codeql

mirror of https://github.com/github/codeql.git synced 2026-01-15 23:44:47 +01:00

Author	SHA1	Message	Date
Jami	33955ee4ab	Merge pull request #11623 from jcogs33/jcogs33/exclude-funcexpr-from-dataflowtargetapi Java/C#: exclude `FunctionalExpr`s from `DataFlowTargetApi`	2022-12-14 12:22:50 -05:00
Jami	b248b44983	Merge pull request #11668 from jcogs33/jcogs33/update-isjdkinternal Java: update `isJdkInternal`	2022-12-14 08:33:18 -05:00
Jami	f61b817751	Merge pull request #11631 from jcogs33/jcogs33/update-externalapi-charpredicate Java/C#: add `isUninteresting` to `ExternalApi` characteristic predicate	2022-12-14 08:25:02 -05:00
Jami Cogswell	c956589945	Java: remove dot before percent	2022-12-13 17:46:20 -05:00
Jami Cogswell	dee251e5d6	Java: update isJdkInternal	2022-12-13 17:46:20 -05:00
Jami	11bd35661c	Merge branch 'main' into jcogs33/exclude-funcexpr-from-dataflowtargetapi	2022-12-13 17:10:39 -05:00
Jami Cogswell	a889cc4f65	Java/C#: remove isTestLibrary	2022-12-13 10:34:04 -05:00
Jami Cogswell	1c06378a53	Java: exclude FunctionalExprs from DataFlowTargetApi	2022-12-13 09:54:05 -05:00
Jami Cogswell	08b5cf1415	Java/C#: fix formatting issue	2022-12-12 20:24:00 -05:00
Jami	84b69deb55	Merge branch 'main' into jcogs33/update-externalapi-charpredicate	2022-12-12 16:01:22 -05:00
Jami Cogswell	5113041623	Java: add isParameterless predicate to Constructor class	2022-12-12 13:28:00 -05:00
Jami Cogswell	16d8e8e931	Java: exclude parameterless constructors from DataFlowTargetApi	2022-12-12 13:28:00 -05:00
Erik Krogh Kristensen	636d5e341c	Merge pull request #11652 from erik-krogh/static-useInstanceOf Java/C#/GO: Use instanceof in more places	2022-12-12 17:52:04 +01:00
Edward Minnix III	0ebfee8b11	Merge pull request #11241 from egregius313/egregius313/webview-file-access Java: Query to detect Android Webview file access	2022-12-12 11:12:26 -05:00
erik-krogh	873d3553cd	Merge branch 'main' into static-useInstanceOf	2022-12-12 15:36:54 +01:00
erik-krogh	8262fbbfb5	Java/C#/GO: Use instanceof in more places	2022-12-11 18:32:19 +01:00
Jami Cogswell	cde93a39cd	Java: add isParameterless predicate to Constructor class	2022-12-09 15:51:40 -05:00
Edward Minnix III	4278997a2c	Reword WebView file access query description Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>	2022-12-09 11:36:09 -05:00
Edward Minnix III	8c8e71dd82	Grammar, concision, and style edits Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>	2022-12-09 11:35:02 -05:00
Michael Nebel	67732cbfa0	Java: Remove unneeded import for RegenerateModels.py.	2022-12-09 15:04:43 +01:00
Michael Nebel	2cb88037a4	C#/Java: Rename Negative Summary Model to Neutral Model in conversion and generator tooling.	2022-12-09 15:04:43 +01:00
Michael Nebel	3af00a8f3f	Java: Rename Negative Summary Model to Neutral Model.	2022-12-09 15:04:43 +01:00
Michael Nebel	079d48c42a	Sync files.	2022-12-09 15:04:42 +01:00
Jami Cogswell	f48cc9f40e	Java: remove previous uses of isUninteresting	2022-12-08 16:56:43 -05:00
Jami Cogswell	29046e7960	Java: update ExternalApi characteristic predicate to include not isUninteresting	2022-12-08 12:31:46 -05:00
Henry Mercer	d196704a2d	Merge pull request #11574 from github/henrymercer/check-query-ids Add a PR check to ensure query IDs are unique	2022-12-08 15:31:26 +00:00
Chris Smowton	85ee4e6ca1	Merge pull request #11578 from retanoj/MybatisSqli Java: Add MyBatis Sql Injection no @Param case	2022-12-08 13:53:44 +00:00
Henry Mercer	3036b15af2	Merge branch 'main' into henrymercer/check-query-ids	2022-12-08 13:05:46 +00:00
Chris Smowton	0d2474bd55	Autoformat	2022-12-08 11:30:53 +00:00
Chris Smowton	49bc524fd0	Merge remote-tracking branch 'origin/rc/3.8' into smowton/admin/merge-rc38-into-main	2022-12-08 11:12:30 +00:00
retanoj	0edfc6e01e	greedy matching	2022-12-08 09:23:24 +08:00
Edward Minnix III	170c9af9e8	Merge pull request #11238 from egregius313/egregius313/webview-setjavascriptenabled Java: Query for detecting enabling Javascript in Android WebSettings	2022-12-07 09:31:58 -05:00
retanoj	9cfeaeb18e	Merge branch 'main' into MybatisSqli	2022-12-07 21:19:08 +08:00
Tony Torralba	cabce5fb36	Merge pull request #11549 from mbaluda/mbaluda/insecure-cookie Java: Support interprocedural setting of cookie security	2022-12-07 12:14:46 +01:00
retanoj	8ee418405b	consider blankspace / comma /dot field	2022-12-07 10:06:39 +08:00
Ed Minnix	1c81f8d8d5	Apply suggestion from docs review	2022-12-06 15:32:54 -05:00
retanoj	b0c86d8e51	change string match to regex match	2022-12-06 21:50:09 +08:00
Michael Nebel	8e4190d84a	Merge pull request #11516 from michaelnebel/java/externalflowcleanup Java: Cleanup imports of `ExternalFlow`	2022-12-06 14:26:39 +01:00
retanoj	2bbd37f9ab	change code snippet to `or` condition	2022-12-06 19:27:29 +08:00
retanoj	82d0551215	Merge branch 'main' into MybatisSqli	2022-12-06 17:19:30 +08:00
retanoj	d2140eb4b1	MyBatisAnnotationSqlInjection no @Param case	2022-12-06 17:07:49 +08:00
Henry Mercer	2627632a41	Java: Fix duplicate IDs	2022-12-05 19:06:03 +00:00
Mauro Baluda	7c4b76b08b	Update InsecureCookie.ql	2022-12-05 12:55:53 +01:00
Michael Nebel	a9ba964be4	Java: Update the Java model re-generate script.	2022-12-05 11:39:44 +01:00
Michael Nebel	243b94b54a	Java/C#: Delete old model generator scripts and rename the new ones.	2022-12-05 11:39:44 +01:00
Mauro Baluda	16d7dc0853	Restrict DF configuration	2022-12-05 11:02:19 +01:00
Michael Nebel	4c7cdc6245	Java: Remove unneeded imports of ExternalFlow.qll.	2022-12-05 09:49:38 +01:00
Ed Minnix	7c4bd509a7	Java: add AssetLoader example to WebView file access documentation	2022-12-02 14:43:52 -05:00
Jami	edfcc0cd6d	Merge pull request #11487 from jcogs33/jcogs33/supportedexternalapis-telemetry-query Java/C#: add SupportedExternalApis telemetry query	2022-12-02 13:27:51 -05:00
Mauro Baluda	f3f8f35069	Update InsecureCookie.ql Support interprocedural setting of cookie security	2022-12-02 17:37:23 +01:00

1 2 3 4 5 ...

4220 Commits