codeql

mirror of https://github.com/github/codeql.git synced 2026-01-14 06:54:48 +01:00

Author	SHA1	Message	Date
Max Schaefer	91762ec274	JavaScript: Add partial model for `opener`. 3.5M weekly downloads. Note that we do not treat the first argument as a command-injection sink. While it is possible to inject commands that way, it is more likely to cause false positives where the user input is concatenated with some prefix that makes the opening heuristic decide to treat it as a URL.	2020-07-27 11:42:32 +01:00
Max Schaefer	9aa26fa4bc	JavaScript: Add model for `foreground-child`. >1M weekly downloads, so seems worth doing.	2020-07-27 11:37:06 +01:00
Max Schaefer	2f842042ea	JavaScript: Model another `execa` function relevant for command injection.	2020-07-27 11:34:04 +01:00
semmle-qlci	e167b87150	Merge pull request #3932 from max-schaefer/portals-additions Approved by esbena	2020-07-09 11:43:45 +01:00
Max Schaefer	7a1410e0d5	JavaScript: Update and expand tests.	2020-07-09 09:25:52 +01:00
semmle-qlci	fe0c5a9ea6	Merge pull request #3892 from asger-semmle/js/redirect-starts-with-sanitizer Approved by esbena	2020-07-06 17:04:30 +01:00
semmle-qlci	6d80445f24	Merge pull request #3851 from erik-krogh/queryStuff Approved by esbena	2020-07-06 14:40:41 +01:00
Erik Krogh Kristensen	8585312271	fix typo in js/shell-command-constructed-from-input	2020-07-06 10:33:49 +02:00
Asger Feldthaus	b5104ae42d	JS: Add StartsWith sanitizer	2020-07-03 14:46:07 +01:00
Asger Feldthaus	4c06eb8bfe	JS: Add test showing FPs	2020-07-03 14:45:42 +01:00
Erik Krogh Kristensen	261821b32c	Merge remote-tracking branch 'upstream/master' into queryStuff	2020-07-02 16:08:05 +02:00
semmle-qlci	b5c8f2238b	Merge pull request #3805 from esbena/js/seal-freeze-flow Approved by asgerf	2020-07-02 13:54:54 +01:00
semmle-qlci	97128b1475	Merge pull request #3829 from asger-semmle/js/xss-substr Approved by erik-krogh	2020-07-02 11:58:32 +01:00
semmle-qlci	bfb734e1d7	Merge pull request #3832 from asger-semmle/js/typescript-in-html-files3 Approved by erik-krogh	2020-07-02 08:30:45 +01:00
semmle-qlci	45ef3ec4a8	Merge pull request #3619 from erik-krogh/CWE022-Correctness Approved by asgerf	2020-07-01 20:07:58 +01:00
Esben Sparre Andreasen	75451e349a	JS: teach the dataflow library identity functions Object.freeze/seal	2020-07-01 15:27:28 +02:00
Esben Sparre Andreasen	33c52761d4	JS: more dataflow and global access path testing	2020-07-01 15:26:25 +02:00
Erik Krogh Kristensen	3157cd724d	add noSQL tests for type-tracking req.query	2020-07-01 11:45:09 +02:00
Erik Krogh Kristensen	bace2994c3	add test for type-tracking req.params	2020-07-01 11:38:54 +02:00
semmle-qlci	224289c55f	Merge pull request #3845 from max-schaefer/js/walk-sync Approved by asgerf	2020-06-30 14:45:41 +01:00
semmle-qlci	42bca1a3fa	Merge pull request #3824 from asger-semmle/js/static-regexp-capture-group-step Approved by erik-krogh, esbena	2020-06-30 13:20:14 +01:00
semmle-qlci	c850938af0	Merge pull request #3833 from asger-semmle/js/vue-class-component Approved by erik-krogh	2020-06-30 13:16:42 +01:00
semmle-qlci	15a0297ca2	Merge pull request #3834 from asger-semmle/js/vue-classification Approved by erik-krogh	2020-06-30 13:14:25 +01:00
Max Schaefer	62d56a3d7c	JavaScript: Fix module name for `walk-sync` package.	2020-06-30 11:57:16 +01:00
Esben Sparre Andreasen	c7f67fafd9	JS: support additional promisification of the fs-module members	2020-06-30 09:10:30 +02:00
Asger Feldthaus	182e4ce727	JS: Autoformat	2020-06-29 19:10:28 +01:00
Asger Feldthaus	cb12d894a6	JS: Add test	2020-06-29 15:54:06 +01:00
semmle-qlci	da8725aa5c	Merge pull request #3823 from dellalibera/js/fancy-log Approved by erik-krogh	2020-06-29 14:46:51 +01:00
semmle-qlci	b3e68ef81c	Merge pull request #3806 from erik-krogh/moreDownloads Approved by asgerf	2020-06-29 13:53:10 +01:00
Asger Feldthaus	b05942b599	JS: Add HTML file example	2020-06-29 13:45:01 +01:00
Asger Feldthaus	3938856e61	JS: Make this work in qltest	2020-06-29 13:42:55 +01:00
Asger Feldthaus	da3d1a3b5f	JS: Recognize 'lang' attribute of script tags	2020-06-29 08:15:52 +01:00
Asger Feldthaus	03c91a66c5	JS: Update expected output	2020-06-29 07:52:25 +01:00
Asger Feldthaus	9ca25d5bef	JS: Support .hash extraction via a few more methods	2020-06-28 01:38:59 +01:00
Asger Feldthaus	19db418395	JS: Add missing store step in Xss query	2020-06-28 01:26:11 +01:00
Asger Feldthaus	3e616e998e	JS: Add test	2020-06-27 21:31:40 +01:00
ubuntu	9135bbd5c8	JS: model fancy-log (and recognize the 'dir' log level)	2020-06-26 21:33:52 +02:00
Asger Feldthaus	06dd3ab2ca	JS: Propagate into RegExp.$x	2020-06-26 18:58:43 +01:00
Asger Feldthaus	17af8f7650	JS: Add test for taint propagating into RegExp.$1	2020-06-26 18:58:43 +01:00
semmle-qlci	3aefb7fad9	Merge pull request #3613 from erik-krogh/Reassigned Approved by asgerf	2020-06-26 17:05:45 +01:00
semmle-qlci	b015c735d0	Merge pull request #3809 from max-schaefer/util-deprecate Approved by asgerf	2020-06-26 14:20:14 +01:00
Max Schaefer	640c194c92	JavaScript: Model `util.deprecate` as a pre call-graph step.	2020-06-26 11:47:19 +01:00
Max Schaefer	712a216461	Add self-verifying type-tracking tests.	2020-06-26 11:47:19 +01:00
semmle-qlci	f81fc77e9e	Merge pull request #3782 from erik-krogh/promiseSteps Approved by asgerf	2020-06-26 10:11:10 +01:00
semmle-qlci	92cc59b47b	Merge pull request #3800 from esbena/js/npmlog Approved by erik-krogh	2020-06-26 07:54:08 +01:00
Erik Krogh Kristensen	1ec2c549d2	autoformat	2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen	081b03c8f4	add tests that access-path domination can happen within a statement	2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen	926f2c139f	require that a write must dominate the enclosing stmt of a read	2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen	cc2e61531e	update expected output	2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen	21e5a522b0	give the same rank to all expressions inside a single stmt	2020-06-25 23:00:52 +02:00

1 2 3 4 5 ...

1980 Commits