Mathias Vorreiter Pedersen
|
1280d43e36
|
Merge pull request #9141 from github/post-release-prep/codeql-cli-2.9.2
Post-release preparation for codeql-cli-2.9.2
|
2022-05-17 10:01:37 +01:00 |
|
Nick Rolfe
|
c518150b49
|
Merge pull request #9132 from github/nickrolfe/misspelling
QL for QL: generalise non-US spelling query
|
2022-05-16 16:03:36 +01:00 |
|
Anders Schack-Mulligen
|
83f817ca45
|
Merge pull request #9134 from aschackmull/dataflow/perf-std-order
Dataflow: Improve standard order through easier type check elimination.
|
2022-05-16 10:05:17 +02:00 |
|
github-actions[bot]
|
b7cbd8fd75
|
Post-release preparation for codeql-cli-2.9.2
|
2022-05-12 18:21:38 +00:00 |
|
Nick Rolfe
|
1115227f9d
|
Merge remote-tracking branch 'origin/main' into nickrolfe/misspelling
|
2022-05-12 16:10:27 +01:00 |
|
Nick Rolfe
|
2efa38aaa6
|
Python: fix typos in comments
|
2022-05-12 16:02:20 +01:00 |
|
Anders Schack-Mulligen
|
8c8440a58a
|
Merge pull request #9101 from hvitved/dataflow/include-hidden
Data flow: Add `Configuration::includeHiddenNodes()`
|
2022-05-12 15:36:12 +02:00 |
|
Joe Farebrother
|
59e400d2e0
|
Merge pull request #7723 from joefarebrother/redos
Java: Add ReDoS queries
|
2022-05-12 13:50:38 +01:00 |
|
Anders Schack-Mulligen
|
adb56dfa39
|
Dataflow: Improve standard order through easier type check elimination.
|
2022-05-12 14:31:38 +02:00 |
|
Rasmus Wriedt Larsen
|
7cd51d6147
|
Merge pull request #9126 from RasmusWL/moduleimport-with-dots
Python: Fully disallow `API::moduleImport` of module with dots
|
2022-05-12 14:16:25 +02:00 |
|
Rasmus Wriedt Larsen
|
3844c5b5c0
|
Python: Add change-note
|
2022-05-12 13:32:59 +02:00 |
|
Rasmus Wriedt Larsen
|
f8253f5fef
|
Python: Fully disallow API::moduleImport of module with dots
Inspired by discussion about this for MaD in
https://github.com/github/codeql/pull/8883#discussion_r865858084
|
2022-05-12 13:30:26 +02:00 |
|
Nick Rolfe
|
234a36ff61
|
Merge pull request #9119 from github/nickrolfe/non-us-spelling-fixes
Fix non-US spellings and the corresponding query
|
2022-05-12 12:29:14 +01:00 |
|
Mathias Vorreiter Pedersen
|
103c589c1d
|
Update python/ql/lib/change-notes/released/0.3.0.md
|
2022-05-12 11:47:19 +01:00 |
|
Mathias Vorreiter Pedersen
|
499878a44d
|
Update python/ql/lib/CHANGELOG.md
|
2022-05-12 11:47:08 +01:00 |
|
Mathias Vorreiter Pedersen
|
43265c4133
|
Update python/ql/lib/change-notes/released/0.3.0.md
|
2022-05-12 11:43:39 +01:00 |
|
Mathias Vorreiter Pedersen
|
b069d1bd17
|
Update python/ql/lib/CHANGELOG.md
|
2022-05-12 11:43:33 +01:00 |
|
github-actions[bot]
|
ee9980b31c
|
Release preparation for version 2.9.2
|
2022-05-12 10:17:28 +00:00 |
|
Tom Hvitved
|
46ab25b61e
|
Merge pull request #9098 from aschackmull/dataflow/perf
Dataflow: Performance fixes
|
2022-05-11 20:41:48 +02:00 |
|
Nick Rolfe
|
e1b277386a
|
Fix non-US spellings: s/analyse/analyze
|
2022-05-11 17:48:27 +01:00 |
|
Anders Schack-Mulligen
|
4884520ee1
|
Dataflow: Review fix.
|
2022-05-11 15:40:49 +02:00 |
|
Tom Hvitved
|
712fe002b9
|
Data flow: Sync files
|
2022-05-10 12:41:10 +02:00 |
|
yoff
|
6c3e2db7fd
|
Merge branch 'main' into python/simple-csrf
|
2022-05-10 10:55:28 +02:00 |
|
Anders Schack-Mulligen
|
f85e06c2e4
|
Dataflow: Sync.
|
2022-05-10 10:12:39 +02:00 |
|
yoff
|
b6605bc330
|
Merge pull request #8634 from RasmusWL/promote-xxe
Python: Promote XXE and XML-bomb queries
|
2022-05-09 21:54:55 +02:00 |
|
Rasmus Wriedt Larsen
|
4a6789182d
|
Python: Apply suggestions from code review
Co-authored-by: yoff <lerchedahl@gmail.com>
|
2022-05-09 16:37:12 +02:00 |
|
Anders Schack-Mulligen
|
f24364d951
|
Merge pull request #9045 from hvitved/dataflow/subpaths-perf-take2
Data flow: Speedup `subpaths` predicate (take 2)
|
2022-05-09 15:39:11 +02:00 |
|
Rasmus Wriedt Larsen
|
36349222a9
|
Python: Fix casing of XMLDomParsing
|
2022-05-09 11:00:25 +02:00 |
|
Rasmus Wriedt Larsen
|
f22bd039f3
|
Python: Slight refactor of LxmlParsing
|
2022-05-09 10:56:39 +02:00 |
|
Mathias Vorreiter Pedersen
|
176e40f139
|
Merge pull request #9052 from github/post-release-prep/codeql-cli-2.9.1
Post-release preparation for codeql-cli-2.9.1
|
2022-05-06 13:15:17 +01:00 |
|
github-actions[bot]
|
1a25457178
|
Post-release preparation for codeql-cli-2.9.1
|
2022-05-05 19:05:50 +00:00 |
|
yoff
|
6169ac6122
|
Merge pull request #7776 from RasmusWL/django-filefield-uploadto
Python: Support Django FileField.upload_to
|
2022-05-05 14:25:08 +02:00 |
|
Tom Hvitved
|
d9d5372f28
|
Data flow: Sync files
|
2022-05-05 13:36:26 +02:00 |
|
yoff
|
0c7184952b
|
Merge pull request #9023 from RasmusWL/positional-docs
Python: Clarify `getArg` is about positional arguments
|
2022-05-05 11:28:17 +02:00 |
|
Tom Hvitved
|
66a9759329
|
Merge pull request #8870 from hvitved/dataflow/expect-content
Data flow: Introduce `expectsContent`
|
2022-05-05 09:01:40 +02:00 |
|
Joe Farebrother
|
c1290d9e2b
|
Sync shared redos library files.
|
2022-05-04 15:41:38 +01:00 |
|
Joe Farebrother
|
0a5268aeb4
|
Sync shared library changes across languages.
|
2022-05-04 15:41:38 +01:00 |
|
Tom Hvitved
|
8e33653d25
|
Merge pull request #9017 from hvitved/dataflow/subpaths-perf
Data flow: Speedup `subpaths` predicate
|
2022-05-04 16:37:52 +02:00 |
|
Tom Hvitved
|
9cb63c0a5e
|
Data flow: Sync files
|
2022-05-04 14:49:26 +02:00 |
|
Tom Hvitved
|
74e99302d6
|
Address review comments
|
2022-05-04 09:57:59 +02:00 |
|
Tom Hvitved
|
da72ba46d4
|
Data flow: Add stub expectsContent for all languages
|
2022-05-04 09:57:59 +02:00 |
|
Tom Hvitved
|
6e2e8440eb
|
Data flow: Sync files
|
2022-05-04 09:57:59 +02:00 |
|
Rasmus Wriedt Larsen
|
d012eaa892
|
Python: Clarify getArg is about positional arguments
|
2022-05-03 14:26:23 +02:00 |
|
yoff
|
56ed68b3eb
|
Merge pull request #9001 from RasmusWL/files-refactoring
Python: Flask: Improve `request.files` modeing
|
2022-05-03 12:19:55 +02:00 |
|
Tom Hvitved
|
e9c8f979f9
|
Data flow: Sync files
|
2022-05-03 11:46:51 +02:00 |
|
Rasmus Wriedt Larsen
|
7e1be3172e
|
Python: Add change-note
|
2022-05-02 14:24:13 +02:00 |
|
Rasmus Wriedt Larsen
|
de4390cdf6
|
Python: Improve Flask request.files handling even more
|
2022-05-02 14:19:45 +02:00 |
|
Rasmus Wriedt Larsen
|
fb0133d276
|
Python: Fix Flask request.files modeling
|
2022-05-02 14:14:58 +02:00 |
|
yoff
|
1d44694280
|
Merge pull request #8732 from RasmusWL/dataflow-imports
Python: Don't re-export `python` under `DataFlow::`
|
2022-05-02 12:08:28 +02:00 |
|
Taus
|
231def026f
|
Merge pull request #8890 from tausbn/python-add-global-attribute-writes
Python: Add support for global attribute writes
|
2022-05-02 12:03:41 +02:00 |
|