hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-24 00:16:49 +01:00
Code Issues Packages Projects Releases Wiki Activity
98 Commits 1,714 Branches 163 Tags
5456ffb64cae3fcea9746ce107f56cd7ba6633b1
Commit Graph

98 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Julian Tibble
5456ffb64c JS: fix typo in qhelp (parameter type confusion) 2018-08-14 13:07:20 +01:00
Geoffrey White
58a2639518 Merge pull request #53 from pavgust/imp/no-macro-getenclosingelement 
Element::getEnclosingElement: Skip macro information.
 2018-08-14 09:43:23 +01:00
Max Schaefer
9de527fbe2 Merge pull request #49 from asger-semmle/array-map-taint 
JavaScript: add taint steps through Array 'join' and 'map' methods
 2018-08-14 08:07:54 +01:00
Max Schaefer
8a98e3cc56 Merge pull request #50 from xiemaisi/js/node-detector-test-output 
JavaScript: Update expected test output due to changes in Node.js detector.
 2018-08-14 08:07:33 +01:00
Pavel Avgustinov
64338b0581 Element::getEnclosingElement: Skip macro information. 
Previously, we would try to find an element enclosing each macro
access. This is not in general well-defined, especially in the
context of template instantiations -- macros are a lexing-time
concept, and don't map cleanly onto AST elements.
 2018-08-13 22:16:49 +01:00
Tom Hvitved
9d2dd97f18 Merge pull request #51 from calumgrant/cs/lgtm-query-suites-submodule 
C#: Move query suite files into submodule
 2018-08-13 17:21:58 +02:00
calum
9d010775b8 C#: Move query suite files into submodule. 2018-08-13 15:03:37 +01:00
Max Schaefer
e67f36732a JavaScript: Update expected test output due to changes in Node.js detector. 2018-08-13 14:08:14 +01:00
Asger F
587e0f9175 JavaScript: add change note 2018-08-13 13:11:01 +01:00
Asger F
d9ba5a1cab JavaScript: add test cases for new array steps 2018-08-13 12:27:12 +01:00
Asger F
66dcd7d4c7 JavaScript: add taint step from return value of 'map' callback 2018-08-13 12:15:24 +01:00
Asger F
0c124d2f8c JavaScript: add taint step through 'join' 2018-08-13 12:12:25 +01:00
semmle-qlci
c0fe0a1d24 Merge pull request #46 from asger-semmle/html-sanitizers 
Approved by xiemaisi
 2018-08-13 10:16:15 +01:00
semmle-qlci
3d0748c542 Merge pull request #48 from xiemaisi/js/webview-sinks 
Approved by asger-semmle
 2018-08-13 09:37:33 +01:00
Max Schaefer
14f14c1f6c JavaScript: Add change note. 2018-08-10 15:59:28 +01:00
Max Schaefer
199990feea JavaScript: Add WebView-related taint sinks for CodeInjection, DomBasedXss and ServerSideUrlRedirect. 2018-08-10 15:59:27 +01:00
Max Schaefer
3ce82aff02 JavaScript: Add basic modelling of React Native WebViews. 2018-08-10 15:59:27 +01:00
semmle-qlci
945413a791 Merge pull request #42 from tibbes/qhelp/fix-links 
Approved by jbj, xiemaisi
 2018-08-10 13:00:17 +01:00
semmle-qlci
2478c6e150 Merge pull request #43 from xiemaisi/js/odasa-7275 
Approved by
 2018-08-10 12:52:05 +01:00
Asger F
8074786af4 JavaScript: Add change note HTMLSanitizers 2018-08-10 12:36:55 +01:00
Asger F
1add8b0766 JavaScript: add doc comment 2018-08-10 12:27:39 +01:00
Asger Feldthaus
2b5684d1b9 JavaScript: Add library for HTML sanitizers 2018-08-10 12:27:39 +01:00
semmle-qlci
bbee9a860b Merge pull request #38 from jbj/ir-Instruction-hasUse 
Approved by dave-bartolomeo
 2018-08-10 12:03:26 +01:00
Max Schaefer
acbe7542cc Merge pull request #44 from asger-semmle/extend-change-note 
JavaScript: Add change note for Extend.qll
 2018-08-10 11:14:48 +01:00
Pavel Avgustinov
f1d42ed01c Merge pull request #45 from nickrolfe/codeowners 
add CODEOWNERS file
 2018-08-10 10:17:08 +01:00
Nick Rolfe
d2d6389266 add CODEOWNERS file 2018-08-10 10:08:46 +01:00
Asger Feldthaus
9a7da817b4 Add change note for Extend.qll 2018-08-10 09:56:35 +01:00
Julian Tibble
98e866e967 C++, JS: fix broken links in query help 2018-08-10 08:40:22 +01:00
Max Schaefer
18fd386bb4 Merge pull request #39 from asger-semmle/nodejslib-imports 
JavaScript: Use 'moduleMember' in NodeJSLib.qll for ES6-compatibility
 2018-08-10 08:21:01 +01:00
Max Schaefer
33af6b8131 Merge pull request #33 from jbj/lgtm-suites-submodule 
C++: Move LGTM suites to submodule
 2018-08-10 08:13:08 +01:00
Jonas Jensen
c92111d552 C++: Accept test changes: IR sanity query added 2018-08-10 09:04:52 +02:00
semmle-qlci
2b5a562ecd Merge pull request #37 from tibbes/cs/test-class-naming 
Approved by hvitved
 2018-08-09 17:30:39 +01:00
Asger F
b00938e9b3 Make NodeJSLib use moduleMember for ES6-compatibility 2018-08-09 15:10:21 +01:00
Jonas Jensen
961a7dcf15 C++ IR: Remove Instruction.hasUse predicate 
Now that it's been simplified to be the same as `getOperand`, it doesn't
seem to have a purpose.
 2018-08-09 15:36:52 +02:00
Jonas Jensen
8c06a68835 C++ IR: Remove redundant check for same function 
The check that an instruction is in the same function as its operands is
hopefully redundant and can be removed. Just to be sure, I've added the
check to a sanity query.

This check turned out to cause bad performance in the alias analysis
because it got inlined into `AliasAnalysis::resultEscapes` and then
pulled out to a loop-invariant predicate that got a bad join order. With
this check removed, the `ssa/AliasAnalysis.qll` file is orders of
magnitude faster.
 2018-08-09 15:36:52 +02:00
Max Schaefer
e32dc08cd0 Merge pull request #31 from esben-semmle/js/fewer-alerts-for-incomplete-object-initialization 
JS: change alert location for js/incomplete-object-initialization
 2018-08-09 13:58:11 +01:00
Max Schaefer
41da997651 JavaScript: Teach IncompleteSanitization to recognize incomplete URL {en,de}coding. 2018-08-09 12:44:16 +01:00
Jonas Jensen
5c4292932f C++: Move LGTM suites to submodule 
This follows what's been done for JavaScript. The `cpp-alerts-lgtm`
suite is now empty and will be auto-generated when building a dist.

This commit has no effect in itself, but these files need to be in place
when the corresponding changes are made in Semmle/code.
 2018-08-09 10:35:05 +02:00
Max Schaefer
badb167962 Merge pull request #35 from esben-semmle/js/classify-application-insight 
JS: classify the ApplicationInsights library instance
 2018-08-09 08:12:12 +01:00
Julian Tibble
bb9ce0e1fd C#: fix inconsistent type/constructor name 
The code sample for the self-assignment query help had a different name
for the class and it's (intended) constructor, so was invalid.
 2018-08-08 22:42:06 +01:00
Max Schaefer
0de9eed71c Merge pull request #32 from asger-semmle/export-import-flow 
TypeScript: bugfixes for import-assign statement
 2018-08-08 16:35:43 +01:00
Esben Sparre Andreasen
2589cf70c9 JS: classify the ApplicationInsights library instance 2018-08-08 15:39:22 +02:00
Max Schaefer
355302eac4 Merge pull request #29 from esben-semmle/js/fixup-angularjs-filter-argument-index 
JS: fix an off-by-one error in the AngularJS expression AST
 2018-08-08 14:03:55 +01:00
Max Schaefer
854dc0cbeb Merge pull request #28 from esben-semmle/js/whitelist-empty-functions 
JS: permit some calls with spurious arguments to empty functions
 2018-08-08 14:03:18 +01:00
Asger F
94bac1253d TypeScript: bugfixes for import-assign statement 2018-08-08 12:02:28 +01:00
Esben Sparre Andreasen
8ee943f264 JS: restrict alert location to a single line 2018-08-08 10:50:42 +02:00
Esben Sparre Andreasen
e1947f04df JS: change alert location for js/incomplete-object-initialization 2018-08-08 10:43:52 +02:00
Esben Sparre Andreasen
4e98ce21b4 JS: permit some calls with spurious arguments to empty functions 2018-08-08 10:13:02 +02:00
Max Schaefer
1a5585c83c Merge pull request #21 from esben-semmle/js/urilibraries-members 
JS: refactor UriLibraries.qll models to use `DataFlow::moduleMember`
 2018-08-08 09:08:04 +01:00
Esben Sparre Andreasen
343b922c29 JS: fix an off-by-one error in the AngularJS expression AST 2018-08-08 09:58:57 +02:00