codeql

mirror of https://github.com/github/codeql.git synced 2026-04-18 05:24:01 +02:00

Author	SHA1	Message	Date
Anders Schack-Mulligen	d0b7ffda70	Python/Ruby/Swift: Rename references.	2023-03-23 13:06:19 +01:00
Geoffrey White	a4e9d38abb	Swift: Fix the test regression.	2023-03-22 16:44:29 +00:00
Paolo Tranquilli	a131966066	Swift: make `SuccessfullyExtractedFiles.ql` more precise This is done by adding a `isSuccessfullyExtracted` predicate that is filled for primary files at the very end of the extractor invocation if the frontend was performed successfully. If for example the extractor crashes this will therefore not be filled. The upgrade script is written so that `SuccessfullyExtractedFiles.ql` on an upgraded script will give exactly the same results as before it.	2023-03-20 08:34:34 +01:00
Alex Denisov	7c15527300	Swift: add a query showing successfully extracted files	2023-03-17 11:27:03 +01:00
Geoffrey White	7bd0f53df9	Swift: Update swift/summary/summary-statistics to DataFlow::ConfigSig.	2023-03-10 14:39:03 +00:00
Geoffrey White	7f06109a4f	Swift: Add detail to the swift/summary/summary-statistics query.	2023-03-10 13:20:25 +00:00
Geoffrey White	9aaf30691c	Merge pull request #12307 from geoffw0/stringconflationtaint Swift: Update swift/string-length-conflation to taint tracking	2023-03-03 17:27:15 +00:00
Geoffrey White	c21ec1c3f5	Swift: Standardize the taint sources, sinks, sanitizers.	2023-02-27 23:01:04 +00:00
Geoffrey White	6928e62d8b	Swift: Split the three sensitive exprs queries into separate QL and QLL files.	2023-02-27 23:01:04 +00:00
Geoffrey White	cb8f5979d1	Swift: Update swift/string-length-conflation to taint tracking and remove a special case that's now covered by taint.	2023-02-20 18:18:15 +00:00
Geoffrey White	ee442e4d4b	Merge pull request #11979 from geoffw0/modern1 Swift: Modernize injection queries	2023-01-31 10:54:35 +00:00
Nora Dimitrijević	9346f4d760	Swift: fix failing tests	2023-01-30 11:39:06 +01:00
Geoffrey White	794ba428a7	Merge pull request #11942 from geoffw0/rncrypt4 Swift: add RNCryptor sinks to swift/static-initialization-vector	2023-01-27 14:33:06 +00:00
Geoffrey White	e92a5eb467	Merge pull request #11911 from geoffw0/rncrypt2 Swift: Add RNCryptor sinks to swift/hardcoded-key	2023-01-25 15:11:16 +00:00
Geoffrey White	f6fe627f4b	Merge pull request #11914 from geoffw0/rncrypt3 Swift: Add RNCryptor sinks to swift/constant-salt	2023-01-25 13:05:33 +00:00
Geoffrey White	13d308a4d6	Swift: Autoformat.	2023-01-24 19:15:51 +00:00
Geoffrey White	6a946f6eed	Swift: Modernize.	2023-01-24 17:26:51 +00:00
Geoffrey White	cbfa7e7252	Swift: Move query logic into .qlls.	2023-01-24 15:04:10 +00:00
Geoffrey White	f05be77a0b	Swift: Recognize more array sources.	2023-01-20 15:25:00 +00:00
Geoffrey White	7648e8f6a3	Swift: Recognize more sources.	2023-01-20 15:08:12 +00:00
Geoffrey White	581c478872	Swift: Model RNCryptor.	2023-01-20 14:50:23 +00:00
Geoffrey White	5d6f2436e4	Merge branch 'main' into coredata	2023-01-18 13:39:02 +00:00
Geoffrey White	71c1ca53a9	Merge branch 'main' into rncrypt	2023-01-18 11:09:09 +00:00
Geoffrey White	b3d30bfc4f	Swift: Add NumberLiteral sources as well.	2023-01-17 18:04:26 +00:00
Geoffrey White	d1cfdb97ee	Swift: Model RNCryptor.	2023-01-17 17:55:52 +00:00
Geoffrey White	9911dd53e1	Merge branch 'main' into coredata	2023-01-17 16:22:53 +00:00
Geoffrey White	ea06ad1933	Merge pull request #11529 from geoffw0/format Swift: Uncontrolled format string query	2023-01-17 16:16:10 +00:00
Geoffrey White	3c55cdd5be	Swift: Catch the last two test results as well.	2023-01-17 16:04:58 +00:00
Geoffrey White	d42848bb7e	Swift: Upgrade the query from dataflow to taint tracking, so as to support more flows.	2023-01-17 16:04:58 +00:00
Geoffrey White	28a707a956	Swift: Model RNCryptor.	2023-01-17 16:04:58 +00:00
Geoffrey White	74a37475db	Swift: Model RNCryptor.	2023-01-17 11:54:12 +00:00
Tony Torralba	bd5619147d	Merge pull request #11590 from atorralba/atorralba/swift/sensitive-info-logs Swift: Add Cleartext Logging query	2023-01-16 16:22:20 +01:00
Tony Torralba	0017461e2d	Update swift/ql/src/queries/Security/CWE-312/CleartextLogging.ql Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>	2023-01-16 15:35:58 +01:00
Tony Torralba	fdb3b65bce	Apply suggestions from code review Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>	2023-01-16 11:57:37 +01:00
Geoffrey White	994ea704da	Swift: Clean up the QL a little.	2023-01-12 09:31:48 +00:00
Geoffrey White	6a0b56bf40	Swift: Fix for extensions.	2023-01-11 18:32:07 +00:00
Geoffrey White	2622de9747	Swift: Improve Core Data coverage.	2023-01-11 18:26:34 +00:00
Pierre	c3116b3f0f	Merge branch 'main' into turbo/experimental/combined	2023-01-11 18:02:55 +01:00
Tony Torralba	a4f813183e	Merge pull request #11785 from atorralba/atorralba/swift/grdb-sinks Swift: Add sinks for the GRDB library	2023-01-11 11:49:37 +01:00
Tony Torralba	50cd40ed20	Swift: Remove omittable exists variables	2023-01-10 13:39:50 +01:00
Tony Torralba	160d89fb4e	Add qhelp examples	2023-01-09 18:01:07 +01:00
Tony Torralba	aad56097ac	Add Cleartext Loggin query for Swift. With some caveats: see TODO comments and failing tests.	2023-01-09 18:01:07 +01:00
Mathias Vorreiter Pedersen	9be9636816	Merge pull request #11670 from atorralba/atorralba/swift/predicate-injection Swift: Add predicate injection query	2023-01-09 08:54:13 +00:00
Geoffrey White	e5a74cb29c	Swift: Add a reference for swift/hardcoded-key.	2023-01-03 17:27:31 +00:00
Geoffrey White	e05bb7fcee	Merge branch 'main' into format	2023-01-03 15:14:55 +00:00
Tony Torralba	4215a89bc8	Add cleartext storage database sinks	2022-12-23 17:15:59 +01:00
Tony Torralba	ac39aeb6b6	Add SQLi sinks	2022-12-23 17:03:31 +01:00
Mathias Vorreiter Pedersen	b330b628e3	Merge pull request #11595 from d10c/swift/extract-mainactor Swift: MethodRefExpr -> MethodLookupExpr	2022-12-22 10:22:33 +00:00
Arthur Baars	7111d950c1	Swift: add AlertSuppression.ql	2022-12-21 13:15:26 +01:00
Nora Dimitrijević	fbb14797b1	Merge branch 'main' into swift/extract-mainactor	2022-12-20 23:20:37 -05:00

1 2 3 4 5 ...

318 Commits