13817 Commits

Author	SHA1	Message	Date
Owen Mansel-Chan	66f95bcbcd	Merge pull request #20603 from owen-mc/update-broken-algo-qhelp ... Many languages: Update broken algo qhelp	2025-10-17 12:30:43 +01:00
Joe Farebrother	f57526eedc	Merge pull request #20572 from joefarebrother/java-httponly-cookie-promote ... Java: Promote Sensitive Cookie without HttpOnly query from experimental	2025-10-15 10:28:40 +01:00
Joe Farebrother	e95e1a0386	Update integration test	2025-10-14 16:27:28 +01:00
Joe Farebrother	d8b37d0cde	Review suggestions - update comments and description	2025-10-14 16:03:40 +01:00
github-actions[bot]	6dd07790ac	Post-release preparation for codeql-cli-2.23.3	2025-10-14 11:16:33 +00:00
github-actions[bot]	33542f7d40	Release preparation for version 2.23.3	2025-10-14 09:30:24 +00:00
Joe Farebrother	9cb593b020	Update tests	2025-10-13 14:51:37 +01:00
Joe Farebrother	093b04f79f	Update comments	2025-10-13 14:51:30 +01:00
Joe Farebrother	696ec29dae	Upgrade integration tests	2025-10-13 14:51:24 +01:00
Joe Farebrother	1c54296545	Add change note	2025-10-13 14:51:17 +01:00
Joe Farebrother	c4781146c0	Remove experimental query and tests	2025-10-13 14:51:10 +01:00
Joe Farebrother	c799f93811	Update tests and add inline expectations	2025-10-13 14:51:04 +01:00
Joe Farebrother	e1cf3d30d2	Update documentation, rename things and add more comments to explain how the implementation works, remove filter for test code (prefer to filter in code scanning ui than in query logic)	2025-10-13 14:50:57 +01:00
Joe Farebrother	54aefe0dce	Copy experimental query to main	2025-10-13 14:50:51 +01:00
idrissrio	546d59ff9d	Java: Wait for test HTTP servers to be ready before running buildless test	2025-10-09 08:37:54 +02:00
Owen Mansel-Chan	0bcdb91639	Improve qhelp for broken crypto algo queries ... Previously it focussed too much on the risk of data being decrypted, and didn't explain why using weak algorithms is a problem in other contexts.	2025-10-08 14:10:54 +01:00
Anders Schack-Mulligen	99f5dcaaa4	Java: Fix bug in ConstantExpAppearsNonConstant.	2025-10-08 10:32:51 +02:00
Idriss Riouak	28fe20e3e4	Merge pull request #20595 from github/idrissrio/java-lambda ... Java: Add integration test for buildless lambda recovery	2025-10-08 09:53:29 +02:00
Alex Eyers-Taylor	542bdf0792	Java: Use Overlay dataflow in java.	2025-10-07 17:52:12 +01:00
Alex Eyers-Taylor	c49e2ab2da	DataFlow: Add code to do overlay informed dataflow.	2025-10-07 17:52:12 +01:00
idrissrio	f69e5f5ffc	Java: Accept new test results after extractor changes	2025-10-07 16:55:53 +02:00
idrissrio	55b15a261a	Java: Add integration test for buildless lambda recovery	2025-10-07 16:55:52 +02:00
Anders Schack-Mulligen	18e33b193e	Merge pull request #20589 from aschackmull/java/array-entrypoint-read-taint ... Java: Allow taint-read-steps for array sources.	2025-10-07 15:04:03 +02:00
Anders Schack-Mulligen	7dadbc43fb	Java: Add change note.	2025-10-07 13:51:49 +02:00
Anders Schack-Mulligen	f0bfd7053e	Java: Add test case.	2025-10-07 13:40:44 +02:00
Anders Schack-Mulligen	11665bea0a	Java: Allow taint-read-steps for array sources.	2025-10-07 10:10:02 +02:00
idrissrio	5c6d187ef2	Java: Fix buildless test HTTP server binding on macOS26	2025-10-07 09:24:55 +02:00
Nicolas Will	e2a8d58e02	Merge pull request #20583 from bdrodes/jca_signature_extensions ... Crypto: Add JCA signatures, RNG, and unit tests	2025-10-06 18:51:30 +02:00
REDMOND\brodes	cb812b47ed	Crypto: more non-ascii removal.	2025-10-06 11:53:39 -04:00
Nicolas Will	9e278b9fa4	Merge pull request #20258 from bdrodes/java_nonce_reuse_tests ... Crypto: Add reuse nonce test for Java	2025-10-06 17:42:25 +02:00
REDMOND\brodes	017a956d5e	Crypto: more non-ascii removal.	2025-10-06 11:34:45 -04:00
REDMOND\brodes	abeb3141b1	Crypto: Formatting test cases, more removal of non-ascii	2025-10-06 10:46:09 -04:00
Nicolas Will	15e9bb9cc1	Format Test and update .expected	2025-10-06 16:29:25 +02:00
REDMOND\brodes	96f6832a6f	Crypto: Updating expected files for unit tests.	2025-10-06 10:07:15 -04:00
REDMOND\brodes	606aef38cb	Crypto: Removing non-ascii characters from unit tests	2025-10-06 09:56:14 -04:00
Ben Rodes	b32a6407b9	Update java/ql/lib/experimental/quantum/JCA.qll ... Co-authored-by: Nicolas Will <nicolaswill@github.com>	2025-10-06 09:04:19 -04:00
Idriss Riouak	4a1157bff9	Merge pull request #20491 from github/idrissrio/java-maven ... Java: Integration tests for Maven 4	2025-10-06 14:57:22 +02:00
Nicolas Will	579da1dbd6	Fix QL-for-QL alerts	2025-10-06 14:45:45 +02:00
idrissrio	a22ec2d9c6	Java: Accept new test results after extractor changes	2025-10-06 11:18:16 +02:00
idrissrio	f6b6a007b1	Java: Add integration tests for Maven 4	2025-10-06 11:18:15 +02:00
REDMOND\brodes	9fa30a3884	Crypto: Updating algorithm string literals and key generation algorithm literal sources to include signatures.	2025-10-03 18:09:27 -04:00
REDMOND\brodes	9c5765a48c	Crypto: Add missing string constants for signature algorithms.	2025-10-03 17:17:07 -04:00
REDMOND\brodes	66e9d7671d	Crypto: Add jca unit tests.	2025-10-03 13:32:02 -04:00
REDMOND\brodes	f1eb6511a7	Crypto: Add modeling for JCA signatures. Make consistent use of "unknown" or "other" for unrecognized types.	2025-10-03 12:07:37 -04:00
REDMOND\brodes	a46bd4c4ca	Crypto: JCA random number generation model.	2025-10-02 15:21:28 -04:00
Ben Rodes	e823d80f0c	Merge branch 'main' into java_nonce_reuse_tests	2025-10-02 13:31:40 -04:00
Nicolas Will	4901cdf929	Crypto: Refactor and change casts to super	2025-10-02 18:43:38 +02:00
REDMOND\brodes	9673b81677	Crypto: Update JCA 'wihHmac" raw name to be the entire raw string, not just "Hmac"	2025-10-02 11:49:23 -04:00
REDMOND\brodes	704a06e1fa	Crypto: Update JCA PBKDF2 modeling: 1) add further inheritance structures to make the inheritance decomposition and caveats clearer, and 2) use getConsumer to establish the hash and hmac consumer. Update the Model to expect hash node types specifically for HMAC getHashALgorithmOrUnknown.	2025-10-02 11:45:13 -04:00
REDMOND\brodes	850c1ec12d	Crypto: Fix use of a member where a singleton set literal exists	2025-10-02 09:20:40 -04:00