Erik Krogh Kristensen
|
3f736d3eb8
|
Merge pull request #6694 from erik-krogh/owasp-fixes
JS/Java: use the correct cwe tags
|
2021-09-15 13:46:35 +02:00 |
|
CodeQL CI
|
b228398b87
|
Merge pull request #6587 from erik-krogh/ts44
Approved by asgerf
|
2021-09-15 04:00:13 -07:00 |
|
Geoffrey White
|
0e7afb24cf
|
Merge pull request #6643 from MathiasVP/add-frontend-and-extractor-diagnostic-query
C++: Add uninterpreted query for obtaining frontend and extraction time
|
2021-09-15 11:17:58 +01:00 |
|
Erik Krogh Kristensen
|
cf149bd8c8
|
add static_initializer as a stmt_parent
|
2021-09-15 11:54:30 +02:00 |
|
Chris Smowton
|
03db15af9a
|
Merge pull request #6685 from smowton/smowton/admin/android-uri-model
Java: Add models for android.net.Uri[.Builder]
|
2021-09-15 10:48:33 +01:00 |
|
Erik Krogh Kristensen
|
0b83d033d7
|
add @static_initializer in the stats file
|
2021-09-15 11:33:05 +02:00 |
|
Anders Schack-Mulligen
|
8485b6f0b3
|
Merge pull request #6691 from bmuskalla/moreStringMethods
Java: Support String#getChars and #translateEscapes
|
2021-09-15 10:14:54 +02:00 |
|
CodeQL CI
|
220f2ded85
|
Merge pull request #6698 from asgerf/js/template-self-assignment
Approved by esbena
|
2021-09-15 01:08:39 -07:00 |
|
Anders Schack-Mulligen
|
3f7d6e6f85
|
Merge pull request #6136 from smowton/smowton/admin/spring-xss-content-type-sensitivity
Spring HTTP: improve content-type sensitivity
|
2021-09-15 09:50:56 +02:00 |
|
Anders Schack-Mulligen
|
2a9e3da24f
|
Merge pull request #6697 from github/workflow/coverage/update
Update CSV framework coverage reports
|
2021-09-15 09:35:09 +02:00 |
|
Asger Feldthaus
|
b5db4047a0
|
JS: Exclude template files in SelfAssignment
|
2021-09-15 08:59:47 +02:00 |
|
github-actions[bot]
|
baab70bea6
|
Add changed framework coverage reports
|
2021-09-15 00:07:57 +00:00 |
|
CodeQL CI
|
b25b19f71b
|
Merge pull request #6584 from erik-krogh/clipBoard
Approved by esbena
|
2021-09-14 12:41:49 -07:00 |
|
Erik Krogh Kristensen
|
5a7785776c
|
add upgrade script
|
2021-09-14 20:43:07 +02:00 |
|
Erik Krogh Kristensen
|
fdbf5f73b1
|
add JS support for static initializers
|
2021-09-14 20:40:46 +02:00 |
|
Erik Krogh Kristensen
|
cc0d86403e
|
revert some type changes that are no longer needed
|
2021-09-14 20:40:46 +02:00 |
|
Erik Krogh Kristensen
|
48b763c7e9
|
add qldoc to StaticInitializer::getBody
|
2021-09-14 20:40:46 +02:00 |
|
Erik Krogh Kristensen
|
7ce87a7118
|
remove stray import
|
2021-09-14 20:40:46 +02:00 |
|
Erik Krogh Kristensen
|
c8c7a1f772
|
remove the body field from StaticInitializer and relax the valuye type on MemberDefinition
|
2021-09-14 20:40:45 +02:00 |
|
Erik Krogh Kristensen
|
e3ed6c2523
|
refactor StaticInitializer into it's own class
|
2021-09-14 20:40:45 +02:00 |
|
Erik Krogh Kristensen
|
23e28ae5d4
|
fix typo in comment
Co-authored-by: Asger F <asgerf@github.com>
|
2021-09-14 20:40:45 +02:00 |
|
Erik Krogh Kristensen
|
2a03a84315
|
remove TODO comment
Co-authored-by: Asger F <asgerf@github.com>
|
2021-09-14 20:40:45 +02:00 |
|
Erik Krogh Kristensen
|
68ab210dc8
|
update TypeScript version info in versions-compilers.rst
|
2021-09-14 20:40:45 +02:00 |
|
Erik Krogh Kristensen
|
ffd51e725f
|
add getter for static initializer blocks
|
2021-09-14 20:40:45 +02:00 |
|
Erik Krogh Kristensen
|
9585481d0b
|
add support for static initializer blocks in TypeScript
|
2021-09-14 20:40:45 +02:00 |
|
Erik Krogh Kristensen
|
59f15eb4eb
|
add tests for TypeScript 4.4 types
|
2021-09-14 20:40:45 +02:00 |
|
Erik Krogh Kristensen
|
02a0eed8ee
|
add basic support for TypeScript 4.4
|
2021-09-14 20:40:45 +02:00 |
|
Erik Krogh Kristensen
|
3b6c8c5191
|
Merge branch 'main' into clipBoard
|
2021-09-14 20:21:37 +02:00 |
|
CodeQL CI
|
136d04390d
|
Merge pull request #6695 from erik-krogh/js-add-cwes
Approved by esbena
|
2021-09-14 11:19:35 -07:00 |
|
Chris Smowton
|
e5b84fb795
|
Use InlineFlowTest
|
2021-09-14 16:37:07 +01:00 |
|
Chris Smowton
|
5d737934c3
|
Don't inherit models from a final class
Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
|
2021-09-14 16:37:07 +01:00 |
|
Chris Smowton
|
367a53dd71
|
Add models for android.net.Uri[.Builder]
|
2021-09-14 16:37:07 +01:00 |
|
Chris Smowton
|
ca87768a93
|
Merge pull request #6692 from bmuskalla/testGeneratorFlowTest
Java: Test generator uses `InlineFlowTest`
|
2021-09-14 15:44:24 +01:00 |
|
Chris Smowton
|
406466de9a
|
Simplify specifiesContentType predicate
|
2021-09-14 15:24:46 +01:00 |
|
Mathias Vorreiter Pedersen
|
adbeba291b
|
Merge pull request #6687 from MathiasVP/fix-fp-in-av-rule-114
C++: Exclude uninstantiated templates from AV Rule 114.
|
2021-09-14 15:24:18 +01:00 |
|
Chris Smowton
|
6cff0d0376
|
Merge pull request #6393 from luchua-bc/java/xss-jsf
Java: CWE-079 Query to detect XSS with JavaServer Faces (JSF)
|
2021-09-14 15:15:56 +01:00 |
|
Benjamin Muskalla
|
abd770a027
|
Avoid empty template in test generator
|
2021-09-14 15:32:12 +02:00 |
|
Chris Smowton
|
a1ad1ddc10
|
Deprecated and replace uses of old name ServletWriterSource
|
2021-09-14 14:21:29 +01:00 |
|
Erik Krogh Kristensen
|
b936a04826
|
add some fitting CWEs to existing queries
|
2021-09-14 14:59:24 +02:00 |
|
Erik Krogh Kristensen
|
6d12c4aab1
|
use the correct cwe tags
|
2021-09-14 14:42:23 +02:00 |
|
Anders Schack-Mulligen
|
26eafcb55a
|
Merge pull request #6456 from smowton/smowton/admin/flexjson-unsafe-deserialization
Java: add unsafe-deserialization support for Flexjson
|
2021-09-14 14:33:22 +02:00 |
|
Rasmus Wriedt Larsen
|
8b7fad8595
|
Merge pull request #6283 from tausbn/python-fix-exceptstmt-gettype
Python: Fix `ExceptStmt::getType`
|
2021-09-14 13:40:33 +02:00 |
|
Rasmus Wriedt Larsen
|
49f5f1e2c2
|
Merge pull request #6336 from tausbn/python-make-annotated-assignment-a-definitionnode
Python: Two fixes regarding annotated assignments
|
2021-09-14 13:37:53 +02:00 |
|
Chris Smowton
|
6af5c5fc86
|
Add change note
|
2021-09-14 12:36:38 +01:00 |
|
Chris Smowton
|
26dbf058c8
|
Add reverse import from ExternalFlow.qll
|
2021-09-14 12:35:33 +01:00 |
|
Chris Smowton
|
fcc0f1d5a7
|
Expand test to exercise all sinks
|
2021-09-14 12:27:33 +01:00 |
|
Chris Smowton
|
e439b7d7f8
|
Remove resource-related sources
These access application-owned resources AFAICT
|
2021-09-14 12:24:27 +01:00 |
|
Tom Hvitved
|
98a12cef26
|
Merge pull request #6690 from hvitved/js/files-folders-drop-columns
JavaScript: Drop redundant columns from `files` and `folders` relations
|
2021-09-14 13:13:37 +02:00 |
|
Chris Smowton
|
104873e8ee
|
Autoformat
|
2021-09-14 12:07:59 +01:00 |
|
Chris Smowton
|
6811441459
|
Factor JSF source definitions
|
2021-09-14 12:07:48 +01:00 |
|