Max Schaefer
|
4fc27aaa51
|
Merge branch 'master' into pseudo-random-bytes
|
2018-12-12 08:19:57 +00:00 |
|
semmle-qlci
|
06dd5f3616
|
Merge pull request #656 from xiemaisi/js/unused-local-underscore
Approved by esben-semmle
|
2018-12-12 08:11:37 +00:00 |
|
semmle-qlci
|
9df5d4b0c2
|
Merge pull request #660 from esben-semmle/js/angularjs-alert-locations
Approved by xiemaisi
|
2018-12-12 08:05:19 +00:00 |
|
yh-semmle
|
14488cb62e
|
Merge pull request #652 from aschackmull/java/constant-loop-cond-alert-pos
Java: Change alert location for ConstantLoopCondition.
|
2018-12-11 21:26:14 -05:00 |
|
Esben Sparre Andreasen
|
fac638ffab
|
JS: improve alert location of js/angular/unused-dependency
|
2018-12-11 21:47:08 +01:00 |
|
Esben Sparre Andreasen
|
b5bbf990b0
|
JS: improve alert location of js/angular/repeated-dependency-injection
|
2018-12-11 21:47:08 +01:00 |
|
Esben Sparre Andreasen
|
5acd1ca26d
|
JS: improve alert location of js/angular/duplicate-dependency
|
2018-12-11 21:47:08 +01:00 |
|
Robert Marsh
|
98005edd9d
|
Merge pull request #641 from geoffw0/exprnoeffect2
CPP: More tests of isSideEffectFree() / ExprHasNoEffect.ql
|
2018-12-11 12:17:30 -08:00 |
|
Asger F
|
a01a9dc5cc
|
JS: add crypto.pseudoRandomBytes as source in InsecureRandomness.ql
|
2018-12-11 16:06:22 +00:00 |
|
Max Schaefer
|
4d186e0edc
|
JavaScript: Teach Unused{Variable,Parameter} to ignore variables with leading underscore.
|
2018-12-11 08:50:50 +00:00 |
|
Jonas Jensen
|
a4b3b1e8c8
|
Merge pull request #653 from geoffw0/ex-ch-notes
CPP: Additional change notes (for 1.20)
|
2018-12-10 16:59:12 +01:00 |
|
Geoffrey White
|
709fd6382a
|
CPP: Change note for #562.
|
2018-12-10 13:51:15 +00:00 |
|
Geoffrey White
|
6b7337d766
|
CPP: Change note for #540.
|
2018-12-10 13:42:17 +00:00 |
|
Jonas Jensen
|
1f7383498a
|
Merge pull request #644 from geoffw0/pointerscaling
CPP: Fix type confusion in IncorrectPointerscaling.ql
|
2018-12-10 14:22:10 +01:00 |
|
Anders Schack-Mulligen
|
bfc7fb7c8a
|
Java: Change alert location for ConstantLoopCondition.
|
2018-12-10 12:37:11 +00:00 |
|
Felicity Chapman
|
6ef16bb728
|
Merge pull request #649 from jf205/qhelp-guide
Query help style guide: editorial review
|
2018-12-10 10:59:48 +00:00 |
|
james
|
41f5d65e0c
|
remove hyphen from title and update some links
|
2018-12-10 09:13:33 +00:00 |
|
yh-semmle
|
ba4fa0a246
|
Merge pull request #643 from aschackmull/java/nullguard-isblank
Java: Add org.apache.commons.lang3.StringUtils.isBlank as a nullguard.
|
2018-12-07 15:31:58 -05:00 |
|
Geoffrey White
|
9857a85817
|
CPP: Fix similar queries.
|
2018-12-07 18:43:28 +00:00 |
|
Geoffrey White
|
d3c6d83786
|
CPP: Change note.
|
2018-12-07 18:43:27 +00:00 |
|
Geoffrey White
|
0f268cac40
|
CPP: Fix the issue.
|
2018-12-07 18:43:27 +00:00 |
|
Geoffrey White
|
02a060fbfa
|
CPP: Add a test.
|
2018-12-07 18:21:48 +00:00 |
|
calumgrant
|
67d4099e3f
|
Merge pull request #593 from hvitved/csharp/nullness
C#: Rewrite nullness queries
|
2018-12-07 15:57:27 +00:00 |
|
Geoffrey White
|
91578258f7
|
Merge pull request #595 from jf205/qhelp-guide
Query help style-guide
|
2018-12-07 15:38:58 +00:00 |
|
Anders Schack-Mulligen
|
f09eb67af0
|
Java: Add org.apache.commons.lang3.StringUtils.isBlank as a nullguard.
|
2018-12-07 16:18:32 +01:00 |
|
Geoffrey White
|
e7390f3ea5
|
CPP: Add simple tests of CommaExpr.
|
2018-12-07 14:29:09 +00:00 |
|
Tom Hvitved
|
2a30dee8df
|
Merge pull request #621 from calumgrant/cs/invalid-key
C#: Fix [INVALID_KEY] error
|
2018-12-07 11:24:45 +01:00 |
|
Geoffrey White
|
b1e7649d02
|
CPP: Add functions containing errors to the sideEffects tests.
|
2018-12-07 09:54:36 +00:00 |
|
Tom Hvitved
|
fce805834e
|
C#: Address review comments
|
2018-12-07 09:40:49 +01:00 |
|
semmle-qlci
|
9e73ed71b9
|
Merge pull request #623 from esben-semmle/js/incomplete-url-sanitization
Approved by mc-semmle
|
2018-12-06 20:46:37 +00:00 |
|
yh-semmle
|
c2116f0d91
|
Merge pull request #560 from aschackmull/java/normalize-parentheses
Java: Normalize parentheses.
|
2018-12-06 12:38:26 -05:00 |
|
Esben Sparre Andreasen
|
4f53411397
|
JS: recognize HTTP URLs in js/incomplete-url-sanitization
|
2018-12-06 15:53:20 +01:00 |
|
Esben Sparre Andreasen
|
56fb63adbc
|
JS: change notes for js/incomplete-url-substring-sanitization
|
2018-12-06 15:53:20 +01:00 |
|
Esben Sparre Andreasen
|
229eea00dc
|
JS: add query js/incomplete-url-substring-sanitization
|
2018-12-06 15:53:20 +01:00 |
|
semmle-qlci
|
3397533045
|
Merge pull request #628 from xiemaisi/js/setUnsafeHTML
Approved by esben-semmle
|
2018-12-06 13:58:52 +00:00 |
|
Jonas Jensen
|
0a496c1d3d
|
Merge pull request #617 from geoffw0/unusedstatic
CPP: Fix false positives in UnusedStaticVariables.ql
|
2018-12-06 14:09:52 +01:00 |
|
Max Schaefer
|
ef347b3870
|
JavaScript: Teach Xss query about WinJS HTML injection functions.
|
2018-12-06 09:13:21 +00:00 |
|
Max Schaefer
|
75842fec1c
|
Merge pull request #627 from samlanning/inconsistentStateExample
JS: Fix syntax error in js/react/inconsistent-state-update example
|
2018-12-06 08:03:32 +00:00 |
|
Sam Lanning
|
2ea148016c
|
JS: Fix syntax error in js/react/inconsistent-state-update example
|
2018-12-05 16:44:40 -08:00 |
|
calum
|
919d7cbf01
|
C#: Fix [INVALID_KEY] errors.
|
2018-12-05 13:55:55 +00:00 |
|
Geoffrey White
|
f6a87574f0
|
CPP: Add query ID to change note.
|
2018-12-05 13:55:46 +00:00 |
|
Geoffrey White
|
d0a0d2300e
|
CPP: Change note.
|
2018-12-05 10:03:21 +00:00 |
|
Geoffrey White
|
d85f4b540c
|
CPP: Fix false positive.
|
2018-12-05 10:01:54 +00:00 |
|
Geoffrey White
|
e7f19e97cb
|
CPP: Add a test of UnusedStaticVariable.ql.
|
2018-12-05 10:01:54 +00:00 |
|
Max Schaefer
|
3c00d4be6d
|
Merge pull request #607 from esben-semmle/js/more-react-methods
JS: model additional React component methods
|
2018-12-05 08:00:16 +00:00 |
|
yh-semmle
|
00779c518c
|
Merge pull request #611 from aschackmull/java/usessl-fp-fix
Java: Fix FP in `UseSSL.ql`.
|
2018-12-04 19:31:53 -05:00 |
|
Esben Sparre Andreasen
|
d63d838534
|
JS: add regression test for ODASA-7506
|
2018-12-04 22:22:46 +01:00 |
|
Anders Schack-Mulligen
|
d3fcfb0957
|
Java: Fix FP in UseSSL.
|
2018-12-04 17:44:05 +01:00 |
|
semmle-qlci
|
d05b11f00d
|
Merge pull request #587 from asger-semmle/incorrect-suffix-check
Approved by mc-semmle, xiemaisi
|
2018-12-04 16:18:42 +00:00 |
|
yh-semmle
|
0ba7633e4d
|
Merge pull request #553 from aschackmull/java/double-checked-locking
Java: Add two double-checked-locking queries.
|
2018-12-04 10:23:46 -05:00 |
|