hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-29 18:55:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
52,889 Commits 1,741 Branches 165 Tags
64cf27ab875371dbb74deea87e9a7c4c36dfd369
Commit Graph

52889 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Asger F
64cf27ab87 JS: Modernize crypto libraries 2023-03-31 14:49:23 +02:00
Asger F
40530ae14d JS: Simplfy with set literal 2023-03-31 12:04:56 +02:00
Asger F
4a06b81429 JS: Use API graphs in CryptoJS 2023-03-31 12:03:14 +02:00
Asger F
dec1e4dfd6 Merge pull request #12666 from smiddy007/improve-insufficient-pw-hash-query 
JS: Improve insufficient pw hash query
 2023-03-31 11:58:41 +02:00
Geoffrey White
ddb27e5525 Merge pull request #12724 from geoffw0/modernstring2 
Swift: Add missing import.
 2023-03-31 09:48:46 +01:00
Michael Nebel
014e3e40bb Merge pull request #12707 from michaelnebel/csharp/dataflowstaticoperators 
C#: Data flow tests for virtual and abstract operators.
 2023-03-31 10:43:21 +02:00
Asger F
008ffea94f Merge pull request #12703 from asgerf/rb/api-graphs-trackdef 
Ruby: do not depend on trackDefNode in isDef
 2023-03-31 10:30:18 +02:00
Michael Nebel
f792bf09d3 C#: Update expected test output. 2023-03-31 10:13:20 +02:00
Michael Nebel
6f86cb1c1b C#: Add interface definition and add more testcases. 2023-03-31 10:13:20 +02:00
Michael Nebel
fc21f01cb9 Merge pull request #12690 from michaelnebel/csharp/checkedlocalflow 
C#: Dataflow via checked and unchecked expressions.
 2023-03-31 10:12:01 +02:00
Geoffrey White
01280aee67 Swift: Add missing import. 2023-03-31 08:48:57 +01:00
Paolo Tranquilli
3e703802b1 Merge pull request #12710 from github/redsun82/swift-imported-modules-as-set 
Swift: make imported and exported modules a set
 2023-03-31 09:46:44 +02:00
Edward Minnix III
8e54328315 Merge pull request #12681 from egregius313/egregius313/java/move-configurations-to-libraries 
Java: Move dataflow configurations in queries to `*Query.qll` libraries (part 1)
 2023-03-30 14:33:21 -04:00
AlexDenisov
3cd0af6622 Merge pull request #12700 from github/redsun82/swift-fix-wmo 
Swift: extract all source files in WMO mode
 2023-03-30 18:01:48 +02:00
Ed Minnix
684408a493 Fix StringFormat import 2023-03-30 11:20:35 -04:00
Ed Minnix
ecbd3be5e9 Remove private marker 
This class is used in the actual query, so it needs to be exposed.
 2023-03-30 11:08:41 -04:00
Ed Minnix
dba5e9e9e2 Updates to imports 
Make some imports private
Remove unnecessary imports
 2023-03-30 11:03:48 -04:00
Edward Minnix III
c7a049a867 Mark things which can be private as private 
Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
 2023-03-30 11:00:00 -04:00
Edward Minnix III
8250e4393c Typos and rewording 
Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
 2023-03-30 10:59:12 -04:00
Paolo Tranquilli
3d6916eb72 Swift: add upgrade/downgrade scripts 2023-03-30 16:44:28 +02:00
Paolo Tranquilli
6f6d3f1262 Merge branch 'main' into redsun82/swift-imported-modules-as-set 2023-03-30 16:42:35 +02:00
Paolo Tranquilli
06ad5b3949 Revert "Swift: add upgrade/downgrade scripts" 
This reverts commit 48c2303391.

This is done to merge main and readd the scripts in another commit.
 2023-03-30 16:41:04 +02:00
Erik Krogh Kristensen
b382465078 Merge pull request #12679 from ctbellanti/improved-certificate-validation 
JS: Improved coverage for disabled certificate validation
 2023-03-30 16:24:33 +02:00
Robert Marsh
d03dd49904 Merge pull request #12622 from MathiasVP/skip-safe-conversions-in-range-analysis 
C++: Range analysis on `EquivalenceClass`es
 2023-03-30 10:08:59 -04:00
Ian Lynagh
f5a2853ab9 Merge pull request #12705 from igfoo/igfoo/integ-extractor-info 
Java: Allow keys to be omitted from ExtractorInformation.ql
 2023-03-30 14:06:41 +01:00
Jeroen Ketema
9173e08805 Merge pull request #12714 from jketema/rem-cleanup 
C++: Match `SemZeroBound` handling of mul case in rem case
 2023-03-30 14:25:20 +02:00
erik-krogh
47783326c2 add test for https.createServer in DisablingCertificateValidation.ql 2023-03-30 14:15:25 +02:00
Asger F
43174cfe3a Merge pull request #12668 from asgerf/js/jquery-callback-sinks 
JS: fix handling of jQuery sinks involving callback
 2023-03-30 12:42:53 +02:00
Mathias Vorreiter Pedersen
4043aa976d Merge branch 'main' into skip-safe-conversions-in-range-analysis 2023-03-30 11:24:27 +01:00
Mathias Vorreiter Pedersen
d9b2a72232 C++: Ensure that equiv instructions are in the same block. 2023-03-30 11:22:24 +01:00
Mathias Vorreiter Pedersen
4602a8ae4a C++: Simplify 'converts'. 2023-03-30 11:16:54 +01:00
Geoffrey White
7729a6bdbf Merge pull request #12509 from geoffw0/typealiasimpl 
Swift: Extract type aliases
 2023-03-30 11:06:14 +01:00
Mathias Vorreiter Pedersen
62bc8074ba Merge pull request #12626 from gsingh93/buffer-access-size-expr 
C++: Add getSizeExpr and getSizeMult predicates to BufferAccess
 2023-03-30 10:49:12 +01:00
Rasmus Wriedt Larsen
decd51b65d Merge pull request #12604 from raulgarciamsft/main 
Python: Update `py/azure-storage/unsafe-client-side-encryption-in-use`
 2023-03-30 11:48:26 +02:00
Mathias Vorreiter Pedersen
0202bafc35 Merge pull request #12709 from MathiasVP/disable-rounding-2 
C++: Disable floating point rounding in range analysis
 2023-03-30 10:05:47 +01:00
Michael Nebel
dde37c64ac Merge pull request #12675 from michaelnebel/csharp/refactorflowapi 
C#: Re-factor tainttracking configurations to use the new API.
 2023-03-30 10:54:11 +02:00
Mathias Vorreiter Pedersen
64a08cefd7 C++: Add change note. 2023-03-30 09:37:27 +01:00
Rasmus Wriedt Larsen
f3937a4a12 Python: Update .expected from PostUpdateNode commit 2023-03-30 10:17:33 +02:00
Mathias Vorreiter Pedersen
6275a015a4 Merge pull request #12708 from MathiasVP/dont-break-ir-cfg-on-vla 
C++: Don't produce partial CFGs when using VLAs
 2023-03-30 09:16:10 +01:00
Michael Nebel
31e352afb0 C#: Actually add the deprecated keyword to the deprecated classes. 2023-03-30 09:45:49 +02:00
Jeroen Ketema
ade02d80cf C++: Match SemZeroBound handling of mul case in rem case 2023-03-30 09:10:55 +02:00
Paolo Tranquilli
aeaeade75e Merge pull request #12706 from github/alexdenisov/consider-non-swift-modules-as-lazy 
Swift: consider declarations from non-swift modules as lazy
 2023-03-30 08:40:53 +02:00
Raul Garcia
cf8a683d7d Merge branch 'main' into main 2023-03-29 20:27:03 -07:00
Raul Garcia
05137d0c54 Merge pull request #32 from RasmusWL/azure-blob-client 
`py/azure-storage/unsafe-client-side-encryption-in-use` updates
 2023-03-29 20:26:25 -07:00
Ed Minnix
58ad8e4292 ExternallyControlledFormatString change note 2023-03-29 22:43:26 -04:00
Ed Minnix
9afa051621 Move ExternallyControlledFormatStringFlow to Query.qll 2023-03-29 17:59:34 -04:00
Ed Minnix
7d9fad5733 Add change note 2023-03-29 17:59:33 -04:00
Ed Minnix
3eaa94a5d2 Move ResponseSplitting configuration to ResponseSplittingQuery.qll 2023-03-29 17:59:33 -04:00
Ed Minnix
e3af8b2c7f Move LdapInjectionLib to LdapInjectionQuery.qll 2023-03-29 17:59:33 -04:00
Ed Minnix
1add692643 Move XssConfig to XssQuery.qll 2023-03-29 17:59:33 -04:00