codeql

mirror of https://github.com/github/codeql.git synced 2026-04-10 17:44:03 +02:00

Author	SHA1	Message	Date
Taus	30d61045d2	Python: Mention `nameIndicatesSensitiveData` Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2021-07-14 17:33:39 +02:00
Erik Krogh Kristensen	f462c9bb76	add taint through the `parseqs` library	2021-07-14 17:22:35 +02:00
Erik Krogh Kristensen	bec1818fc7	add taint through the `normalize-url` library	2021-07-14 17:15:14 +02:00
Erik Krogh Kristensen	86de10e6a1	simplify some implementations in `UriLibraries.qll`	2021-07-14 17:01:40 +02:00
Erik Krogh Kristensen	193ddfc771	add taint through the `qs` library	2021-07-14 16:56:51 +02:00
Aditya Sharad	e0a123cbd0	Merge pull request #6257 from github/rneatherway/summary-docs Add docs for summary type queries	2021-07-14 07:54:18 -07:00
Taus	2bb44d49d9	Python: Perform more deduplication This cut the evaluation time on `django` down from 1.2 seconds to ~0.8 seconds (but the impact will likely be greater on bigger projects).	2021-07-14 13:38:05 +00:00
Anders Schack-Mulligen	a0481bda91	Merge pull request #6282 from aschackmull/java/query-metadata2 Java: Add missing metadata.	2021-07-14 15:17:27 +02:00
edvraa	fd4d8e2595	Use HasFlow instead HasFlowPath	2021-07-14 16:06:34 +03:00
Anders Schack-Mulligen	11fc23ba09	Merge pull request #6030 from smowton/smowton/admin/test-generator Add test-generator script + add generated models for Spring summary steps	2021-07-14 14:44:07 +02:00
Anders Schack-Mulligen	9034b03c7b	Java: Add missing metadata.	2021-07-14 14:40:50 +02:00
Anders Schack-Mulligen	3a3398508c	Merge pull request #5895 from github/sauyon/java/spring Add models for some Spring pseudo-collections	2021-07-14 14:40:24 +02:00
Sauyon Lee	d7bfc2eebf	Remove redundant model lines	2021-07-14 05:05:17 -07:00
Sauyon Lee	671243c15d	Add change note	2021-07-14 05:05:17 -07:00
Sauyon Lee	1f97ac88c8	Fix tests	2021-07-14 05:05:17 -07:00
Sauyon Lee	eaef1c146c	Add generated tests	2021-07-14 05:05:16 -07:00
Sauyon Lee	16931e5de8	Add necessary stubs for Spring Co-Authored-By: smowton <smowton@github.com>	2021-07-14 04:57:56 -07:00
Sauyon Lee	fc7e062deb	Java: Add models for the Spring `cache` package	2021-07-14 04:57:56 -07:00
Sauyon Lee	d9fb09d132	Java: Add models for the Spring `ui` package.	2021-07-14 04:57:56 -07:00
Anders Schack-Mulligen	04244b3c45	Merge pull request #5974 from github/sauyon/java/spring-webmultipart Model Spring `web.multipart`	2021-07-14 13:57:24 +02:00
Anders Schack-Mulligen	3c4cd15738	Merge pull request #5505 from joefarebrother/android-sql-convert Java: Convert Android SQL-related flow steps to CSV format	2021-07-14 13:56:55 +02:00
Chris Smowton	e9390cb3eb	Remove superfluous conjunct	2021-07-14 12:42:28 +01:00
Taus	09993406f1	Python: Add explanatory QLDoc comment	2021-07-14 10:42:07 +00:00
Mathias Vorreiter Pedersen	0b21caa9ae	Merge pull request #6280 from MathiasVP/restrict-call-context-relation C++: Potentially improve performance of call-context calculation	2021-07-14 12:15:26 +02:00
Mathias Vorreiter Pedersen	1480ac7c1d	C++: Potentially improve performance by restricting the size of the call-context relation.	2021-07-14 11:23:56 +02:00
Robin Neatherway	c9e642fb06	Merge branch 'main' into rneatherway/summary-docs	2021-07-14 10:13:32 +01:00
Chris Smowton	3ae99b93ca	Merge pull request #6215 from aschackmull/java/fix-csv-subtype-interpretation Java: Fix CSV subtype interpretation	2021-07-14 09:57:21 +01:00
Anders Schack-Mulligen	0ccb213ec5	Dataflow: Sync.	2021-07-14 10:36:09 +02:00
Anders Schack-Mulligen	dbe1ca928b	Dataflow: Simplify call context checks.	2021-07-14 10:36:09 +02:00
Anders Schack-Mulligen	c95e78546c	Dataflow: Refactor	2021-07-14 10:36:09 +02:00
Erik Krogh Kristensen	73491d88da	use the new `.toUnicode` method in the Angular2 model	2021-07-14 10:19:48 +02:00
CodeQL CI	f6f7020388	Merge pull request #6250 from erik-krogh/python-redos-unicode Approved by RasmusWL	2021-07-14 01:09:26 -07:00
CodeQL CI	436168aa4f	Merge pull request #6267 from erik-krogh/read-pkg Approved by asgerf	2021-07-14 01:01:33 -07:00
ihsinme	4d3666692b	Update cpp/ql/src/experimental/Security/CWE/CWE-758/UndefinedOrImplementationDefinedBehavior.ql Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2021-07-14 10:17:53 +03:00
Anders Schack-Mulligen	8dc1f28c68	Merge pull request #6272 from hvitved/dataflow/flow-summary-impl-cached Data flow: Use cached predicates from DataFlowImplCommon in `FlowSummaryImpl.qll`	2021-07-14 09:12:23 +02:00
ihsinme	1e12ede9fa	Apply suggestions from code review Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2021-07-14 10:11:28 +03:00
${sleep,5}	51a6140258	Change variable name to correct sanitized input variable Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2021-07-13 14:04:06 -04:00
Geoffrey White	989633993b	C++: Increase the query precision.	2021-07-13 18:38:30 +01:00
Sauyon Lee	51211c0394	Add stubs	2021-07-13 10:29:02 -07:00
Sauyon Lee	c2c7fee8df	Fix tests	2021-07-13 10:29:02 -07:00
Sauyon Lee	b01e6d49fb	Add generated tests	2021-07-13 10:29:01 -07:00
Sauyon Lee	b807757863	Model Spring `web.multipart`	2021-07-13 10:29:01 -07:00
Geoffrey White	dd03828522	C++: Change note.	2021-07-13 18:08:34 +01:00
Robert Marsh	25dd29b24f	Merge pull request #6158 from MathiasVP/call-ctx-for-function-ptr-resolution C++: Resolve function pointer calls using call contexts	2021-07-13 10:00:44 -07:00
Geoffrey White	652f903457	C++: Add simple dataflow to the query.	2021-07-13 17:48:48 +01:00
Geoffrey White	7500d75b5b	C++: Fix some easy FPs.	2021-07-13 17:36:41 +01:00
Geoffrey White	133953303b	C++: More test cases.	2021-07-13 17:32:08 +01:00
Chris Smowton	1044049e72	Simplify getInput	2021-07-13 16:36:26 +01:00
Chris Smowton	98b85a481c	Improve inline-expectation style	2021-07-13 16:36:08 +01:00
Chris Smowton	a11021991a	Improve method documentation	2021-07-13 16:35:44 +01:00

... 18 19 20 21 22 ...

25515 Commits