codeql

mirror of https://github.com/github/codeql.git synced 2026-02-19 16:33:40 +01:00

Author	SHA1	Message	Date
Erik Krogh Kristensen	41506fbfef	Merge pull request #14666 from am0o0/amammad-js-hardcodedJWTKey JS: Extends CredentialsNode class mostly related to JWT authentication packages	2024-08-08 10:20:45 +02:00
Erik Krogh Kristensen	2d3d46e0e2	Merge pull request #17166 from erik-krogh/arbitarySpecifiers JS: Parse arbitary module specifiers	2024-08-08 08:29:13 +02:00
Tamás Vajk	ef21ee53a5	Merge pull request #17169 from tamasvajk/buildless/db-quality-query C#: Add diagnostic query indicating low database quality	2024-08-07 21:36:37 +02:00
am0o0	b64cb4da09	remove a part of code related to debugging :)	2024-08-07 20:37:20 +02:00
Tamas Vajk	0263cc1609	Improve code quality	2024-08-07 15:27:14 +02:00
Tom Hvitved	d9ff4ef567	Merge pull request #17155 from hvitved/java/array-ref-bad-join Java: Fix bad join	2024-08-07 12:39:40 +02:00
Owen Mansel-Chan	40282daeb5	Merge pull request #17152 from github/workflow/coverage/update Update CSV framework coverage reports	2024-08-07 11:04:02 +01:00
Owen Mansel-Chan	5fe3d17a26	Merge branch 'main' into workflow/coverage/update	2024-08-07 10:52:55 +01:00
Tamás Vajk	42be9e98c8	Merge pull request #16938 from tamasvajk/feature/extract-files-multiple C#: Do not skip extraction of already seen source files	2024-08-07 11:23:48 +02:00
Tamas Vajk	2a2b371244	Add change note	2024-08-07 11:15:10 +02:00
Tamas Vajk	7388c6db24	Downgrade buildless TSP warnings to notes	2024-08-07 11:14:16 +02:00
Tamas Vajk	139e09d5d3	C#: Add diagnostic query indicating low database quality	2024-08-07 10:49:12 +02:00
erik-krogh	bef4fe627d	make sure the new identifiers have end-locations	2024-08-07 10:25:22 +02:00
Joe Farebrother	62c2fe6b17	Merge pull request #16933 from joefarebrother/python-cookie-concept-promote Python: Promote the insecure cookie query from experimental	2024-08-07 09:06:05 +01:00
github-actions[bot]	d88b25c243	Add changed framework coverage reports	2024-08-07 00:18:15 +00:00
Joe Farebrother	24df54804a	Review suggestion - Add link to qldoc Co-authored-by: yoff <lerchedahl@gmail.com>	2024-08-06 22:59:14 +01:00
erik-krogh	b8187ed294	support arbitary export specifiers	2024-08-06 20:45:57 +02:00
erik-krogh	5f7f37f6c8	support arbitary import specifiers	2024-08-06 20:45:53 +02:00
Dave Bartolomeo	e222b49258	Merge pull request #17160 from hvitved/csharp/update-expected C#: Update expected test output	2024-08-06 13:27:49 -04:00
Dave Bartolomeo	b2d20f1fed	Merge pull request #17161 from geoffw0/madfix C++: Accept test changes caused by new CLI version.	2024-08-06 12:25:27 -04:00
Angela P Wen	1f37662e3b	Merge pull request #17158 from github/angelapwen/update-codeql-docs Docs: remove `ubuntu-18.04`, indicate Swift requires macOS	2024-08-06 18:17:15 +02:00
Cornelius Riemenschneider	c88ed68766	Merge pull request #17151 from github/criemen/pytest-ruby Ruby: Port integration tests to pytest.	2024-08-06 18:09:34 +02:00
Geoffrey White	bf66a787ab	C++: Accept test changes caused by new CLI version.	2024-08-06 16:45:48 +01:00
Cornelius Riemenschneider	def662d641	Merge branch 'main' into criemen/pytest-ruby	2024-08-06 16:41:23 +02:00
Tom Hvitved	00d447ba4b	C#: Update expected test output	2024-08-06 15:43:08 +02:00
Angela P Wen	4489749ce4	Docs: indicate Swift support requires macOS	2024-08-06 14:33:03 +02:00
Angela P Wen	14977a7917	Docs: remove deprecated `ubuntu-18.04`	2024-08-06 14:30:40 +02:00
Dave Bartolomeo	32b3924548	Merge pull request #17156 from hvitved/ruby/update-expected	2024-08-06 08:07:07 -04:00
Tom Hvitved	0f1b5327ef	Ruby: Update expected test output	2024-08-06 13:58:05 +02:00
Tom Hvitved	a7410e4a16	Java: Fix bad join Before ``` [2024-08-06 10:37:59] Evaluated non-recursive predicate BoundingChecks::arrayReference/1#754911ba@0628dahn in 20981ms (size: 2009682526). Evaluated relational algebra for predicate BoundingChecks::arrayReference/1#754911ba@0628dahn with tuple counts: 94480 ~0% {2} r1 = SCAN `Expr::ArrayAccess.getArray/0#dispred#b90c658a` OUTPUT In.1, In.0 32 ~0% {2} r2 = JOIN r1 WITH `Expr::MethodCall.getMethod/0#dispred#41989dc9` ON FIRST 1 OUTPUT Rhs.1, Lhs.1 1013 ~1% {2} \| JOIN WITH `Expr::MethodCall.getMethod/0#dispred#41989dc9_10#join_rhs` ON FIRST 1 OUTPUT Lhs.1, Rhs.1 92091 ~4% {2} r3 = JOIN r1 WITH variableBinding ON FIRST 1 OUTPUT Rhs.1, Lhs.1 2009681513 ~0% {2} \| JOIN WITH variableBinding_10#join_rhs ON FIRST 1 OUTPUT Lhs.1, Rhs.1 2009682526 ~0% {2} r4 = r2 UNION r3 return r4 [2024-08-06 10:38:02] Evaluated non-recursive predicate BoundingChecks::lessthanLength/1#48b5e1b7@2885308n in 0ms (size: 108). Evaluated relational algebra for predicate BoundingChecks::lessthanLength/1#48b5e1b7@2885308n with tuple counts: 1518 ~0% {2} r1 = JOIN `Expr::ComparisonExpr.isStrict/0#dispred#fd8c6ddb` WITH `Expr::ComparisonExpr.getGreaterOperand/0#dispred#e8df4b14` ON FIRST 1 OUTPUT Rhs.1, Lhs.0 455 ~2% {2} \| JOIN WITH Expr::FieldAccess#2b664c37 ON FIRST 1 OUTPUT Lhs.1, Lhs.0 455 ~1% {3} \| JOIN WITH `Expr::ComparisonExpr.getLesserOperand/0#dispred#d7744bc2` ON FIRST 1 OUTPUT Lhs.1, Lhs.0, Rhs.1 455 ~0% {5} \| JOIN WITH `Expr::FieldAccess.getField/0#dispred#29ef4aa0` ON FIRST 1 OUTPUT Rhs.1, _, Lhs.1, Lhs.0, Lhs.2 455 ~0% {5} \| REWRITE WITH Out.1 := "length" 116 ~0% {3} \| JOIN WITH `Element::Element.hasName/1#dispred#8acbbbde` ON FIRST 2 OUTPUT Lhs.4, Lhs.2, Lhs.3 93 ~0% {3} \| JOIN WITH variableBinding ON FIRST 1 OUTPUT Lhs.2, Lhs.1, Rhs.1 93 ~1% {3} \| JOIN WITH `Expr::VarAccess.getQualifier/0#dispred#2b0f1cd1` ON FIRST 1 OUTPUT Lhs.2, Lhs.1, Rhs.1 484 ~2% {3} \| JOIN WITH variableBinding_10#join_rhs ON FIRST 1 OUTPUT Lhs.1, Rhs.1, Lhs.2 277 ~3% {2} \| JOIN WITH `BoundingChecks::conditionHolds/2#fa0354b9#bb` ON FIRST 2 OUTPUT Lhs.1, Lhs.2 166 ~5% {2} \| JOIN WITH `Expr::ArrayAccess.getIndexExpr/0#dispred#345f6cf4_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1 110 ~0% {1} \| JOIN WITH `BoundingChecks::arrayReference/1#754911ba` ON FIRST 2 OUTPUT Lhs.0 return r1 ``` After ``` [2024-08-06 13:29:50] Evaluated non-recursive predicate BoundingChecks::lengthAccess/2#54b10eff@719e68tb in 0ms (size: 309). Evaluated relational algebra for predicate BoundingChecks::lengthAccess/2#54b10eff@719e68tb with tuple counts: 6241 ~0% {2} r1 = JOIN `BoundingChecks::getAnAccess/1#152ad44e_10#join_rhs` WITH `Expr::VarAccess.getQualifier/0#dispred#2b0f1cd1_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1 6240 ~0% {4} \| JOIN WITH `Expr::FieldAccess.getField/0#dispred#29ef4aa0` ON FIRST 1 OUTPUT Rhs.1, _, Lhs.1, Lhs.0 6240 ~0% {4} \| REWRITE WITH Out.1 := "length" 309 ~2% {2} \| JOIN WITH `Element::Element.hasName/1#dispred#8acbbbde` ON FIRST 2 OUTPUT Lhs.3, Lhs.2 return r1 [2024-08-06 13:29:50] Evaluated non-recursive predicate BoundingChecks::lessthanLength/1#48b5e1b7@0fcac509 in 1ms (size: 108). Evaluated relational algebra for predicate BoundingChecks::lessthanLength/1#48b5e1b7@0fcac509 with tuple counts: 94480 ~0% {3} r1 = JOIN `Expr::ArrayAccess.getArray/0#dispred#b90c658a` WITH `Expr::ArrayAccess.getIndexExpr/0#dispred#345f6cf4` ON FIRST 1 OUTPUT Rhs.1, Lhs.0, Lhs.1 648 ~4% {4} \| JOIN WITH variableBinding ON FIRST 1 OUTPUT Lhs.2, Lhs.1, Lhs.0, Rhs.1 621 ~1% {4} \| JOIN WITH `BoundingChecks::getAnAccess/1#152ad44e_10#join_rhs` ON FIRST 1 OUTPUT Lhs.2, Lhs.1, Lhs.3, Rhs.1 344 ~0% {4} \| JOIN WITH `BoundingChecks::conditionHolds/2#fa0354b9#bb_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1, Lhs.2, Lhs.3 341 ~0% {4} \| JOIN WITH `Expr::ComparisonExpr.isStrict/0#dispred#fd8c6ddb` ON FIRST 1 OUTPUT Lhs.0, Lhs.1, Lhs.2, Lhs.3 341 ~0% {5} \| JOIN WITH `Expr::ComparisonExpr.getGreaterOperand/0#dispred#e8df4b14` ON FIRST 1 OUTPUT Rhs.1, Lhs.3, Lhs.1, Lhs.2, Lhs.0 110 ~2% {3} \| JOIN WITH `BoundingChecks::lengthAccess/2#54b10eff` ON FIRST 2 OUTPUT Lhs.4, Lhs.2, Lhs.3 110 ~0% {3} \| JOIN WITH `Expr::ComparisonExpr.getLesserOperand/0#dispred#d7744bc2` ON FIRST 1 OUTPUT Rhs.1, Lhs.2, Lhs.1 110 ~0% {1} \| JOIN WITH variableBinding ON FIRST 2 OUTPUT Lhs.2 return r1 ```	2024-08-06 13:30:19 +02:00
Cornelius Riemenschneider	2377546240	Merge pull request #17150 from github/criemen/upgrade-rules-rust Bazel: Upgrade rules_rust.	2024-08-06 12:53:07 +02:00
Cornelius Riemenschneider	4e013af530	Merge branch 'main' into criemen/upgrade-rules-rust	2024-08-06 12:40:39 +02:00
Joe Farebrother	e47d4ccb79	Merge pull request #17002 from Flying-Tom/add-get-response Ruby: Add get_response for Net::HTTP	2024-08-06 09:44:21 +01:00
Tom Hvitved	87c5627024	Merge pull request #16937 from hvitved/ruby/ssa-integration Ruby: Adopt shared SSA data-flow integration	2024-08-06 10:39:41 +02:00
Paolo Tranquilli	79740ed72b	Merge pull request #17145 from github/redsun82/go Go/Bazel: fix gazelle invocation to use bundled bazel go	2024-08-06 10:36:40 +02:00
Dave Bartolomeo	f08f17511e	Merge pull request #17139 from github/dbartol/provenance/qltest Update test expectations after extension numbering fix	2024-08-05 18:17:26 -04:00
Cornelius Riemenschneider	d42e424289	Port integration tests to pytest.	2024-08-05 22:07:42 +02:00
Dave Bartolomeo	7e82986e7c	Update Go test expectations	2024-08-05 13:20:12 -04:00
Dave Bartolomeo	a6e2fbb241	Merge remote-tracking branch 'origin/main' into dbartol/provenance/qltest	2024-08-05 13:16:31 -04:00
Chris Smowton	59572e5633	Merge pull request #16708 from am0o0/am0o0-java-PathInjection Java: new path injection sinks	2024-08-05 17:23:09 +01:00
Chris Smowton	e88bf31270	Merge branch 'main' into am0o0-java-PathInjection	2024-08-05 16:35:35 +01:00
Dave Bartolomeo	aea13b46ce	Merge remote-tracking branch 'origin/main' into dbartol/provenance/qltest	2024-08-05 10:33:31 -04:00
Tamas Vajk	a4e357e46d	Remove unused `FileIsUpToDate`	2024-08-05 15:56:12 +02:00
Tamas Vajk	ec9de41fea	Add change note	2024-08-05 15:55:32 +02:00
Tamas Vajk	968c279fd7	Add DB upgrade/downgrade scripts	2024-08-05 15:55:29 +02:00
Tamas Vajk	a31d90897d	C#: Do not skip extraction of already seen source files	2024-08-05 15:55:26 +02:00
Alexandre Boulgakov	6f23819f60	Merge pull request #17140 from github/jketema/generic-broken C++ Add IR test for `_Generic`s	2024-08-05 14:36:40 +01:00
am0o0	e4deb7d304	apply autoformating for HardcodedCredentials.ql	2024-08-05 14:58:37 +02:00
Paolo Tranquilli	841f317cbd	Merge branch 'main' into redsun82/go	2024-08-05 14:30:28 +02:00
Cornelius Riemenschneider	3721e346c6	Bazel: Upgrade rules_rust.	2024-08-05 14:29:25 +02:00

1 2 3 4 5 ...

69260 Commits