1919 Commits

Author	SHA1	Message	Date
Anders Schack-Mulligen	d0fa7c7ff8	Merge pull request #12683 from aschackmull/java/rangeanalysis-add ... Java: Support double-recursive range analysis bounds for addition.	2023-03-29 13:39:59 +02:00
Jeroen Ketema	0acca2ba76	Merge pull request #12687 from jketema/unit-2 ... Make imports of `codeql.util.Unit` private	2023-03-29 13:07:12 +02:00
Edward Minnix III	b00104ebe3	Merge pull request #12458 from egregius313/egregius313/promote-insecure-ldap-authentication ... Java: Promote LDAP Authentication Query	2023-03-28 10:39:17 -04:00
Edward Minnix III	97ec808a6f	Make configuration public ... Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>	2023-03-28 10:28:15 -04:00
Jeroen Ketema	3b8ad087eb	Make imports of codeql.util.Unit private	2023-03-28 14:14:13 +02:00
Anders Schack-Mulligen	d406b051fc	Dataflow: Remove accidentally exposed predicates.	2023-03-28 10:04:21 +02:00
Anders Schack-Mulligen	b5c66c514e	Java: Support double-recursive range analysis bounds for addition.	2023-03-28 09:52:05 +02:00
Ed Minnix	9bfb13b942	Update to the Global/flow* api	2023-03-27 12:26:18 -04:00
Ed Minnix	0eaf222b54	Move public classes/predicates to top of library file	2023-03-27 12:16:44 -04:00
Ed Minnix	f28f1af5a4	Add InsecureLdapUrlSink	2023-03-27 12:16:44 -04:00
Edward Minnix III	24d4859149	Import changes ... Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>	2023-03-27 12:16:44 -04:00
Edward Minnix III	151357d02d	Make classes/predicates not used outside of query private ... Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>	2023-03-27 12:16:44 -04:00
Ed Minnix	658c54a18f	Change names of configuration to fit new naming convention	2023-03-27 12:16:44 -04:00
Ed Minnix	752620a34d	Rename SSL configuration and fix PathGraph	2023-03-27 12:16:44 -04:00
Ed Minnix	59ce0d7682	Documentation changes	2023-03-27 12:16:44 -04:00
Ed Minnix	6a0167fa7f	Convert to using the new DataFlow modules	2023-03-27 12:16:44 -04:00
Ed Minnix	05da1dc4a3	Merge concatInsecureLdapString into InsecureLdapUrl constructor	2023-03-27 12:16:44 -04:00
Ed Minnix	3936aea690	Split Ldap query file into libraries	2023-03-27 12:16:43 -04:00
Jeroen Ketema	977f15f8a4	Merge pull request #12649 from jketema/unit ... Replace all definitions of `Unit` by `import codeql.util.Unit`	2023-03-27 08:49:50 +02:00
Edward Minnix III	bb27ba7d3c	Merge pull request #12632 from egregius313/egregius313/java/android/refactor-android-query-libraries ... Java: Refactor Android `Query.qll` libraries to new dataflow api	2023-03-24 11:18:57 -04:00
Ed Minnix	1bf4dd9649	Update to DataFlow::Global	2023-03-24 09:54:53 -04:00
Ed Minnix	2eea34dc4a	Apply suggestions from code review	2023-03-24 09:47:50 -04:00
Edward Minnix III	c62eaba601	Simulate deprecated import ... Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>	2023-03-24 09:47:50 -04:00
Ed Minnix	58bd2f7fa2	Address code review comments	2023-03-24 09:47:50 -04:00
Ed Minnix	e7f6d53907	Deprecate WebViewDubuggingQuery.qll	2023-03-24 09:47:50 -04:00
Ed Minnix	ef08a91340	Refactor ImproperIntentVerificationQuery.qll	2023-03-24 09:47:50 -04:00
Ed Minnix	413a6cbc4f	Refactor SensitiveKeyboardCacheQuery	2023-03-24 09:47:50 -04:00
Ed Minnix	d68bec98bc	Refactor CWE-940/AndroidIntentRedirection	2023-03-24 09:47:50 -04:00
Ed Minnix	1e0c6811a4	Refactor UnsafeAndroidAccess	2023-03-24 09:47:50 -04:00
Ed Minnix	807588a031	Refactor AndroidCertificatePinningQuery	2023-03-24 09:47:50 -04:00
Ed Minnix	768102ee92	Refactor java/android/webview-debugging-enabled	2023-03-24 09:47:50 -04:00
Anders Schack-Mulligen	b45c274f33	Dataflow: Adjust qldoc	2023-03-24 12:41:53 +01:00
Jeroen Ketema	a87a9438c7	Replace all definitions of Unit by import codeql.util.Unit	2023-03-24 10:39:34 +01:00
Tony Torralba	c395779b85	Merge pull request #12643 from chmodxxx/sbaddou/jndisanitizer ... Java : Add JndiInjection Sanitizer Class	2023-03-24 09:04:54 +01:00
Anders Schack-Mulligen	9d88f01c82	Merge pull request #12645 from aschackmull/dataflow/renaming ... Dataflow: Rename Make to Global and hasFlow to flow	2023-03-24 08:48:31 +01:00
Tony Torralba	3eed4b4186	Move JndiInjectionSanitizer to importable file ... Add change note	2023-03-23 17:05:53 +01:00
Anders Schack-Mulligen	4993e7c149	Dataflow: Rename output signature	2023-03-23 13:39:53 +01:00
Salah Baddou	b1d9c65194	Add JndiInjection Sanitizer Class	2023-03-23 12:11:07 +00:00
Anders Schack-Mulligen	978c5f7bd8	Java/C++: Autoformat	2023-03-23 13:06:19 +01:00
Anders Schack-Mulligen	ec34d44359	Java: Rename references.	2023-03-23 13:06:19 +01:00
Anders Schack-Mulligen	2761aa73ca	Dataflow: Sync.	2023-03-23 13:06:19 +01:00
Anders Schack-Mulligen	cfa5af969e	Dataflow: Rename Make to Global and remove has* prefix.	2023-03-23 13:06:19 +01:00
Kasper Svendsen	ce6be1f636	Dataflow: Instantiate stage 1 access paths with proper unit type	2023-03-23 08:32:16 +01:00
Michael Nebel	915efffe21	Merge pull request #12610 from michaelnebel/java/validatespecs ... Java/C#: Validate all AccessPaths.	2023-03-22 16:22:54 +01:00
Anders Schack-Mulligen	dc6729d0bf	Merge pull request #12616 from aschackmull/java-csharp/redundant-sign-analysis-case ... Java/C#: Remove useless disjuncts.	2023-03-22 13:33:46 +01:00
Michael Nebel	46ef954d5c	Java: Validate all accesspaths except for Field.	2023-03-22 10:05:46 +01:00
Anders Schack-Mulligen	89d9d65755	Java/C#: Remove useless disjuncts.	2023-03-21 14:45:29 +01:00
Anders Schack-Mulligen	56288eb3d2	Java: Misc performance fixes	2023-03-21 14:26:13 +01:00
Edward Minnix III	ac58299d9e	Merge pull request #12541 from egregius313/egregius313/refactor-queries-to-new-dataflow-api ... Java: Refactor more queries to the new DataFlow module API	2023-03-20 12:24:26 -04:00
Anders Schack-Mulligen	3876e4335f	Merge pull request #12420 from kaspersv/kaspersv/dataflow-remove-alias-preds ... Dataflow: Remove revFlowAlias and revFlowApAlias predicates	2023-03-20 16:30:15 +01:00