codeql

mirror of https://github.com/github/codeql.git synced 2026-04-20 22:44:52 +02:00

Author	SHA1	Message	Date
Am	4fbf76008e	Update java/ql/src/experimental/Security/CWE/CWE-522-DecompressionBombs/DecompressionBomb.qhelp Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>	2024-07-13 10:20:25 +02:00
am0o0	dd4bce8e30	finilize tests	2024-07-09 19:48:58 +02:00
am0o0	7a5838f1a2	MethodAccess => MethodCall	2024-07-09 19:43:22 +02:00
am0o0	e87d2fe922	remove redundent imports	2024-07-09 19:41:06 +02:00
am0o0	fe1103d997	add stubs, upgrade test to inline test, update test files	2024-07-04 15:25:36 +02:00
am0o0	7df59ffe6c	update tests, is not completed yet :)	2024-07-01 18:22:27 +02:00
am0o0	a6833945c1	remove additional taint steps and flow states	2024-07-01 16:07:44 +02:00
am0o0	d31711bd89	merge all ne flow sources into one by extending current abstract class	2024-07-01 15:16:44 +02:00
am0o0	f1324a413a	update qlhelp	2024-07-01 15:09:56 +02:00
am0o0	02b0b402d6	remove useless predicate add missed FlowState	2024-05-12 19:29:37 +02:00
am0o0	484923e706	update test files	2024-05-12 18:21:17 +02:00
am0o0	be03e582c6	remove isBarrier	2024-05-12 18:17:47 +02:00
am0o0	9fffd7846a	remove empty predicates, fix FP for zipFile	2024-05-12 18:16:57 +02:00
am0o0	c9daf914cb	remove unused predicate	2024-05-12 14:09:55 +02:00
am0o0	3eb5778543	upgrade FlowState to new DecompressionState	2024-05-12 14:08:52 +02:00
am0o0	e23cbeda24	update to MethodCall	2024-05-12 13:54:21 +02:00
am0o0	4b68dd2315	add new additional taint steps, fix some comments	2024-05-12 13:51:08 +02:00
Am	9946e07f36	Merge branch 'github:main' into amammad-java-bombs	2024-05-12 13:17:02 +02:00
Erik Krogh Kristensen	0d814e0e20	Merge pull request #16220 from erik-krogh/domainAnc Go: Add an example specific to domain names in missing-regexp-anchor	2024-05-11 07:52:13 +02:00
Erik Krogh Kristensen	462e564c19	apply suggestion from code review Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>	2024-05-10 18:59:55 +02:00
Ian Lynagh	e7092b403b	Merge pull request #16401 from igfoo/igfoo/vars Java/Kotlin: Remove support for some deprecated environment variables	2024-05-10 13:37:55 +01:00
Erik Krogh Kristensen	bcddef8f32	Merge pull request #16131 from erik-krogh/cpp-path C++: Improve the cpp/path-injection qhelp	2024-05-09 22:21:51 +02:00
Owen Mansel-Chan	e721399eec	Merge pull request #16464 from owen-mc/go/fix-broken-test Go: Fix test expectations	2024-05-09 16:46:04 +01:00
Owen Mansel-Chan	674e65e134	Fix test expectations	2024-05-09 16:26:30 +01:00
Ian Lynagh	4d54c09a6f	Java: Add changenote for dropping support for some old variables	2024-05-09 15:59:47 +01:00
Ian Lynagh	b5d6bb9097	Kotlin: Remove unused var SEMMLE_PLATFORM_TOOLS	2024-05-09 15:59:47 +01:00
Ian Lynagh	cfc419b639	Kotlin: Remove unused ODASA_HOME variable	2024-05-09 15:59:47 +01:00
Ian Lynagh	304ad33837	Kotlin: Remove unused ODASA_TOOLS variable	2024-05-09 15:59:47 +01:00
Ian Lynagh	231918f612	Kotlin: Remove redundant variable ODASA_JAVA_LAYOUT	2024-05-09 15:59:47 +01:00
Owen Mansel-Chan	526204dc43	Merge pull request #16458 from owen-mc/go/fix-mad-for-builtin-functions Go: fix `hasQualifiedName` and models-as-data for built-in functions	2024-05-09 15:06:07 +01:00
Jeroen Ketema	4dfcdbccd7	Merge pull request #16459 from jketema/handler-fix C++: Fix destructor translation for handlers	2024-05-09 10:23:07 +02:00
Sarita Iyer	aab5da0435	Merge pull request #16320 from github/subatoi/deprecate-codeql-for-vs-code [8th May 2024] Add deprecation notices to CodeQL for VS Code documentation	2024-05-08 17:00:42 -04:00
Jeroen Ketema	9e09c5a6cf	C++: Fix copy and paste error in comment	2024-05-08 22:11:19 +02:00
Owen Mansel-Chan	279b2c7a95	Merge pull request #16457 from owen-mc/go/fix-implicitvarargsslice-type Go: Fix `getType` on `ImplicitVarArgsSlice`	2024-05-08 20:52:01 +01:00
erik-krogh	811c175556	add example for domain names with sub-domains to missing-regexp-anchor	2024-05-08 20:50:43 +02:00
erik-krogh	a51d24cbab	apply suggestions from code review, and the examples to the test	2024-05-08 19:34:50 +02:00
Jeroen Ketema	d68d2cca41	C++: Fix destructor translation for handlers	2024-05-08 19:26:56 +02:00
Jeroen Ketema	0cbedfb28c	Merge pull request #16455 from jketema/if-fix C++: Ensure destructors for ifs are called after both branches and for both if and constexpr if	2024-05-08 19:15:28 +02:00
Geoffrey White	49aba25852	Merge pull request #16445 from geoffw0/qhelp4 C++: Improve qhelp for DoubleFree.	2024-05-08 18:02:12 +01:00
Geoffrey White	53d4a10108	Update cpp/ql/src/Critical/DoubleFree.qhelp Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>	2024-05-08 17:15:08 +01:00
Mathias Vorreiter Pedersen	59fb9cc862	Merge pull request #16299 from MathiasVP/remove-base-address-as-ipa-key C++: Remove an unnecessary column	2024-05-08 16:43:30 +01:00
Owen Mansel-Chan	4f10cb5fa0	Local flow tests: do not list summary models This is so that when we don't change the test results every time we add a summary model for a built-in function.	2024-05-08 16:13:37 +01:00
Owen Mansel-Chan	57ff30c5f3	Update tests: built-in models now work	2024-05-08 16:07:02 +01:00
Owen Mansel-Chan	1ccea884ff	Add change note	2024-05-08 15:37:25 +01:00
Owen Mansel-Chan	f6f594e4b5	parse empty string as package name	2024-05-08 15:33:19 +01:00
Owen Mansel-Chan	fb74a2a170	Use "" in qualified name for entities without a package	2024-05-08 15:33:19 +01:00
Owen Mansel-Chan	4d42a88c3c	Add change note	2024-05-08 15:31:22 +01:00
Owen Mansel-Chan	9842445b52	Fix `getType` on `ImplicitVarArgsSlice` It was not defined for built-in functions or for functions called via a function variable.	2024-05-08 15:22:27 +01:00
Rasmus Wriedt Larsen	694b3b0fce	Merge pull request #16452 from RasmusWL/fix-warning misc: Fix docstring warning	2024-05-08 16:07:10 +02:00
Michael B. Gale	8cba06a25c	Merge pull request #16454 from github/mbg/go/fix/shadowed-variable	2024-05-08 14:13:18 +01:00

1 2 3 4 5 ...

66756 Commits