stackalloc initializers	2018-12-14 07:48:46 +01:00
Asger F	f737830f18	JS: fix typo	2018-12-13 15:56:00 +00:00
Asger F	ae4b55de9a	JS: fix FPs in UselessConditional	2018-12-13 15:41:41 +00:00
Geoffrey White	b21e832ee2	Merge pull request #683 from jbj/prepareQueries-fix-warnings C++: Fix all prepareQueries errors and warnings	2018-12-13 15:30:44 +00:00
calum	9fba643fb0	C#: Address review comments.	2018-12-13 13:53:58 +00:00
calumgrant	16c065274d	Merge pull request #666 from hvitved/csharp/useless-upcast-performance C#: Improve performance of `cs/useless-upcast`	2018-12-13 12:04:12 +00:00
Jonas Jensen	bee2ddaf26	C++: Fix all prepareQueries errors and warnings With these changes we can run `odasa prepareQueries --check-only --fail-on-warnings` on the C++ query directory. Two changes were needed: 1. The `Metrics/queries.xml` file had to be deleted. It existed because the built distribution has a different file layout, where `Metrics` is moved to the top-level query dir `odasa-cpp-metrics`. Since internal PR 28230 this file is created as needed as part of the dist build process, so it doesn't need to be checked in with the sources. 2. All uses of the `deprecated` and stubbed-out Objective C classes were removed.	2018-12-13 11:13:50 +00:00
Asger F	cb349348e7	JS: rename getThisParameter to getReceiver	2018-12-13 10:19:44 +00:00
Max Schaefer	e194021c3b	Merge pull request #629 from esben-semmle/js/persistent-read-taint JS: add persistent storage taint steps	2018-12-13 08:24:42 +00:00
Max Schaefer	969fe6e4f1	Merge pull request #657 from esben-semmle/js/classify-more-files JS: classify additional files	2018-12-13 08:20:33 +00:00
Max Schaefer	e8c8360ad1	Merge pull request #659 from esben-semmle/js/more-constant-string-usage JS: replace StringLiteral with ConstantString in two queries	2018-12-13 08:19:22 +00:00
Max Schaefer	54bb9d185f	Merge pull request #632 from asger-semmle/pseudo-random-bytes JS: add crypto.pseudoRandomBytes as source in InsecureRandomness.ql	2018-12-13 08:14:40 +00:00
Max Schaefer	df42707050	Merge pull request #675 from asger-semmle/window.name JS: Add window.name as remote flow source	2018-12-13 08:13:15 +00:00
Aditya Sharad	41a48078f7	Merge pull request #673 from calumgrant/cs/sync-files C#: Sync samples and qltest cases	2018-12-12 17:10:00 +00:00
calumgrant	8e546a30b0	Merge pull request #637 from hvitved/csharp/cfg/throwing-callable C#: Fix a bug in `ThrowingCallable`	2018-12-12 16:58:28 +00:00
calum	2bbd55519b	C#: Add tests for C# 7.3 features.	2018-12-12 16:44:55 +00:00
Asger F	635a3cb1ec	JS: add FunctionNode.getThisParameter	2018-12-12 16:26:02 +00:00
calum	5596bc8827	C#: Add change note.	2018-12-12 16:16:07 +00:00
Anders Schack-Mulligen	12bc1fc656	Merge pull request #581 from jf205/metadata-guide Query metadata style guide: add to ql/docs	2018-12-12 12:55:20 +00:00
Asger F	a96c53f9b8	JS: restrict when a variable reference is considered a source	2018-12-12 12:28:26 +00:00
Asger F	14621760bb	JS: add window.name as DOM-based remote flow source	2018-12-12 12:22:39 +00:00
calum	3037b2b197	C#: Sync the -Good and -Bad files in the qltest to match the sample.	2018-12-12 11:36:00 +00:00
calum	1df1b0c28e	C#: Refactor ArrayCreations to allow stackalloc arrays to have initializers (C# 7.3).	2018-12-12 11:05:34 +00:00
Max Schaefer	faaca21996	JavaScript: Avoid more unhelpful magic.	2018-12-12 08:40:21 +00:00
Max Schaefer	4fc27aaa51	Merge branch 'master' into pseudo-random-bytes	2018-12-12 08:19:57 +00:00
semmle-qlci	06dd5f3616	Merge pull request #656 from xiemaisi/js/unused-local-underscore Approved by esben-semmle	2018-12-12 08:11:37 +00:00
semmle-qlci	9df5d4b0c2	Merge pull request #660 from esben-semmle/js/angularjs-alert-locations Approved by xiemaisi	2018-12-12 08:05:19 +00:00
yh-semmle	14488cb62e	Merge pull request #652 from aschackmull/java/constant-loop-cond-alert-pos Java: Change alert location for ConstantLoopCondition.	2018-12-11 21:26:14 -05:00
Esben Sparre Andreasen	fac638ffab	JS: improve alert location of js/angular/unused-dependency	2018-12-11 21:47:08 +01:00
Esben Sparre Andreasen	b5bbf990b0	JS: improve alert location of js/angular/repeated-dependency-injection	2018-12-11 21:47:08 +01:00
Esben Sparre Andreasen	5acd1ca26d	JS: improve alert location of js/angular/duplicate-dependency	2018-12-11 21:47:08 +01:00
Robert Marsh	98005edd9d	Merge pull request #641 from geoffw0/exprnoeffect2 CPP: More tests of isSideEffectFree() / ExprHasNoEffect.ql	2018-12-11 12:17:30 -08:00
Tom Hvitved	7422947e78	C#: Improve performance of `cs/useless-upcast`	2018-12-11 17:48:04 +01:00
Asger F	a01a9dc5cc	JS: add crypto.pseudoRandomBytes as source in InsecureRandomness.ql	2018-12-11 16:06:22 +00:00
Esben Sparre Andreasen	376ed7a4d2	JS: generalize js/command-line-injection to handle ConstantString	2018-12-11 13:39:15 +01:00
Esben Sparre Andreasen	a1d92bfa50	JS: generalize js/incomplete-sanitization to handle ConstantString	2018-12-11 13:39:15 +01:00
Esben Sparre Andreasen	7cc6f2f4d8	JS: add test case	2018-12-11 10:17:25 +01:00
Esben Sparre Andreasen	36e36a414e	JS: change notes for improve file classification	2018-12-11 10:01:54 +01:00
Esben Sparre Andreasen	73aa223b08	JS: handle additional multi-license file patterns	2018-12-11 09:55:38 +01:00
Max Schaefer	4d186e0edc	JavaScript: Teach `Unused{Variable,Parameter}` to ignore variables with leading underscore.	2018-12-11 08:50:50 +00:00
Esben Sparre Andreasen	edbef289a7	JS: improve whitespace handling for multi-license file recognition	2018-12-11 09:30:10 +01:00
Esben Sparre Andreasen	e016098f86	JS: support purs classification	2018-12-11 09:17:01 +01:00
Esben Sparre Andreasen	3879e57f18	JS: support <meta name="generator"/> classification	2018-12-11 09:12:39 +01:00
Esben Sparre Andreasen	a295dfd2c5	JS: support AutoRest classification	2018-12-11 08:54:19 +01:00

1 2 3 4 5 ...

1958 Commits