codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00

Author	SHA1	Message	Date
Chris Smowton	09fe6091c2	Amend extractor information expectation	2025-01-23 11:33:45 +00:00
Chris Smowton	02edb1b9cb	Don't expect logged properties files in source archives	2025-01-23 11:14:20 +00:00
Jonas Jensen	773a98a9eb	Merge pull request #18340 from jbj/diff-informed-getASelectedLocation Java: make more queries diff-informed with getASelectedLocation	2025-01-22 14:25:33 +01:00
Anders Schack-Mulligen	5bfd22e60a	Merge pull request #18552 from aschackmull/java/xss-regex-perf Java: Improve performance of XSS regex.	2025-01-22 11:28:49 +01:00
Owen Mansel-Chan	b4c8390991	Merge pull request #18137 from owen-mc/java/jax-rs-annotation-inheritance Java: Update JAX-RS annotation inheritance	2025-01-21 15:26:47 +00:00
Anders Schack-Mulligen	0f96e79264	Java: Improve performance of XSS regex.	2025-01-21 14:41:08 +01:00
Jonas Jensen	eacc600b29	Java: annotate a query as not selecting sources This is for performance in diff-informed mode but also for avoiding spurious entries in the code scanning timeline and alert list.	2025-01-21 12:56:06 +01:00
Owen Mansel-Chan	19df33fb43	Remove another erroneous comment Co-authored-by: Jami <57204504+jcogs33@users.noreply.github.com>	2025-01-21 09:25:37 +00:00
Owen Mansel-Chan	6fa18be0cc	Fix QLDocs	2025-01-20 22:07:01 +00:00
github-actions[bot]	fbb7f0a0c6	Post-release preparation for codeql-cli-2.20.2	2025-01-20 21:11:14 +00:00
github-actions[bot]	a0512a50f2	Release preparation for version 2.20.2	2025-01-20 21:11:12 +00:00
Nick Rolfe	3e5707154a	Merge pull request #18542 from github/nickrolfe/java-stats Java: fix stats for databaseMetadata relation	2025-01-20 17:28:51 +00:00
Nick Rolfe	6b5974a372	Java: fix stats for databaseMetadata relation	2025-01-20 17:02:25 +00:00
Ian Lynagh	66777e6282	Merge pull request #18450 from igfoo/igfoo/kot2.1.20b1 Kotlin: Add support for 2.1.20-Beta1	2025-01-20 15:32:19 +00:00
Ian Lynagh	cec503eecd	Kotlin: Fix build with 2.1.20-Beta1	2025-01-20 14:31:58 +00:00
Ian Lynagh	4e798b3db4	Kotlin: Add 2.1.20-Beta1	2025-01-20 14:31:57 +00:00
Ian Lynagh	ff328d6c04	Kotlin: Add 2.1.20-Beta1 deps	2025-01-20 14:31:57 +00:00
Nick Rolfe	64f33955b5	Java: add databaseMetadata to dbscheme	2025-01-17 15:18:07 +00:00
Chris Smowton	060161cd5e	Add change note	2025-01-14 14:22:27 +00:00
Chris Smowton	5ca7d26cf3	Add test for a JavacTool-based compiler that doesn't use standard JavaFileObjects	2025-01-14 14:22:26 +00:00
Chris Smowton	3e10e78c95	Merge pull request #18480 from github/smowton/admin/document-serialization-proxy Java: document serialization proxy pattern	2025-01-14 12:34:01 +00:00
Owen Mansel-Chan	883301938b	Merge pull request #18161 from owen-mc/java/weak-crypto-algo-more-informative Java: Make `java/weak-cryptographic-algorithm` give a reason why the algo is insecure	2025-01-13 23:43:04 +00:00
yoff	599411b440	Merge pull request #17787 from yoff/shared/add-location-to-typetracking-nodes shared: Add locations to type tracking nodes	2025-01-13 23:06:09 +01:00
Ian Lynagh	6b182c5ebd	Merge pull request #18396 from igfoo/igfoo/path_transformer Kotlin: Add CODEQL_PATH_TRANSFORMER support	2025-01-13 15:11:41 +00:00
Chris Smowton	0b62338cda	Java: document serialization proxy pattern Note I haven't included a reference because I can't find a sufficiently-authoritative source -- only a blog quoting Effective Java seems close to appropriate, and I suspect that's pirated.	2025-01-13 11:49:36 +00:00
Tom Hvitved	303b11ec36	Merge pull request #18298 from hvitved/rust/mad-source-sink Rust: Add support for MaD sources and sinks with access paths	2025-01-10 11:49:51 +01:00
Owen Mansel-Chan	0728b3bd60	Update test expectation	2025-01-10 10:37:05 +00:00
yoff	b263132ab2	Merge pull request #17998 from yoff/shared/locations-in-range-analysis	2025-01-09 14:05:54 +01:00
Owen Mansel-Chan	0f8f5d2793	Merge branch 'main' into post-release-prep/codeql-cli-2.20.1	2025-01-08 16:28:23 +00:00
yoff	21e7a0e828	Merge branch 'main' into shared/locations-in-range-analysis	2025-01-08 16:40:59 +01:00
Tom Hvitved	868caf948c	Rename `{Source,Sink}Node` to `{Source,Sink}Element`	2025-01-08 15:21:43 +01:00
yoff	aca5a51a78	Merge branch 'main' into shared/add-location-to-typetracking-nodes	2025-01-08 12:47:05 +01:00
github-actions[bot]	fb20f6ca63	Post-release preparation for codeql-cli-2.20.1	2025-01-07 22:07:40 +00:00
github-actions[bot]	88b6f1e79a	Release preparation for version 2.20.1	2025-01-07 20:50:36 +00:00
Dave Bartolomeo	72a53c4b23	Revert "Release preparation for version 2.20.1"	2025-01-07 13:32:23 -05:00
github-actions[bot]	fbf9f2fff8	Release preparation for version 2.20.1	2025-01-07 17:20:13 +00:00
Dave Bartolomeo	22e030584c	Revert "Release preparation for version 2.20.1"	2025-01-07 12:14:27 -05:00
Owen Mansel-Chan	7688f46650	Add change note	2025-01-07 17:08:23 +00:00
Owen Mansel-Chan	5959a736ac	Only recommend GCM, and tighten wording	2025-01-07 16:55:10 +00:00
Owen Mansel-Chan	9cc614ac2d	Allow jax-rs path annotation inheritance	2025-01-07 16:44:12 +00:00
Owen Mansel-Chan	de1b374e0e	Test JAX-RS class/interface annotation inheritance	2025-01-07 15:28:41 +00:00
Chris Smowton	dd0012edcb	ASCII	2025-01-06 23:28:02 +01:00
Chris Smowton	03c6529961	Spelling	2025-01-06 22:46:22 +01:00
github-actions[bot]	a121c5a5d0	Release preparation for version 2.20.1	2025-01-06 18:20:22 +00:00
Chris Smowton	d0eab598b1	Change note	2025-01-06 14:44:12 +00:00
Chris Smowton	5c2df36786	Exclude classes with a writeReplace method from serializability checks	2025-01-06 14:42:44 +00:00
Tom Hvitved	1b31c90d26	Implement `FlowSummaryImpl` stubs	2025-01-06 13:26:51 +01:00
Ian Lynagh	78b277b46f	Java/Kotlin: Add a changenote for CODEQL_PATH_TRANSFORMER support.	2025-01-03 16:02:36 +00:00
Ian Lynagh	dedb0cb11f	Kotlin: Support CODEQL_PATH_TRANSFORMER	2025-01-03 16:02:36 +00:00
Jonas Jensen	2b1c70c33b	Java: Diff-informed PolynomialReDoS.ql This and other queries would also benefit from making `RegexFlow` diff-informed. That will come later.	2024-12-20 13:01:09 +01:00

... 2 3 4 5 6 ...

12946 Commits