hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-30 11:01:24 +02:00
Code Issues Packages Projects Releases Wiki Activity
35,198 Commits 1,763 Branches 168 Tags
6a786a20008149aab15c8ddabeb67adfdda072cd
Commit Graph

158 Commits

Author SHA1 Message Date
Stephan Brandauer
6a786a2000 ATM: new feature to list all imports in an endpoint's file 2022-04-29 17:00:44 +02:00
Esben Sparre Andreasen
a84e317f0a use proper import instead of inlining 2022-04-29 16:58:22 +02:00
Esben Sparre Andreasen
930591801f remove Input_ArgumentIndexAndAccessPathFromCallee 2022-04-29 16:58:22 +02:00
Esben Sparre Andreasen
1064dc4efc add docstring examples 2022-04-29 16:58:22 +02:00
Esben Sparre Andreasen
17ce41165d address review comments 2022-04-29 16:58:22 +02:00
Esben Sparre Andreasen
3ff35e8658 Apply suggestions from code review 
Co-authored-by: Henry Mercer <henrymercer@github.com>
 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
9e2a211b16 fix semantic merge conflict 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
437f48c908 rename new features 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
a1925b5bd6 add more features 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
bf186dd441 improve feature documentation 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
f9c7ea1c1d improve feature tests with more cases 2022-04-29 16:58:21 +02:00
Esben Sparre Andreasen
e524792a4d improve access path strings 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
daa64dbaff support import in getSimpleAccessPath 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
a46a802000 support await in getSimpleAccessPath 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
df2ca897cb avoid using new feautes by default 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
034218742e add CompareFeatures.ql 2022-04-29 16:58:20 +02:00
Esben Sparre Andreasen
9110fbb77e add generic tests for features 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
6c8c2b2044 Document EndpointFeatures.qll 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
dde084ca1a add ParameterAccessPathSimpleFromArgumentTraversal 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
93551a3145 improve getSimpleAccessPath 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
5800c9d83d refactor calleeAccessPath feature to class 2022-04-29 16:58:19 +02:00
Stephan Brandauer
4eb4929a5d refactor getACallBasedTokenFeature to class-use 2022-04-29 16:58:19 +02:00
Esben Sparre Andreasen
8fe5f54cd7 Add CalleeAccessPathSimpleFromArgumentTraversal 2022-04-29 16:58:18 +02:00
Esben Sparre Andreasen
66a5e57e59 refactor EndpointFeatures.ql to use classes 2022-04-29 16:58:18 +02:00
Erik Krogh Kristensen
b74d1fdb1a Merge pull request #8783 from erik-krogh/jsAbstractBi 
JS: don't initialize sanitizer-guards in the standard library
 2022-04-29 11:12:16 +02:00
Anna Railton
00b74d8b1c Merge pull request #8895 from github/annarailton-patch-1 
ATM: Update `TaintedPathInjection` -> `TaintedPath`
 2022-04-27 16:15:46 +01:00
Erik Krogh Kristensen
e1c7d369be Merge pull request #8796 from erik-krogh/redundantImport 
Remove redundant imports
 2022-04-27 12:39:51 +02:00
Anna Railton
1f1ef22f90 Update TaintedPathInjection -> TaintedPath 
Lines up with usual naming in https://github.com/github/ml-ql-adaptive-threat-modeling-backend
 2022-04-27 11:27:43 +01:00
Anna Railton
eacfceb6ce Merge pull request #8605 from github/annarailton/new-query-label-mappings 
Experimental (ATM): update query label mappings
 2022-04-26 16:39:06 +01:00
Erik Krogh Kristensen
d389012b75 Merge branch 'main' into redundantImport 2022-04-26 14:24:51 +02:00
Jean Helie
47fdb79cf8 Merge pull request #8751 from github/jhelie/add-gitkeep-to-model-resources 
ML: add .gitkeep to resources dir in which ML models are to be found
 2022-04-25 18:08:24 +02:00
annarailton
9c25da20a4 Update queryNames 2022-04-22 13:42:29 +01:00
Erik Krogh Kristensen
ff73dbc35c delete redundant imports 2022-04-22 12:55:28 +02:00
Erik Krogh Kristensen
81ce8ac715 ATM: fix compiler warnings about unused variables 2022-04-20 18:10:59 +02:00
Erik Krogh Kristensen
4bc36d82f6 update expected output for ATM 2022-04-20 18:10:56 +02:00
Erik Krogh Kristensen
c1c66a0200 refactor CountAlertAndEndpoints to not refer to deprecated files 2022-04-20 18:10:56 +02:00
Erik Krogh Kristensen
c5f7df17ee add .actual files to .gitignore for ATM tests 2022-04-20 18:10:56 +02:00
Erik Krogh Kristensen
b1bad271d5 only activate the PrefixString label in Query.qll files 2022-04-20 18:10:53 +02:00
Erik Krogh Kristensen
8a5b1668f9 move initialization of sanitizer-guards to Query.qll files 2022-04-20 18:10:53 +02:00
Jean Helie
f1f00ccac5 ML: add .gitkeep to resources dir in which ML models are to be found 2022-04-15 12:19:06 +02:00
Jean Helie
d094bbc06d Merge pull request #8546 from github/jhelie/enforce-unknown-incompatibiliy-with-notasink 
ML: add defensive check to ensure Unknown endpoints cannot also be NotASink
 2022-04-14 11:21:18 +02:00
Jean Helie
1e39a9caae ML: update regression test output following fix to getAnUnknown predicate 2022-04-13 18:14:16 +02:00
Jean Helie
f87cd164ce ML: add defensive check to ensure Unknown endpoints cannot also be NotASink 2022-04-13 18:14:16 +02:00
Jean Helie
f2b813a6e7 ML: add regression test for effective sink that is also NotASink 2022-04-13 18:14:16 +02:00
Jean Helie
407a8a7715 ML: fix ATM expected tests outputs 2022-04-13 14:02:12 +02:00
annarailton
8ae905aef9 Update endpointTypeEncoded -> label 
Fixes https://github.com/github/ml-ql-adaptive-threat-modeling/issues/1821
 2022-04-08 10:22:13 +01:00
annarailton
b0ab7218db Add test for query mappings 2022-04-08 10:22:13 +01:00
annarailton
4808eb9926 Change encoding -> label and description -> labelName 
Fixes https://github.com/github/ml-ql-adaptive-threat-modeling/issues/1820
 2022-04-08 10:22:13 +01:00
annarailton
de4e01a8f2 Change NotASinkType to NegativeType 
Fixes https://github.com/github/ml-ql-adaptive-threat-modeling/issues/1819
 2022-04-08 10:22:13 +01:00
Erik Krogh Kristensen
67e1ffdd3e fix isKnownStepSrc such that it actually includes taint/dataflow-steps 2022-03-31 09:46:01 +02:00