codeql

mirror of https://github.com/github/codeql.git synced 2026-05-14 11:19:27 +02:00

Author	SHA1	Message	Date
Anders Schack-Mulligen	81e1ab7aab	Merge pull request #21808 from aschackmull/cfg/switch-pattern-eval Cfg: Rework CFG for switch case patterns.	2026-05-08 12:48:44 +02:00
Anders Schack-Mulligen	6b6df374fa	C#/Java: Accept test changes.	2026-05-07 15:07:31 +02:00
Anders Schack-Mulligen	072166ba88	C#/Java: Adjust Guards instantiations.	2026-05-07 13:46:52 +02:00
Anders Schack-Mulligen	48785a0a76	Cfg: Rework CFG for switch case patterns.	2026-05-07 13:07:07 +02:00
github-actions[bot]	7610277199	Post-release preparation for codeql-cli-2.25.4	2026-05-05 10:10:06 +00:00
github-actions[bot]	88e1d86c27	Release preparation for version 2.25.4	2026-05-05 09:34:30 +00:00
Anders Schack-Mulligen	f663eccf66	Merge pull request #21781 from aschackmull/java/rm-deprecated Java: Delete old deprecated code.	2026-05-04 11:35:09 +02:00
Anders Schack-Mulligen	c7904b12c8	Java: Fix reference in deprecated code.	2026-05-04 10:52:27 +02:00
Anders Schack-Mulligen	17fded4aa5	Java: Delete old deprecated code.	2026-05-04 10:52:27 +02:00
Owen Mansel-Chan	87c35e6401	Merge pull request #21654 from MarkLee131/fix/sensitive-log-hash-sanitizer Java: treat hash/encrypt/digest methods as sensitive-log sanitizers	2026-04-30 13:21:03 +01:00
Tom Hvitved	a473fdb709	Merge pull request #21759 from hvitved/csharp/cfg-params C#: Include parameters and their defaults in the CFG	2026-04-30 11:31:06 +02:00
MarkLee131	28a6ff208c	Merge remote-tracking branch 'origin/main' into fix/sensitive-log-hash-sanitizer # Conflicts: # java/ql/test/query-tests/security/CWE-532/SensitiveLogInfo.expected # java/ql/test/query-tests/security/CWE-532/Test.java	2026-04-29 20:59:59 +08:00
MarkLee131	51e2a5418b	Java: move EncryptedSensitiveMethodCall into Sanitizers.qll Address review feedback by moving the shared method-name-based encryption/hash/digest check into Sanitizers.qll, and reference it from both CleartextStorageQuery.qll and SensitiveLoggingQuery.qll instead of duplicating the definition.	2026-04-29 20:56:36 +08:00
MarkLee131	75162bb9eb	Update java/ql/test/query-tests/security/CWE-532/Test.java Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>	2026-04-29 20:53:58 +08:00
MarkLee131	49d014cbac	Merge branch 'main' into fix/trust-boundary-regexp-barrier	2026-04-29 20:48:22 +08:00
MarkLee131	d27ee86242	Java: refactor trust-boundary sanitizers into TrustBoundaryValidationSanitizer subclasses Address review feedback by introducing dedicated subclasses of TrustBoundaryValidationSanitizer for SimpleTypeSanitizer, RegexpCheckBarrier, and the HttpServletSession type check, so isBarrier only references the abstract class.	2026-04-29 20:46:11 +08:00
Jack Nørskov Jørgensen	0192ffab07	Merge pull request #21751 from github/jacknojo/move_java_generated_mads Move generated MaDs into modelgenerator/	2026-04-29 14:33:58 +02:00
Tom Hvitved	99b5cecb18	Java: Adapt to changes in shared CFG library	2026-04-29 14:03:06 +02:00
github-actions[bot]	be8c35ad8c	Add changed framework coverage reports	2026-04-25 00:39:28 +00:00
Jack Nørskov Jørgensen	6ec250951a	Move generated MaDs for Java into modelgenerator/	2026-04-24 13:24:31 +02:00
Owen Mansel-Chan	9fbe447428	Merge pull request #21749 from github/copilot/add-hibernate-sql-injection-tests Add Hibernate SQL injection sink models and coverage	2026-04-24 09:36:46 +01:00
copilot-swe-agent[bot]	083909ee3b	Add Java change note for Hibernate sinks Agent-Logs-Url: https://github.com/github/codeql/sessions/41769e74-a435-4aaf-b5f7-92060f6cd84e Co-authored-by: owen-mc <62447351+owen-mc@users.noreply.github.com>	2026-04-23 14:10:29 +00:00
copilot-swe-agent[bot]	25d232b815	Model additional Hibernate query sinks Agent-Logs-Url: https://github.com/github/codeql/sessions/fc2c7f71-3493-4bf7-9136-34571a1d4b47 Co-authored-by: owen-mc <62447351+owen-mc@users.noreply.github.com>	2026-04-23 13:41:03 +00:00
Tom Hvitved	eee5b067b3	Merge pull request #21743 from hvitved/cfg/body-parts C#: Move handling of callables into shared control flow library	2026-04-23 14:10:46 +02:00
copilot-swe-agent[bot]	081ad03b4b	Add Hibernate SQL injection sink tests Agent-Logs-Url: https://github.com/github/codeql/sessions/2e7aecca-63ea-489f-8b87-4cc557655919 Co-authored-by: owen-mc <62447351+owen-mc@users.noreply.github.com>	2026-04-23 10:04:52 +00:00
Owen Mansel-Chan	9f19791d8c	Merge branch 'main' into fix/path-injection-torealpath	2026-04-23 10:40:47 +01:00
Tom Hvitved	6ebf4ee394	Java: Adapt to changes in CFG library	2026-04-22 14:11:58 +02:00
Anders Schack-Mulligen	f912731cd4	Merge pull request #21565 from aschackmull/csharp/cfg2 C#: Replace CFG with the shared implementation	2026-04-21 15:50:38 +02:00
Kaixuan Li	af794ed3c0	Merge branch 'main' into fix/trust-boundary-regexp-barrier	2026-04-21 23:01:06 +10:00
Owen Mansel-Chan	6efb21314a	Merge pull request #21523 from owen-mc/docs/mad/barriers Document models-as-data barriers and barrier guards and add change notes	2026-04-21 13:49:19 +01:00
Owen Mansel-Chan	c91b5b3c2e	Merge pull request #21650 from MarkLee131/fix/sensitive-log-fp-regex Java: reduce false positives in sensitive-log	2026-04-21 13:48:32 +01:00
Michael B. Gale	58e9bad0a0	Merge pull request #21737 from github/post-release-prep/codeql-cli-2.25.3 Post-release preparation for codeql-cli-2.25.3	2026-04-21 11:48:30 +02:00
github-actions[bot]	a0bab539bb	Post-release preparation for codeql-cli-2.25.3	2026-04-20 12:40:34 +00:00
Owen Mansel-Chan	9f310c20f3	Merge pull request #21734 from owen-mc/java/fix-partial-path-traversal Java: fix bug in partial path traversal	2026-04-20 11:52:55 +01:00
github-actions[bot]	c861d99802	Release preparation for version 2.25.3	2026-04-20 09:27:23 +00:00
MarkLee131	92d205d1a8	Use set literal for getCommonSensitiveInfoFPRegex Replace the five-way result = ... or result = ... disjunction with a single equality on a set literal. Addresses the CodeQL style alert "Use a set literal in place of or" reported by the self-scan on this PR. Pure refactor, no semantic change.	2026-04-19 23:29:07 -04:00
Owen Mansel-Chan	c6f641eac4	Add change note Co-authored-by: Copilot <copilot@github.com>	2026-04-19 07:18:48 +01:00
Owen Mansel-Chan	6d4a3974ce	Fix bug so `+= File.separator` is recognized	2026-04-19 07:18:42 +01:00
Owen Mansel-Chan	6099c5d034	Add SPURIOUS test for `+= File.separator`	2026-04-19 07:18:00 +01:00
Owen Mansel-Chan	63d20a54d4	Use inline expectations with second test Co-authored-by: Copilot <copilot@github.com>	2026-04-19 07:17:05 +01:00
Owen Mansel-Chan	dca7046d8c	Make inline expectation comments specify query	2026-04-18 10:35:15 +01:00
Salah Baddou	fb2d53e72a	Address review: inline Woodstox into XmlParsers, move changelog to lib	2026-04-17 18:46:51 +04:00
Salah Baddou	f5131f9bc6	Java: Add XXE sink model for Woodstox WstxInputFactory `com.ctc.wstx.stax.WstxInputFactory` overrides `createXMLStreamReader`, `createXMLEventReader` and `setProperty` from `XMLInputFactory`, so the existing `XmlInputFactory` model in `XmlParsers.qll` does not match calls where the static receiver type is `WstxInputFactory` (or its supertype `org.codehaus.stax2.XMLInputFactory2`). Woodstox is vulnerable to XXE in its default configuration, so these missed sinks were false negatives in `java/xxe`. This adds a scoped framework model under `semmle/code/java/frameworks/woodstox/WoodstoxXml.qll` (registered in the `Frameworks` module of `XmlParsers.qll`) that recognises these calls as XXE sinks and treats the factory as safe when both `javax.xml.stream.supportDTD` and `javax.xml.stream.isSupportingExternalEntities` are disabled — mirroring the existing `XMLInputFactory` safe-configuration logic.	2026-04-17 18:46:51 +04:00
Owen Mansel-Chan	8f17b73796	Fix link formatting in change notes	2026-04-14 15:27:37 +01:00
Owen Mansel-Chan	c86ba38a4e	Add change notes	2026-04-14 15:27:31 +01:00
Henry Mercer	43c9b95e6f	Merge branch 'main' into post-release-prep/codeql-cli-2.25.2	2026-04-14 13:56:52 +01:00
Owen Mansel-Chan	7458674470	Merge pull request #21584 from owen-mc/shared/update-mad-comments Shared: update code comments explaining models-as-data format to include barriers and barrier guards	2026-04-14 09:30:28 +01:00
Anders Schack-Mulligen	6ffed8523c	Cfg/Java: Move InstanceOfExpr CFG into shared lib.	2026-04-10 15:47:09 +02:00
Anders Schack-Mulligen	0b6c416fd4	Cfg: Support short-circuiting compound assignments.	2026-04-10 15:47:08 +02:00
Anders Schack-Mulligen	a53cffc121	Cfg: Support GotoStmt.	2026-04-10 15:47:07 +02:00

1 2 3 4 5 ...

14408 Commits