codeql

mirror of https://github.com/github/codeql.git synced 2026-04-29 10:45:15 +02:00

Author	SHA1	Message	Date
Alvaro Muñoz	8a9ec88b36	feat(matrix): Add support for flow through matrix vars	2024-02-28 13:21:29 +01:00
Alvaro Muñoz	447b65e7a9	Add script to build full DBs (testproj ones remove source code origin)	2024-02-28 12:37:41 +01:00
Alvaro Muñoz	8e7e5d03a5	fix(test): Add expected files	2024-02-28 11:15:38 +01:00
Mathew Payne	409d35ba1f	Merge pull request #23 from GitHubSecurityLab/IAC_queries feat(queries): Migrate queries from AdvancedSecurity repo	2024-02-27 20:11:12 +00:00
Alvaro Muñoz	fe976faf6a	feat(queries): Migrate queries from AdvancedSecurity repo	2024-02-27 15:20:35 +01:00
Alvaro Muñoz	c29f3a7779	Merge pull request #21 from GitHubSecurityLab/refactor_env_access refactor env access	2024-02-26 13:02:33 +01:00
Alvaro Muñoz	98f3a1e7bf	fix(env): Improve env access support	2024-02-26 10:43:55 +01:00
Alvaro Muñoz	645177cc80	Account for github.event.label check as a sanitizer for untrusted checkout	2024-02-26 09:39:42 +01:00
Alvaro Muñoz	1458434504	Merge branch 'master' of https://github.com/GitHubSecurityLab/codeql-actions	2024-02-23 11:54:41 +01:00
Alvaro Muñoz	f513a19c24	fix: restrict EnvCtxAccessExpr to Env decarlations on the same file	2024-02-23 11:53:47 +01:00
Alvaro Muñoz	f5355e722d	Merge pull request #20 from GitHubSecurityLab/untrusted_checkout	2024-02-22 15:52:08 +01:00
Alvaro Muñoz	68f15f2b85	rename query id	2024-02-22 13:14:53 +01:00
Alvaro Muñoz	ecefb7ffb5	feat(untrusted checkout query): Add new query and tests	2024-02-22 13:12:37 +01:00
Alvaro Muñoz	d0b904a590	Fix QLpack names	2024-02-21 21:57:45 +01:00
Alvaro Muñoz	7a1369d9d0	Merge pull request #19 from GitHubSecurityLab/steps	2024-02-21 18:38:44 +01:00
Jorge	9e2be7d674	Apply suggestions from code review Co-authored-by: Alvaro Muñoz <pwntester@github.com>	2024-02-21 17:27:39 +01:00
Alvaro Muñoz	d6f6e1fc0b	Merge pull request #18 from GitHubSecurityLab/triggers feat(triggers): New query and support for trigger-based severity decisions	2024-02-21 16:51:16 +01:00
Alvaro Muñoz	3d5567d698	Update ql/lib/codeql/actions/Ast.qll Co-authored-by: Jorge <46056498+jorgectf@users.noreply.github.com>	2024-02-21 16:50:44 +01:00
Alvaro Muñoz	a28f8e90f0	Update ql/lib/ext/tj-actions_branch-names.model.yml	2024-02-21 16:50:33 +01:00
Jorge	3ca7adab4f	Merge branch 'master' into steps	2024-02-21 15:31:42 +01:00
jorgectf	e1d6c7dac4	Add some steps	2024-02-21 15:29:27 +01:00
Alvaro Muñoz	a2b0a01298	fix: fix merge conflict	2024-02-21 10:57:51 +01:00
Alvaro Muñoz	ea29a09fd7	feat(triggers): New query for critical issues Adds a new query and the required changes to be able to account for the trigger events so that we dont report issues if they are not likely exploitable.	2024-02-21 10:56:17 +01:00
Alvaro Muñoz	3aa4f7f1af	feat(triggers): Add getEnclosingWorkflowStmt to Statement class	2024-02-21 10:56:17 +01:00
Alvaro Muñoz	3814462266	feat(triggers): New query for critical issues Adds a new query and the required changes to be able to account for the trigger events so that we dont report issues if they are not likely exploitable.	2024-02-21 10:23:37 +01:00
Alvaro Muñoz	4b9cec79dc	Merge pull request #17 from GitHubSecurityLab/reusable_workflow_models feat(reusable-workflow-models): Reusable workflow MaD	2024-02-21 10:20:40 +01:00
Alvaro Muñoz	a2210dca79	feat(triggers): Add getEnclosingWorkflowStmt to Statement class	2024-02-20 21:48:29 +01:00
Alvaro Muñoz	c84e64e76c	Merge pull request #16 from GitHubSecurityLab/model-gen-queries feat(model-generation): Add more model generation queries	2024-02-20 12:05:12 +01:00
Alvaro Muñoz	010d7df71d	feat(reusable-workflow-models): Reusable workflow MaD Add support to define sources/sinks/summaries for Reusable Workflows as MaD entries.	2024-02-20 11:58:54 +01:00
Alvaro Muñoz	1d582a4c4d	feat(model-generation): Add more model generation queries Add new queries for finding reusable workflows that behave as summaries, sources or sinks. Add new query for finding composite actions that behave as sinks. Add `github.event.inputs` context to the regular expression matching input var accesses.	2024-02-20 10:50:02 +01:00
jorgectf	334fda18ba	Fix copy workflow	2024-02-16 16:39:40 +01:00
Jorge	5cb9c21e05	Fetch before push	2024-02-16 16:06:05 +01:00
Alvaro Muñoz	55ff6ff8ee	Merge pull request #15 from GitHubSecurityLab/copy-workflow Add copy workflow	2024-02-16 16:05:08 +01:00
Alvaro Muñoz	7c3503e6c7	fix: remove debug leftovers	2024-02-16 16:03:38 +01:00
Jorge	4e44444d5a	Add copy workflow	2024-02-16 16:03:01 +01:00
Alvaro Muñoz	43a55e80a9	feat(model-generator): New qls for modelling composite actions	2024-02-16 16:02:10 +01:00
Alvaro Muñoz	8ae1e26d5d	fix(action): qls reference	2024-02-16 15:49:29 +01:00
Alvaro Muñoz	76f245b337	feat(actions): use published actions packs	2024-02-16 15:34:20 +01:00
Alvaro Muñoz	8e59fb7558	fix(actions): ql pack installation	2024-02-16 14:47:34 +01:00
Alvaro Muñoz	003b8cc8c0	fix(actions): ql pack installation	2024-02-16 14:44:47 +01:00
Alvaro Muñoz	13c5ec07b4	fix(actions): ql pack installation	2024-02-16 14:41:47 +01:00
Alvaro Muñoz	b3bab160d2	fix(actions): ql pack installation	2024-02-16 14:41:21 +01:00
Alvaro Muñoz	41639dd0e2	fix(actions): ql pack installation	2024-02-16 14:37:43 +01:00
Alvaro Muñoz	b11d8dad49	fix(actions): ql pack installation	2024-02-16 14:31:07 +01:00
Alvaro Muñoz	04a2ae9ad3	fix(actions): ql pack installation	2024-02-16 14:29:03 +01:00
Alvaro Muñoz	a94793fc09	fix(actions): pass the qlpack dirs	2024-02-16 14:14:53 +01:00
Alvaro Muñoz	e9f3006204	fix(actions): pass the qlpack dirs	2024-02-16 14:10:52 +01:00
Alvaro Muñoz	c58c4e0d54	feat(actions): refactor as composite action to be able to pass env vars	2024-02-16 14:06:46 +01:00
Alvaro Muñoz	e2699c31f8	feat(action): clone and install local packs	2024-02-16 13:56:58 +01:00
Alvaro Muñoz	959a974c8b	feat(action): clone pack (not use the registry)	2024-02-16 13:32:05 +01:00

1 2 3

103 Commits