hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-24 00:05:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
76,698 Commits 1,741 Branches 165 Tags
7a99dfaebedd023481aaa75b04abe6d69dd33bd5
Commit Graph

76698 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Owen Mansel-Chan
07c041483d Add change note 2025-03-04 12:14:43 +00:00
Owen Mansel-Chan
36908e8ef0 Do not track taint for keys in sync.Map 
There is no way to get the value of a key out of a `sync.Map`.
 2025-03-04 12:11:49 +00:00
Tom Hvitved
1f13f0009f Rust: Move AstConsistency.qll into internal 2025-03-04 13:00:09 +01:00
Jami
c22b05a6f4 Merge pull request #18900 from jcogs33/jcogs33/java/unreleased-lock-fp 
Java: handle lock state check stored in variable for `java/unreleased-lock`
 2025-03-04 06:38:56 -05:00
Anders Schack-Mulligen
6c89602691 SSA: Add some qldoc. 2025-03-04 12:24:25 +01:00
Anders Schack-Mulligen
f5eb2d94bc SSA: Use Definition.getLocation in DefinitionExt. 2025-03-04 12:24:25 +01:00
Anders Schack-Mulligen
5a909aa69c C#: Remove remaining DefinitionExt references. 2025-03-04 12:24:24 +01:00
Anders Schack-Mulligen
4c0e5f62cf Rust: Remove remaining DefinitionExt references. 2025-03-04 12:24:24 +01:00
Anders Schack-Mulligen
00b8c80c24 SSA/C#/Ruby/Rust: Clean up SSA consistency queries. 
The RelevantDefinition class is no longer needed since the introduction
of LocationSig.
 2025-03-04 12:24:23 +01:00
Anders Schack-Mulligen
8474a47c2b Rust: Switch test to use dedicated test module. 2025-03-04 12:24:23 +01:00
Anders Schack-Mulligen
122034fe8c Ruby: Switch test to use dedicated test module. 2025-03-04 12:24:23 +01:00
Anders Schack-Mulligen
f0993fc97e C#: Switch test to use dedicated test module. 2025-03-04 12:24:22 +01:00
Anders Schack-Mulligen
2f744ce3ec SSA: Expose module for qltesting adjacent references. 2025-03-04 12:24:22 +01:00
Anders Schack-Mulligen
9e03b12ba0 C#/Java/Ruby/Rust/SSA: Replace DefinitionExt with SourceVariable in data flow integration predicates. 2025-03-04 12:24:21 +01:00
Anders Schack-Mulligen
39bba7f5c2 SSA: Change a few DefinitionExt uses that are actually just Definitions. 2025-03-04 12:24:21 +01:00
Anders Schack-Mulligen
42eef9e4b7 SSA: Deprecate getDefinitionExt. 2025-03-04 12:24:20 +01:00
Paolo Tranquilli
2a29239b01 Merge branch 'main' into redsun82/cargo-upgrade 2025-03-04 10:05:41 +01:00
Simon Friis Vindum
0d1865d718 Merge pull request #18872 from paldepind/rust-ref-mut 
Rust: Allow SSA and some data flow for mutable borrows
 2025-03-04 09:25:18 +01:00
Michael Nebel
96c0ca87fc Merge pull request #18865 from carldybdahl-microsoft/csharp/path-combine 
Add CodeQL recommendation against Path.Combine
 2025-03-04 08:51:04 +01:00
Carl Dybdahl
2f7cdf1bfa Improvements 2025-03-03 15:32:15 +01:00
Carl Dybdahl
b3447959fa Match autoformatting, add QLDoc references 2025-03-03 15:32:15 +01:00
Carl Dybdahl
d371723fe4 Fix test 2025-03-03 15:32:15 +01:00
Carl Dybdahl
d82295c54a Add QLDoc 2025-03-03 15:32:15 +01:00
Carl Dybdahl
aa6779f19f Add changelog 2025-03-03 15:32:15 +01:00
Carl Dybdahl
35fd4d226f Oops 2025-03-03 15:32:15 +01:00
Carl Dybdahl
44e6691e6d Add implementation and tests 2025-03-03 15:32:15 +01:00
Geoffrey White
7f56c67544 Merge pull request #18837 from geoffw0/overflowbuffer 
C++: Improve and promote cpp/overflow-buffer
 2025-03-03 14:17:12 +00:00
Anders Schack-Mulligen
5d91f2e119 C++: Change countNumberOfBranchesUsingParameter to match qldoc closer. 2025-03-03 15:14:28 +01:00
Lukas Abfalterer
a3749530d6 The query should only report cases when the method is not empty. 2025-03-03 10:20:46 +01:00
Paolo Tranquilli
9740232df8 Merge branch 'main' into redsun82/cargo-upgrade 2025-03-03 10:15:17 +01:00
Chris Smowton
ee08e8b1fb Merge pull request #18888 from github/dbartol/actions-executable-bit 
Set the executable bit on the scripts in the Actions extractor
 2025-03-03 08:53:50 +00:00
Simon Friis Vindum
1225c5c828 Rust: Accept changes 2025-03-03 09:44:24 +01:00
Simon Friis Vindum
d8d882958d Merge branch 'main' into rust-ref-mut 2025-03-03 09:19:08 +01:00
Simon Friis Vindum
757067216d Merge pull request #18896 from paldepind/rust-model-ptr-rw 
Rust: Model pointer read and write functions
 2025-03-03 09:14:39 +01:00
Jami Cogswell
b0b95965f6 Java: add change note 2025-03-02 17:13:37 -05:00
Jami Cogswell
fbf7513f37 Java: handle lock state check stored in variable 2025-03-02 17:01:18 -05:00
Geoffrey White
7169c4be48 C++: Another attempt to make the fix more solid. I believe it can't produce negative numbers now. 2025-02-28 14:21:58 +00:00
Simon Friis Vindum
c1ee20b2b9 Rust: Update generated models for Rust built-in libraries 2025-02-28 13:40:43 +01:00
Geoffrey White
2f2c9f8943 Merge pull request #18895 from geoffw0/docimplicit 
Data flow: Improve doc for defaultImplicitTaintRead.
 2025-02-28 12:18:11 +00:00
Paolo Tranquilli
945bf80803 Merge branch 'main' into redsun82/cargo-upgrade 2025-02-28 13:15:43 +01:00
Chris Smowton
4f810df53c Merge pull request #18861 from smowton/smowton/admin/jdk24-upgrade-test-expectations 
Java: Update test expectations for JDK24 upgrade
 2025-02-28 11:56:49 +00:00
Paolo Tranquilli
0445d886c7 QL for QL: update toolchain 2025-02-28 12:39:37 +01:00
Paolo Tranquilli
c5eeaba2ec Merge branch 'main' into redsun82/cargo-upgrade 2025-02-28 12:26:26 +01:00
Paolo Tranquilli
6b34d3f480 Rust: add missing empty expected file 2025-02-28 12:26:03 +01:00
Chris Smowton
ad732a8f57 Docs: note JDK 24 support 2025-02-28 11:23:11 +00:00
Chris Smowton
79e581f555 Change note 2025-02-28 11:23:10 +00:00
Chris Smowton
1577b40b45 Accept test changes 2025-02-28 11:23:07 +00:00
Chris Smowton
178e90c2f1 Update test expectations for JDK24 upgrade 2025-02-28 11:23:06 +00:00
Owen Mansel-Chan
94505af49e Merge pull request #18891 from github/workflow/coverage/update 
Update CSV framework coverage reports
 2025-02-28 11:14:06 +00:00
Chris Smowton
ec2982f3df Merge branch 'main' into workflow/coverage/update 2025-02-28 10:48:08 +00:00