codeql

mirror of https://github.com/github/codeql.git synced 2026-03-27 17:58:17 +01:00

Author	SHA1	Message	Date
Tony Torralba	66d49aa4e8	Fix InsecureBasicAuth tests affected by the new URL summary	2021-06-16 13:01:40 +02:00
Tony Torralba	af6bd0b963	Consider subtypes of ReaderSource	2021-06-16 13:01:40 +02:00
Tony Torralba	87dfc92aba	Add tests for CompilationUnit's subtypes	2021-06-16 13:01:40 +02:00
Tony Torralba	e324e4e8d1	Remove non-ascii characters added by accident	2021-06-16 13:01:40 +02:00
Tony Torralba	357b0e1a90	Fix SSRF tests affected by the new URL summary	2021-06-16 13:01:40 +02:00
Tony Torralba	17cce6bd18	Add change note	2021-06-16 13:01:39 +02:00
Tony Torralba	f3ef93fa8a	Make sinks more specific, improve tests	2021-06-16 13:01:39 +02:00
Tony Torralba	f9e6b3c3d2	Add new URL(tainted) as taint step	2021-06-16 13:01:39 +02:00
Tony Torralba	7ff4d368be	Fix tests	2021-06-16 13:01:39 +02:00
Tony Torralba	6f926e1e80	Refine sinks and add more taint steps	2021-06-16 13:01:39 +02:00
Tony Torralba	5d56eb6ea1	Add stubs	2021-06-16 13:01:39 +02:00
Tony Torralba	4b491dcc50	Add codehaus sink and taint steps	2021-06-16 13:01:39 +02:00
Tony Torralba	7883549c25	Use InlineExpectationsTest	2021-06-16 13:01:39 +02:00
Tony Torralba	7031e0a91d	Refactor to use CSV sink models	2021-06-16 13:01:38 +02:00
Tony Torralba	356601ce15	Moved from experimental	2021-06-16 13:01:38 +02:00
Tamás Vajk	eaa69dfa5d	Merge pull request #6084 from tamasvajk/feature/effective-publicness C#: Fix isEffectively* visibility predicates	2021-06-16 12:52:38 +02:00
Anders Schack-Mulligen	75d5fe67ea	Merge pull request #6090 from atorralba/atorralba/move-httpsurls-tests Java: Move/tweak some tests	2021-06-16 12:00:55 +02:00
Tamas Vajk	28ef0e86f6	Apply code review findings	2021-06-16 10:51:52 +02:00
Tamas Vajk	c5b8acf216	Add change notes	2021-06-16 10:51:52 +02:00
Tamas Vajk	db8a777aa9	Fix isEffectively* predicates to members extracted from multiple assemblies	2021-06-16 10:51:52 +02:00
Tamas Vajk	77f8f3fa8a	Adjust comments on isEffectively*	2021-06-16 10:51:52 +02:00
Tamas Vajk	eea96a5585	Fix effective publicness of `protected private` and `protected internal`	2021-06-16 10:51:52 +02:00
Tamas Vajk	f715445c7a	Fix effective privateness of explicitly implemented members	2021-06-16 10:51:08 +02:00
Tamas Vajk	a24006239b	C#: Add more tests to effective visibility	2021-06-16 10:50:15 +02:00
Taus	96d8fc78f8	Merge pull request #6078 from hvitved/type-tracker-caching Python: Move cached predicates in type tracker library to same stage	2021-06-16 10:45:02 +02:00
Tamás Vajk	9f44bc575f	Merge pull request #6089 from tamasvajk/feature/interface-member-modifier C#: Allow abstract modifier on interface members	2021-06-16 10:44:43 +02:00
Tamás Vajk	386d88ab93	Merge pull request #6085 from tamasvajk/feature/unsafe C#: Fix `Modifiable::isUnsafe` to handle declarations extracted from assemblies	2021-06-16 10:30:09 +02:00
Tony Torralba	e2918d55b5	Move tests back from internal repo	2021-06-16 10:09:44 +02:00
Tamas Vajk	66835651fe	C#: Allow abstract modifier on interface members	2021-06-16 09:56:36 +02:00
Tamas Vajk	dacb044790	C#: Add tests for abstract/virtual modifier of interface members	2021-06-16 09:54:34 +02:00
Tamas Vajk	74c4765ab9	Add change note	2021-06-15 17:30:48 +02:00
Tamas Vajk	44b30b70da	C#: Fix Modifiable::isUnsafe to handle declarations extracted from assemblies	2021-06-15 17:30:48 +02:00
CodeQL CI	847faf536d	Merge pull request #6070 from asgerf/js/script-with-tsx-lang Approved by erik-krogh	2021-06-15 08:17:53 -07:00
Taus	87ee7849a9	Merge pull request #6077 from RasmusWL/fix-pypi-names Python: Fixup for names of supported PyPI packages codeql-cli/v2.5.6	2021-06-15 15:01:35 +02:00
yoff	b19d64f173	Merge pull request #6013 from RasmusWL/sensitive-improvements Python: Improve sensitive data modeling	2021-06-15 14:45:40 +02:00
Tom Hvitved	c03ee32f02	Python: Move cached predicates in type tracker library to same stage	2021-06-15 13:42:43 +02:00
Rasmus Wriedt Larsen	b1fb68bc54	Python: Rename .qll file for mysql-connector-python support Just like our support for the `PyYAML` PyPI package that you import with `import yaml` is in `Yaml.qll`. Since this file does not provide any public predicates/modules, it should be safe to rename it.	2021-06-15 13:06:53 +02:00
Rasmus Wriedt Larsen	b154f034cb	Python: Fix names of supported PyPI packages	2021-06-15 12:55:52 +02:00
Anders Schack-Mulligen	19305a217a	Merge pull request #5374 from joefarebrother/guava-base Java: Model additional flow steps for the package `com.google.common.base` of the Guava framwork.	2021-06-15 10:58:48 +02:00
Tom Hvitved	501ba4bd8a	Merge pull request #6012 from hvitved/csharp/early-labels C#: Populate labels earlier	2021-06-15 10:28:23 +02:00
Asger Feldthaus	53bef94b75	JS: Extractor version bump	2021-06-15 09:34:54 +02:00
Cornelius Riemenschneider	0ebf53b9df	Merge pull request #6073 from geoffw0/loc C++: Add lines of user code query	2021-06-15 09:18:46 +02:00
Shati Patel	cce8eac0a7	Merge pull request #5946 from shati-patel/vscode-custom-logs Docs: Describe custom log directory setting in VS Code extension	2021-06-14 20:30:54 +01:00
Aditya Sharad	75ed7c0568	Merge pull request #6014 from github/docs-4179-legacy-tools Remove docs about legacy tools	2021-06-14 11:50:18 -07:00
Taus	c6c9a5110a	Merge pull request #6063 from tausbn/python-promote-type-tracking-library Python: Promote shared type tracking library	2021-06-14 18:56:03 +02:00
Geoffrey White	d7db18213d	C++: Add a generated file to the test.	2021-06-14 16:21:30 +01:00
Geoffrey White	1e1ae27974	C++: Test the new query.	2021-06-14 16:06:20 +01:00
Geoffrey White	e71264d1d2	C++: Lines of user code query.	2021-06-14 16:03:16 +01:00
Tom Hvitved	6b63e032a9	C#: Populate labels earlier	2021-06-14 15:17:33 +02:00
Rasmus Wriedt Larsen	d19bc1252b	Python: limit size of `extraStepForCalls` predicate On django/django, this reduced the number of results in `extraStepForCalls` from 201,283 to 541	2021-06-14 15:06:42 +02:00

1 2 3 4 5 ...

23339 Commits