hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-26 09:15:12 +02:00
Code Issues Packages Projects Releases Wiki Activity
8,458 Commits 1,741 Branches 165 Tags
3edd65f9ab52604b3229c05c5d6fbdb5977751e0
Commit Graph

8458 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Erik Krogh Kristensen
3edd65f9ab changed the exceptional taint-steps to step through each call-site 2019-11-15 16:05:15 +01:00
Erik Krogh Kristensen
e95cceef1d import all the shared XSS sources and sinks 2019-11-15 15:41:53 +01:00
Erik Krogh Kristensen
65a018ceed use flow labels to avoid dual configurations 2019-11-15 14:37:46 +01:00
Erik Krogh Kristensen
8d2ae136b0 move String.prototype.match taint step to a general AdditionalTaintStep 2019-11-15 12:52:54 +01:00
Erik Krogh Kristensen
e49b5e4afc up precision from low to medium, and fix tab/spaces 2019-11-14 17:42:16 +01:00
Erik Krogh Kristensen
7137a64b7d Added query for detecting XSS that happens through an exception 2019-11-14 17:04:00 +01:00
Rasmus Wriedt Larsen
1159344972 Merge pull request #2320 from tausbn/python-add-walrus-support 
Python: Add AST classes for walrus operator.
 2019-11-14 13:48:05 +01:00
James Fletcher
f085b81e51 Merge pull request #2323 from shati-patel/docs/rename 
Docs: Tidy up links in relevant topics
 2019-11-14 12:44:54 +00:00
Shati Patel
557b95ccb1 Docs: Tidy up links in relevant topics 2019-11-14 12:32:21 +00:00
Anders Schack-Mulligen
6a2edce040 Merge pull request #2205 from rneatherway/java/hamcrest-nullness 
Java: Respect Hamcrest assertThat(X, notNullValue())
 2019-11-14 13:09:56 +01:00
James Fletcher
2eaf91e1fb Merge pull request #2322 from shati-patel/docs/typo 
Docs: Typo fix
 2019-11-14 11:56:39 +00:00
Shati Patel
3cdaef7211 Docs: Typo fix 2019-11-14 11:50:43 +00:00
Taus Brock-Nannestad
dcffd1dbc3 Python: Add AST classes for walrus operator. 
Happily, these were already present in the `dbscheme`.
 2019-11-14 12:10:04 +01:00
Tom Hvitved
94583cde10 Merge pull request #2245 from calumgrant/cs/nullability-refactor 
C#: Store nullability on the side
 2019-11-14 11:44:39 +01:00
semmle-qlci
67963a5b9d Merge pull request #2258 from asger-semmle/js-ignore-codesql-databases 
Approved by esbena
 2019-11-14 08:34:23 +00:00
Dave Bartolomeo
08620046ab Merge pull request #2068 from rdmarsh2/rdmarsh/cpp/ir-constructor-side-effects 
C++: side effect instrs for constructor qualifiers
 2019-11-13 14:56:24 -07:00
Dave Bartolomeo
55010d030d Merge pull request #2315 from geoffw0/errtest 
CPP: Add a quick test of ErroneousType.
 2019-11-13 13:24:39 -07:00
Henning Makholm
e1467a77e8 Merge pull request #2316 from dave-bartolomeo/dbartol/TestManifests 
Add QL test directories to `.codeqlmanifest.json`
 2019-11-13 20:58:59 +01:00
Dave Bartolomeo
dd0f04b949 Add QL test directories to .codeqlmanifest.json 2019-11-13 12:37:51 -07:00
Dave Bartolomeo
e89ecc19e3 Merge pull request #2302 from max-schaefer/test-qlpacks 
Add `qlpack.yml` files for test folders.
 2019-11-13 12:21:19 -07:00
Robert Marsh
0175c44a14 C#: update IR test expectations 2019-11-13 10:58:38 -08:00
Geoffrey White
32b5501177 CPP: Add a test of ErroneousType. 2019-11-13 18:53:43 +00:00
semmle-qlci
252e1c76a6 Merge pull request #2313 from erik-krogh/quickFixreflectiveCallNode 
Approved by max-schaefer
 2019-11-13 17:00:38 +00:00
Calum Grant
38f82d8377 Merge remote-tracking branch 'upstream/master' into cs/nullability-refactor 2019-11-13 15:31:45 +00:00
Tom Hvitved
46bc804562 Merge pull request #2286 from calumgrant/cs/windows-tests 
C#: Make qltests pass on all platforms
 2019-11-13 16:21:08 +01:00
Calum Grant
6e24a92179 Merge remote-tracking branch 'upstream/master' into cs/nullability-refactor 2019-11-13 14:58:58 +00:00
Erik Krogh Kristensen
538690eee6 remove duplicate reflectiveCallNode method, and removing redundant getExpr() method 2019-11-13 15:53:21 +01:00
Calum Grant
18d6138320 C#: Address review comment. 2019-11-13 14:47:06 +00:00
semmle-qlci
b11a7427c2 Merge pull request #2270 from erik-krogh/reflectiveExpr 
Approved by max-schaefer
 2019-11-13 13:08:40 +00:00
Tom Hvitved
9c9744620e Merge pull request #2291 from calumgrant/cs/assembly-prefix 
C#: Fix prefixing assembly IDs to type IDs
 2019-11-13 13:25:15 +01:00
Calum Grant
b65ab15d46 C#: Delete unused file. 2019-11-13 12:16:05 +00:00
Calum Grant
3b775a9ecb Merge pull request #2095 from hvitved/csharp/type-unification 
C#: Type unification library
 2019-11-13 09:48:59 +00:00
semmle-qlci
f34025c5a0 Merge pull request #2306 from Semmle/revert-2247-odasa-8149 
Approved by asger-semmle
 2019-11-13 09:04:22 +00:00
Jonas Jensen
8a9ee8fcdd Merge pull request #2300 from geoffw0/names 
CPP: Rename/relocate some queries and libraries
 2019-11-13 09:11:24 +01:00
Max Schaefer
155cea7b5b Revert "JavaScript: Improve double-escaping query" 2019-11-12 22:54:12 +00:00
Robert Marsh
3de590763e C++: autoformat 2019-11-12 13:57:49 -08:00
yh-semmle
429c307832 Merge pull request #2304 from aschackmull/java/rangeanalysis-integral-fix 
Java: Fix range analysis bug in integral inequality bounds.
 2019-11-12 16:33:12 -05:00
yh-semmle
6a16eb838d Merge pull request #2305 from aschackmull/java/overflowcheck-conditionalexpr 
Java: Add ConditionalExpr to overflow candidate pattern.
 2019-11-12 16:32:09 -05:00
Dave Bartolomeo
5b33255e44 Merge pull request #1585 from rdmarsh2/rdmarsh/cpp/hasGlobalOrStdName 
C++: add Declaration.hasGlobalOrStdName()
 2019-11-12 12:00:17 -07:00
Robert Marsh
47f87c214c Merge branch 'master' into rdmarsh/cpp/ir-constructor-side-effects 2019-11-12 10:31:04 -08:00
Geoffrey White
db26b85fa3 CPP: Fix test (I missed a file in the move). 2019-11-12 18:25:20 +00:00
Robert Marsh
9554513cd6 autoformat 2019-11-12 10:16:01 -08:00
semmle-qlci
6c9f92666e Merge pull request #2285 from asger-semmle/dataflow-syntax-examples 
Approved by max-schaefer
 2019-11-12 16:50:29 +00:00
Anders Schack-Mulligen
7619275c8b Java: Fix range analysis bug in integral inequality bounds. 2019-11-12 17:28:40 +01:00
Anders Schack-Mulligen
8cd6b51763 Java: Add ConditionalExpr to overflow candidate pattern. 2019-11-12 17:27:18 +01:00
Geoffrey White
ea9e3bb1a8 CPP: Rename VirtualDispatch again. 2019-11-12 16:17:03 +00:00
Max Schaefer
5b2e32b051 Add qlpack.yml files for test folders. 2019-11-12 15:03:02 +00:00
Geoffrey White
5c87ed5ab2 CPP: Remove unused code. 2019-11-12 14:45:43 +00:00
Geoffrey White
0343bd6b9c CPP: Inline BufferAccess into NtohlArrayNoBound.qll (we'd prefer other queries to be written with the models library or Security.BufferAccess). 2019-11-12 14:44:20 +00:00
Geoffrey White
f50dd84c49 CPP: Rename good and bad example files. 2019-11-12 14:09:54 +00:00