codeql

mirror of https://github.com/github/codeql.git synced 2026-04-28 02:05:14 +02:00

Author	SHA1	Message	Date
Harry Maclean	49572a5218	Remove redundant import	2022-09-27 10:35:39 +13:00
Harry Maclean	dea5036912	Ruby: Update for Http concept changes	2022-09-27 10:03:17 +13:00
Harry Maclean	d9487a07b1	Ruby: Make helper predicate private	2022-09-20 15:55:35 +01:00
Harry Maclean	6d3f87f610	Ruby: Small fixes	2022-09-20 15:55:35 +01:00
Harry Maclean	bc1723c0ee	Fix typos	2022-09-20 15:55:35 +01:00
Harry Maclean	cdc640b544	Revert "Ruby: Allow custom edges in API graph EntryPoints" This reverts commit ab061fb1e1d21877fc817c4c66b48fb2d3650fa8.	2022-09-20 15:55:35 +01:00
Harry Maclean	d5ef853343	Ruby: Remove ActiveStorage entry points	2022-09-20 15:55:35 +01:00
Harry Maclean	54b05e48a9	Ruby: Add change note	2022-09-20 15:55:35 +01:00
Harry Maclean	d68674a660	Ruby: disable problematic MaD path	2022-09-20 15:55:35 +01:00
Harry Maclean	ba5cd08a09	Update ActionController fixture	2022-09-20 15:55:35 +01:00
Harry Maclean	c97fadd7a3	Fix version number.	2022-09-20 15:55:35 +01:00
Harry Maclean	24b582d77a	Add missing QLDoc	2022-09-20 15:55:34 +01:00
Harry Maclean	96a34c3690	QL4QL fix	2022-09-20 15:55:34 +01:00
Harry Maclean	53a34174b9	Model ActiveStorage	2022-09-20 15:55:34 +01:00
Harry Maclean	39a1cf5bd8	Ruby: Allow custom edges in API graph EntryPoints	2022-09-20 15:55:34 +01:00
Paolo Tranquilli	0f74674319	Merge pull request #10492 from github/redsun82/bazel-codeowners Bazel: add some bazel files to `CODEOWNERS`	2022-09-20 16:50:37 +02:00
Mathias Vorreiter Pedersen	9d50fc6aa3	Merge pull request #10487 from MathiasVP/fix-identical-files-for-cpp C++: Add shared files in `experimental` to `identical-files.json`.	2022-09-20 15:43:43 +01:00
Paolo Tranquilli	5df4ca808f	Bazel: add some bazel files to `CODEOWNERS`	2022-09-20 16:31:05 +02:00
Erik Krogh Kristensen	0720fa75df	Merge pull request #10286 from erik-krogh/js-followMsg JS: change alert messages of path queries to use the same template	2022-09-20 16:12:45 +02:00
Tony Torralba	cbb64cc8c1	Merge pull request #10352 from atorralba/atorralba/promote-template-injection Java: Promote Server-side template injection from experimental	2022-09-20 16:11:58 +02:00
AlexDenisov	4614074d01	Merge pull request #10452 from github/alexdenisov/remove-swift-vfs Swift: remove (dead) VFS related code	2022-09-20 15:36:58 +02:00
Paolo Tranquilli	d0e3edf7ad	Merge pull request #10482 from github/redsun82/swift-action-triggers Swift: trigger workflows on bazel changes	2022-09-20 15:33:33 +02:00
Tom Hvitved	647397759e	Merge pull request #10336 from hvitved/ruby/call-graph-rework Ruby: Rework call graph implementation	2022-09-20 15:29:40 +02:00
Mathias Vorreiter Pedersen	90f24d3e82	Merge pull request #10430 from geoffw0/cleartextmissing Swift: Fix missing results in swift/cleartext-storage-database	2022-09-20 14:23:29 +01:00
Nick Rolfe	30b54b2abe	Merge pull request #10450 from github/nickrolfe/filesystemresolver Ruby: model ActionView::FileSystemResolver as a FileSystemAccess	2022-09-20 14:21:28 +01:00
Alex Denisov	c020bee529	Swift: remove VFS related code	2022-09-20 15:06:25 +02:00
Mathias Vorreiter Pedersen	74ccec75c8	C++: Sync identical files.	2022-09-20 13:37:54 +01:00
Mathias Vorreiter Pedersen	351e517786	Update config/identical-files.json Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2022-09-20 13:34:31 +01:00
Paolo Tranquilli	9fb4ff70b4	Merge branch 'main' into redsun82/swift-action-triggers	2022-09-20 14:23:22 +02:00
yoff	ea743173d5	Merge pull request #8781 from yoff/python-dataflow/flow-summaries-from-scratch Python dataflow: flow summaries restart	2022-09-20 14:08:31 +02:00
Mathias Vorreiter Pedersen	79654d978d	C++: Sync identical files.	2022-09-20 12:57:21 +01:00
Mathias Vorreiter Pedersen	e661c981e4	C++: Add shared files in experimental to 'identical-files.json'.	2022-09-20 12:53:43 +01:00
AlexDenisov	805aa94799	Merge pull request #10485 from github/redsun82/swift-fix-version-in-integration-tests Swift: fix version in integration tests	2022-09-20 13:44:50 +02:00
Rasmus Lerchedahl Petersen	318e3290f2	Python: use "extracted" instead of "source" The precedence for the use of "source" to denote elements of source code is found in `EssaVariable::getSourceVariable` as well as in the Ruby code base. But it clashes with the many uses of source to mean "source of flow" found in the data flow library.	2022-09-20 13:26:04 +02:00
Erik Krogh Kristensen	38b23f1bc1	Merge pull request #10471 from erik-krogh/tooRacy JS: filter out "file read after existence check" from js/file-system-race	2022-09-20 13:22:06 +02:00
Erik Krogh Kristensen	72d326126a	Merge pull request #10476 from erik-krogh/ruby-unqueryable ruby: remove unused predicate from NfaUtilsSpecific	2022-09-20 13:21:44 +02:00
Geoffrey White	3573dd6728	Swift: Address review comments.	2022-09-20 12:17:21 +01:00
Paolo Tranquilli	45fc1d5cdf	Swift: fix version in integration tests	2022-09-20 12:51:48 +02:00
Chris Smowton	f826342112	Merge pull request #6246 from Marcono1234/marcono1234/annotation-improvements Java: Improve and add predicates and classes for annotations	2022-09-20 11:48:29 +01:00
Rasmus Lerchedahl Petersen	9a7afa9d8d	Python: more idiomatic cartesian product	2022-09-20 12:47:56 +02:00
Erik Krogh Kristensen	91f9e89e95	Merge pull request #10405 from erik-krogh/styleGuide update the style guide on alert-messages	2022-09-20 12:13:32 +02:00
Erik Krogh Kristensen	cd71546915	Merge pull request #10475 from erik-krogh/go-unqueryable Go: Fix source/sanitizer class that were never used	2022-09-20 12:12:33 +02:00
Erik Krogh Kristensen	d1e662dff4	Merge pull request #10472 from erik-krogh/rename JS: don't mention classes that don't exist in TaintTracking.qll	2022-09-20 12:08:15 +02:00
Tony Torralba	4af29e6abf	Update java/ql/src/Security/CWE/CWE-094/TemplateInjection.qhelp Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>	2022-09-20 11:48:40 +02:00
Tony Torralba	4997f36f05	Apply suggestions from code review Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>	2022-09-20 11:48:18 +02:00
Chris Smowton	6b9d546eaf	Merge pull request #10457 from github/smowton/fix/java-really-unique-fixedHasLocation Java: really return a unique location for non-source entities	2022-09-20 10:46:45 +01:00
Mathias Vorreiter Pedersen	7c41219376	Merge pull request #10438 from MathiasVP/invalid-pointer-deref-query C++: Add a `cpp/invalid-pointer-deref` query to experimental	2022-09-20 10:41:31 +01:00
Chris Smowton	14fa6d4487	Avoid deprecated Annotation.getAValue	2022-09-20 10:15:23 +01:00
AlexDenisov	addab0964f	Merge pull request #10447 from github/alexdenisov/open-interception Swift: open(2) interception	2022-09-20 10:47:58 +02:00
Paolo Tranquilli	9d3039f2b1	Swift: trigger workflows on bazel changes The `.bazel` trigger currently matches * `.bazelrc` * `.bazelversion` * `WORKSPACE.bazel` * `BUILD.bazel` It will match `MODULE.bazel` as well when we add that.	2022-09-20 10:44:16 +02:00

1 2 3 4 5 ...

43778 Commits