hohn/codeql - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00

Author	SHA1	Message	Date
Asger F	64d39da5f8	JS: Accept Sources/Sink tags	2025-02-28 13:29:30 +01:00
Asger F	0453ded338	JS: Add query ID to some alerts	2025-02-28 13:27:41 +01:00
Asger F	9be041e27d	JS: Update OK-style comments to $-style	2025-02-28 13:27:28 +01:00
Napalys	1d2e08a3b6	JS: now Reg Exp injection treats unknownFlags as sanitization, MetacharEscapeSanitizer	2024-11-28 11:26:58 +01:00
Napalys	62194f5337	JS: add test cases RegExp with unknown flags	2024-11-28 11:26:57 +01:00
Asger F	40daa9c906	JS: Update RegExpInjection test and expectations	2023-05-26 14:05:36 +02:00
erik-krogh	36478124ae	add process.env and process.argv etc. as source for `js/regex-injection`	2023-02-14 14:21:53 +01:00
Asger Feldthaus	16e3681fd3	JS: Update RegExpInjection test case	2021-06-22 12:00:04 +02:00
Erik Krogh Kristensen	33641c84f6	recognize sanitizing string replace call for regexp-injection	2021-05-14 11:58:27 +02:00
Erik Krogh Kristensen	ab53f3b380	add `array.filter()` as a taint-step	2021-05-05 12:03:14 +02:00
Erik Krogh Kristensen	0d64a0f2c8	update consistency comment for CWE-730	2020-07-08 10:07:34 +02:00
Erik Krogh Kristensen	15d74b7d03	remove FP from js/regexpinjection where no regexp was constructed	2019-12-19 10:47:03 +01:00
Esben Sparre Andreasen	3d3b7b0254	JS: fix typo in test case	2018-09-06 22:54:07 +02:00
Esben Sparre Andreasen	b9d825b379	JS: better matching of String.prototype.search in js/regex-injection	2018-09-05 08:35:00 +02:00
Pavel Avgustinov	b55526aa58	QL code and tests for C#/C++/JavaScript.	2018-08-02 17:53:23 +01:00