codeql

mirror of https://github.com/github/codeql.git synced 2026-03-28 10:18:17 +01:00

Author	SHA1	Message	Date
Anders Schack-Mulligen	3b676d432f	Merge pull request #5900 from artem-smotrakov/unsafe-jackson-deserialization Java: Unsafe deserialization with Jackson	2021-08-02 12:45:30 +02:00
Sauyon Lee	fd02dcdf2e	Java: Add models for collection constructors	2021-07-22 07:23:26 -07:00
Artem Smotrakov	158a75e5a1	Import UnsafeDeserializationQuery in unsafeDeserialization.ql	2021-07-20 10:14:50 +02:00
Anders Schack-Mulligen	d1f21a854a	Merge pull request #6042 from joefarebrother/spring-http [Java] Model spring `http` package	2021-07-19 11:24:41 +02:00
Anders Schack-Mulligen	c32a75a1b3	Merge pull request #6183 from smowton/smowton/feature/javax-json-models Add models of the jakarta/javax.json package	2021-07-19 11:19:21 +02:00
Chris Smowton	9cde13bf82	Note spurious results that stem from weak updates to synthetic fields.	2021-07-16 09:44:36 +01:00
Chris Smowton	7b984cc2b0	Add models for Apache Commons Lang's Mutable container	2021-07-15 14:58:25 +01:00
Joe Farebrother	f3ab295f0f	Fix up tests	2021-07-15 10:34:21 +01:00
Joe Farebrother	bbc4d4855c	Move tests	2021-07-15 10:34:18 +01:00
Joe Farebrother	df74a142dd	Update for collection flow and add more tests	2021-07-15 10:33:33 +01:00
Joe Farebrother	8f89d748fe	Add spring tests	2021-07-15 10:33:33 +01:00
Sauyon Lee	1f97ac88c8	Fix tests	2021-07-14 05:05:17 -07:00
Sauyon Lee	eaef1c146c	Add generated tests	2021-07-14 05:05:16 -07:00
Anders Schack-Mulligen	04244b3c45	Merge pull request #5974 from github/sauyon/java/spring-webmultipart Model Spring `web.multipart`	2021-07-14 13:57:24 +02:00
Anders Schack-Mulligen	3c4cd15738	Merge pull request #5505 from joefarebrother/android-sql-convert Java: Convert Android SQL-related flow steps to CSV format	2021-07-14 13:56:55 +02:00
Sauyon Lee	51211c0394	Add stubs	2021-07-13 10:29:02 -07:00
Sauyon Lee	c2c7fee8df	Fix tests	2021-07-13 10:29:02 -07:00
Sauyon Lee	b01e6d49fb	Add generated tests	2021-07-13 10:29:01 -07:00
Chris Smowton	78fe0f810a	Add models for decode/encodePointer methods	2021-07-13 11:10:46 +01:00
Chris Smowton	cc4401b453	Add models of JsonPointer, JsonMergeDiff and JsonPatchBuilder	2021-07-12 18:08:45 +01:00
Chris Smowton	6bf931392b	Add missing model of JsonObjectBuilder.remove	2021-07-12 17:13:39 +01:00
Joe Farebrother	fc017b7934	Use ArrayElement of in flow step specifications	2021-07-02 14:46:31 +01:00
Anders Schack-Mulligen	3c6604daa7	Java: Fix subtypes interpretation.	2021-07-02 14:43:56 +02:00
Anders Schack-Mulligen	6813a79423	Java: Add test for override of Map.put highlighting problem.	2021-07-02 14:41:59 +02:00
Joe Farebrother	1e82c607ef	Mark failing tests as missing	2021-07-01 15:29:47 +01:00
Joe Farebrother	160f3b4312	Remove ArrayElement from sink specifications	2021-07-01 14:41:39 +01:00
Joe Farebrother	4bea33402c	Rename test labels for more clarity	2021-07-01 14:38:20 +01:00
Joe Farebrother	29f82fc81f	Use ArrayElementOf in Android sinks	2021-07-01 14:38:19 +01:00
Joe Farebrother	f4a59cc2e3	Convert tainted arrays to arrays of tainted elements in tests	2021-07-01 14:38:19 +01:00
Joe Farebrother	865477d020	Convert android tests to inline expectations	2021-07-01 14:38:19 +01:00
Joe Farebrother	7926d16844	Convert SQL sinks to CSV format	2021-07-01 14:38:19 +01:00
Anders Schack-Mulligen	cda5c22f6e	Merge pull request #5590 from github/sauyon/java-spring-errors Add models for Spring validation.Errors	2021-07-01 14:29:49 +02:00
Chris Smowton	753c878f48	Also cover jakarta version of javax.json, and some missed methods	2021-06-30 15:04:15 +01:00
Tony Torralba	a3e1b139c3	Fix spring stubs location	2021-06-30 12:56:45 +02:00
Tony Torralba	0bb9e464b2	Merge branch 'main' into atorralba/spring-beans	2021-06-30 12:55:10 +02:00
Tony Torralba	9d64cadb50	Adapt tests after applying changes from code review	2021-06-30 10:02:03 +02:00
Anders Schack-Mulligen	374859efb4	Merge pull request #6156 from smowton/smowton/feature/jax-rs-content-type-sensitivity Jax RS XSS Tests	2021-06-30 09:52:07 +02:00
Sauyon Lee	52b24118b3	Add tests for Spring validation.Errors	2021-06-29 12:01:23 -07:00
Chris Smowton	ba5dc3cdbc	Add models of the javax.json package	2021-06-29 15:21:01 +01:00
Sauyon Lee	534ab86900	Add models for Spring validation.Errors	2021-06-29 05:51:21 -07:00
Chris Smowton	48d4493146	Fix test indentation	2021-06-29 12:42:20 +01:00
Chris Smowton	9551321592	Fix LinkedMultiValueMap models and make tests more realistic	2021-06-29 12:40:57 +01:00
Chris Smowton	60179ce8f0	Genericise MultiValueMaps; remove non-longer-needed casts	2021-06-29 12:32:22 +01:00
Chris Smowton	916c7c576d	Remove superfluous (Object) casts	2021-06-29 12:28:42 +01:00
Chris Smowton	71f6d59646	Genericise test util functions	2021-06-29 12:27:03 +01:00
Chris Smowton	60126b406f	Clean up test Remove unused import; drop unused util methods and needless casts.	2021-06-29 12:20:47 +01:00
Anders Schack-Mulligen	1bd01a5eee	Update java/ql/test/library-tests/frameworks/spring/util/test.ql	2021-06-29 13:13:09 +02:00
Chris Smowton	3d270bbc50	Drop models for stringifying functions Per default stringification isn't taint-propagating in Java	2021-06-29 12:01:08 +01:00
Chris Smowton	0441098b18	Amend models of MultiValueMap.addAll overloads	2021-06-29 11:58:46 +01:00
Chris Smowton	5769f4718f	Add missing CollectionUtils model	2021-06-29 11:44:29 +01:00

1 2 3 4 5 ...

346 Commits