hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-20 00:43:44 +01:00
Code Issues Packages Projects Releases Wiki Activity
79,120 Commits 1,693 Branches 160 Tags
579cf4a65a6a65be7c94ea7442e475b465bc329f
Commit Graph

79120 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Taus
579cf4a65a Merge pull request #19424 from github/tausbn/python-extract-hidden-file-by-default 
Python: Extract files in hidden dirs by default
 2025-05-16 14:43:47 +02:00
Mathias Vorreiter Pedersen
cadcb202e2 Merge pull request #19500 from MathiasVP/always-apply-manual-models-when-resolving-calls 
C++: Update static call target resolution semantics in dataflow
 2025-05-16 13:28:01 +01:00
Mathias Vorreiter Pedersen
ffc1c6264e Merge pull request #19498 from MathiasVP/exclude-test-directories 
C++: Exclude tests in model generation
 2025-05-16 13:02:51 +01:00
Taus
9ee3e4cdf3 Python: Update change note 
Co-authored-by: yoff <yoff@github.com>
 2025-05-16 13:50:22 +02:00
Michael Nebel
5e72b8bbed Merge pull request #19497 from michaelnebel/csharp/gethashcode 
C#: Improve the query `cs/gethashcode-is-not-defined`.
 2025-05-16 12:37:41 +02:00
Napalys Klicius
f6a8909bfe Merge pull request #19356 from Napalys/js/merge_classes 
JS: Merge `ES6Class` to `FunctionStyleClass`
 2025-05-16 10:31:33 +02:00
Tom Hvitved
40624b21f8 Merge pull request #19503 from hvitved/rust/fix-semantic-merge-conflict 
Rust: Fix semantic merge conflict
 2025-05-16 09:17:53 +02:00
Tom Hvitved
8521becbd5 Rust: Fix semantic merge conflict 2025-05-15 20:53:35 +02:00
Mathias Vorreiter Pedersen
d31ddad832 C++: Small refactoring. 2025-05-15 18:04:57 +01:00
Nora Dimitrijević
8a1987ab71 Merge pull request #19448 from d10c/d10c/ruby-printast-order-fix 
Ruby printAst: fix order for synth children of real parents
 2025-05-15 18:17:01 +02:00
Taus
2158eaa34c Python: Fix a bug in glob regex creation 
The previous version was tested on a version of the code where we had
temporarily removed the `glob.strip("/")` bit, and so the bug didn't
trigger then.

We now correctly remember if the glob ends in `/`, and add an extra part
in that case. This way, if the path ends with multiple slashes, they
effectively get consolidated into a single one, which results in the
correct semantics.
 2025-05-15 15:34:11 +00:00
Aditya Sharad
f814849154 Merge pull request #19427 from felickz/unpinned-actions-tags-docs 
Adding comprehensive docs for customizing `actions/unpinned-tag` query
 2025-05-15 20:29:58 +05:30
Taus
c8cca126a1 Python: Bump extractor version 2025-05-15 14:59:33 +00:00
Taus
72ae633a64 Python: Update change note and extractor config 
Removes the previously added extractor option and updates the change
note to explain how to use `paths-ignore` to exclude files in hidden
directories.
 2025-05-15 14:58:32 +00:00
Taus
96558b53b8 Python: Update test 
The second test case now sets the `paths-ignore` setting in the config
file in order to skip files in hidden directories.
 2025-05-15 14:53:15 +00:00
Taus
98388be25c Python: Remove special casing of hidden files 
If it is necessary to exclude hidden files, then adding
```
paths-ignore: ['**/.*/**']
```
to the relevant config file is recommended instead.
 2025-05-15 14:49:17 +00:00
Taus
61719cf448 Python: Fix a bug in glob conversion 
If you have a filter like `**/foo/**` set in the `paths-ignore` bit of
your config file, then currently the following happens:

- First, the CodeQL CLI observes that this string ends in `/**` and
  strips off the `**` leaving `**/foo/`
- Then the Python extractor strips off leading and trailing `/`
  characters and proceeds to convert `**/foo` into a regex that is
  matched against files to (potentially) extract.

The trouble with this is that it leaves us unable to distinguish
between, say, a file `foo.py` and a file `foo/bar.py`. In other words,
we have lost the ability to exclude only the _folder_ `foo` and not any
files that happen to start with `foo`.

To fix this, we instead make a note of whether the glob ends in a
forward slash or not, and adjust the regex correspondingly.
 2025-05-15 14:48:06 +00:00
Mathias Vorreiter Pedersen
e75dcd27f5 C++: Accept test changes. 2025-05-15 15:28:13 +01:00
Mathias Vorreiter Pedersen
69a1a87aa4 C++: Update semantics of picking the static call target in dataflow. 2025-05-15 15:25:29 +01:00
Mathias Vorreiter Pedersen
c6df9505c0 C++: Add tests to exercise the upcoming behavior of function dispatch when there are model-generated summaries AND source definitions. 2025-05-15 15:05:17 +01:00
Tom Hvitved
60cc63f4d4 Merge pull request #19474 from hvitved/rust/builtins-resolution 
Rust: Type inference and path resolution for builtins
 2025-05-15 15:22:32 +02:00
Mathias Vorreiter Pedersen
e80c3b5c0b C++: Exclude tests (by matching paths) in model generation. 2025-05-15 13:24:32 +01:00
Michael Nebel
4d7901573a C#: Add change note. 2025-05-15 14:07:50 +02:00
Michael Nebel
3080dfafb6 C#: Update test expected output. 2025-05-15 14:04:40 +02:00
Michael Nebel
72d3814e08 C#: Include dictionary indexers and more methods in cs/gethashcode-is-not-defined. 2025-05-15 14:03:22 +02:00
Michael Nebel
4b2d323cb6 C#: Add some more test cases. 2025-05-15 13:48:51 +02:00
Michael Nebel
2c5d85e186 C#: Convert cs/gethashcode-is-not-defined to inline expectations tests. 2025-05-15 13:35:08 +02:00
Jeroen Ketema
51229a6b48 Merge pull request #19493 from jketema/delete-expr 
C++: Fix IR edge case where there are no function calls taking an argument
 2025-05-15 13:31:48 +02:00
Tom Hvitved
9d37597461 Address review comments 2025-05-14 20:50:40 +02:00
Nora Dimitrijević
96bdfbf76b Fix inefficient pattern: if-exists -> exists-or-not-exists 2025-05-14 15:36:45 +02:00
Paolo Tranquilli
e4b7b914b2 Merge pull request #19334 from github/redsun82/rust-expand-attr-macros 
Rust: expand attribute macros
 2025-05-14 15:35:58 +02:00
Owen Mansel-Chan
8f5a2a9e29 Merge pull request #19484 from owen-mc/go/minor-fix 
Go: Remove redundant code in `IR::ExtractTupleElementInstruction.getResultType()` and expand tests
 2025-05-14 13:49:38 +01:00
Jeroen Ketema
401281331f C++: Fix IR edge case where there are no function calls taking an argument 2025-05-14 13:44:29 +02:00
Jeroen Ketema
96bd9a96e5 C++: Add test case for IR edge case 2025-05-14 13:36:52 +02:00
Paolo Tranquilli
c2f2522262 Merge pull request #19490 from github/redsun82/swift-type-value-expr-cfg 
Swift: add new `TypeValueExpr` to CFG
 2025-05-14 13:24:50 +02:00
Michael Nebel
ef4c921b5a Merge pull request #19482 from michaelnebel/csharp/code-quality-call-to-gc 
C#: Add `cs/call-to-gc` to the code quality suite.
 2025-05-14 13:03:24 +02:00
Paolo Tranquilli
3d38d77d63 Rust: accept dummy test output 2025-05-14 11:41:17 +02:00
Paolo Tranquilli
4709eacbf8 Swift: add change note 2025-05-14 11:37:03 +02:00
yoff
3fa563b293 Merge pull request #19483 from yoff/ruby/more-capturedExitRead 
Ruby: More captured exit read nodes
 2025-05-14 11:35:04 +02:00
Paolo Tranquilli
2388dd06d4 Swift: add new TypeValueExpr to CFG 2025-05-14 11:16:44 +02:00
Michael Nebel
7531a95d22 Merge pull request #19271 from michaelnebel/csharp/uncontrolled-format-string 
C#: Improve precision of `cs/uncontrolled-format-string`.
 2025-05-14 10:39:38 +02:00
Mathias Vorreiter Pedersen
e903d76fa0 Merge pull request #19443 from MathiasVP/generate-more-value-preserving-summaries-2 
Shared: Generate more value-preserving flow summaries
 2025-05-14 09:12:28 +01:00
Paolo Tranquilli
f5438390d5 Rust: enhance macro expansion testing 2025-05-14 10:01:44 +02:00
Chris Smowton
98ec3753fd Merge pull request #19489 from github/post-release-prep/codeql-cli-2.21.3 
Post-release preparation for codeql-cli-2.21.3
 2025-05-13 23:31:00 +01:00
github-actions[bot]
5f9dd75d7d Post-release preparation for codeql-cli-2.21.3 2025-05-13 21:49:43 +00:00
Chris Smowton
4bb829ebec Merge pull request #19488 from github/release-prep/2.21.3 
Release preparation for version 2.21.3
codeql-cli/v2.21.3 		2025-05-13 22:22:20 +01:00
github-actions[bot]
2de4a01c86 Release preparation for version 2.21.3 2025-05-13 21:14:27 +00:00
Chris Smowton
c6cc4c0e13 Merge pull request #19402 from smowton/smowton/admin/kotlin-2.2.0-support 
Add support for Kotlin 2.2.0; drop Kotlin 1.5.x
 2025-05-13 21:11:31 +01:00
Tom Hvitved
a02bf182c5 Rust: Type inference and path resolution for builtins 2025-05-13 21:29:32 +02:00
Tom Hvitved
9db38bcb23 Rust: Update path resolution tests 2025-05-13 21:26:50 +02:00