14498 Commits

Author	SHA1	Message	Date
Mario Campos	800ff1d789	Update Java Buildless Maven tests to fetch dependencies from mirror	2026-06-22 17:04:19 -05:00
Mario Campos	e5457083a2	Change Java test fixtures to expect packages from Maven Central mirror	2026-06-22 14:56:08 -05:00
Idriss Riouak	568a147f77	Merge pull request #22007 from github/java-update-ferstl-depgraph-cves ... Java: update ferstl depgraph cves	2026-06-22 10:08:05 +02:00
idrissrio	ebb74a56f6	Java: accept new test results	2026-06-19 09:38:16 +02:00
idrissrio	99fb3879b2	Java: update ferstl script	2026-06-18 15:43:30 +02:00
Anders Schack-Mulligen	779309edb1	Merge pull request #21999 from aschackmull/cfg/parameter-pattern ... Cfg: Distinguish parameters from their patterns.	2026-06-18 15:18:22 +02:00
Anders Schack-Mulligen	f844cd3754	Java/C#: Adapt to signature change.	2026-06-18 11:00:30 +02:00
Jeroen Ketema	fefe01ecbf	Java: Update expected test results after extractor changes	2026-06-17 17:40:23 +02:00
Jeroen Ketema	c5dc05483b	Merge pull request #21990 from jketema/jketema/telemetry-prep ... Java: Use fixture for filtering diagnostics	2026-06-16 13:53:33 +02:00
Tom Hvitved	d287f0cf0b	Merge pull request #21987 from hvitved/type-flow-ranking ... Java: Fix performance issue in type flow library	2026-06-16 09:39:30 +02:00
Jeroen Ketema	b9b15af308	Java: Use fixture for filtering diagnostics	2026-06-15 14:51:52 +02:00
Tom Hvitved	686e98c6ff	Update java/ql/lib/semmle/code/java/dataflow/TypeFlow.qll ... Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>	2026-06-15 11:37:14 +02:00
Owen Mansel-Chan	14c72def96	Merge pull request #21983 from owen-mc/java/convert-to-inline-expectation-tests ... Java: Improve inline expectations test comments	2026-06-15 10:31:56 +01:00
Tom Hvitved	651770b412	Java: Fix performance issue in type flow library	2026-06-15 10:35:16 +02:00
Anders Schack-Mulligen	6934aa0e39	Merge pull request #21980 from aschackmull/cfg/unless-until ... Cfg: Add support for unless and until statements	2026-06-15 09:58:03 +02:00
Owen Mansel-Chan	4bc083fd7f	Remove confusing comments	2026-06-12 21:51:52 +01:00
Owen Mansel-Chan	89c1d66f90	Add SPURIOUS and MISSING alerts based on existing comments	2026-06-12 21:51:50 +01:00
Owen Mansel-Chan	b9670ef831	Merge pull request #21966 from owen-mc/java/convert-to-inline-expectation-tests ... Java: convert all qlref tests to inline expectation tests using postprocessing	2026-06-12 21:48:49 +01:00
Anders Schack-Mulligen	ff61344afa	Cfg: Add support for until-statements.	2026-06-12 13:55:05 +02:00
Anders Schack-Mulligen	f3ec7087e3	Cfg: Fix type.	2026-06-12 10:02:48 +02:00
Owen Mansel-Chan	29b0c286a7	Fix 3 more tests	2026-06-11 23:40:14 +02:00
Owen Mansel-Chan	a4bf2b8f58	Fix 3 tests	2026-06-11 22:59:39 +02:00
Owen Mansel-Chan	a375e186ed	Third pass	2026-06-11 21:53:22 +02:00
Owen Mansel-Chan	3693185b6b	Second pass	2026-06-10 09:14:47 +02:00
Owen Mansel-Chan	1c1d26453d	First pass converting qlref tests to inline expectation with postprocess	2026-06-10 07:46:42 +02:00
Anders Schack-Mulligen	01173bf383	Cfg: Fold getTryInit into indexed getBody.	2026-06-08 14:03:12 +02:00
Owen Mansel-Chan	cd2398aeea	Merge pull request #21936 from github/workflow/coverage/update ... Update CSV framework coverage reports	2026-06-04 12:45:21 +01:00
Sotiris Dragonas	d6892eaf0d	Merge pull request #21900 from github/bazookamusic/range-analysis-bound-move-to-shared ... Bound.qll - Replace utility for range analysis duplicate across java and cs with shared file	2026-06-04 12:45:11 +02:00
BazookaMusic	d2972cb53f	Add back alias for module	2026-06-04 11:08:49 +02:00
github-actions[bot]	5576d30780	Add changed framework coverage reports	2026-06-04 01:04:50 +00:00
Owen Mansel-Chan	52f2a5825a	Merge pull request #21804 from github/copilot/add-tests-for-models ... Java: Update CWE-918 model coverage for Apache HttpClient `execute` sinks	2026-06-03 12:55:56 +01:00
BazookaMusic	f34275636c	No duplicate Ssa and remove release changenot	2026-06-03 11:54:24 +02:00
BazookaMusic	0a801440b9	review comments	2026-06-03 10:48:50 +02:00
Sotiris Dragonas	019a5c01ad	Merge branch 'main' into bazookamusic/range-analysis-bound-move-to-shared	2026-06-01 18:10:02 +02:00
BazookaMusic	71a363545a	formatting	2026-06-01 15:24:06 +02:00
github-actions[bot]	cfb18c2477	Post-release preparation for codeql-cli-2.25.6	2026-05-29 12:04:35 +00:00
github-actions[bot]	8b6f969cdb	Release preparation for version 2.25.6	2026-05-29 11:27:54 +00:00
Henry Mercer	9bc0c1b1ab	Revert "Release preparation for version 2.25.6"	2026-05-29 12:13:50 +01:00
Owen Mansel-Chan	d95d99848c	Build RequestBuilder more realistically	2026-05-28 11:05:40 +01:00
Owen Mansel-Chan	8937e22735	Add summary models for org.apache.http.client.methods.RequestBuilder ... Generated by GPT 5.3-codex, verified by me.	2026-05-28 10:56:37 +01:00
Owen Mansel-Chan	37589dd8a0	Improve how org.apache.http.client.HttpClient is created in test	2026-05-28 10:30:43 +01:00
Owen Mansel-Chan	a159dc1c66	Change variable name in test	2026-05-28 10:28:14 +01:00
BazookaMusic	acb5c0e70f	missed changes	2026-05-27 17:23:45 +02:00
BazookaMusic	6042adebae	move identical java and cs bound.qll to shared library	2026-05-27 17:23:28 +02:00
github-actions[bot]	44a914e40f	Release preparation for version 2.25.6	2026-05-25 10:23:26 +00:00
Óscar San José	996e79131e	Merge branch 'main' into post-release-prep/codeql-cli-2.25.5	2026-05-22 16:32:30 +02:00
Óscar San José	c25398ea0c	Merge pull request #21868 from github/copilot/bump-jackson-core-to-2150 ... Bump jackson-core to 2.18.6 in ferstl-depgraph-dependencies (CVE-2025-52999)	2026-05-21 16:18:15 +02:00
Owen Mansel-Chan	2070dafeb2	Java: add ForStmt wrapper class	2026-05-21 13:41:29 +01:00
copilot-swe-agent[bot]	0f3c9ab483	Fix remaining macOS bash 3.2 portability issues in update script (step 5)	2026-05-21 12:07:45 +00:00
copilot-swe-agent[bot]	8170c207bd	Fix macOS bash 3.2 heredoc-in-$() portability issue in update script	2026-05-21 09:57:10 +00:00