codeql

mirror of https://github.com/github/codeql.git synced 2026-04-26 09:15:12 +02:00

Author	SHA1	Message	Date
Edward Minnix III	8d88af1af0	Apply docs review suggestions Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>	2023-08-17 13:05:38 -04:00
Ed Minnix	4eb1035dfe	Documentation fixes	2023-08-17 13:05:38 -04:00
Ed Minnix	655a98452a	Remove `escapeHTML` models	2023-08-17 13:05:37 -04:00
Ed Minnix	f53496b2a7	Added documentation for trust-boundary-violation sink	2023-08-17 13:05:37 -04:00
Ed Minnix	d468ea9e90	Add default sanitizers	2023-08-17 13:05:37 -04:00
Ed Minnix	b305962c9a	Use more appropriate description	2023-08-17 13:05:37 -04:00
Ed Minnix	a36c12ff1f	Add trust-boundary-violation sink kind	2023-08-17 13:05:37 -04:00
Ed Minnix	60642c52aa	Use non-extending subtype	2023-08-17 13:05:37 -04:00
Ed Minnix	e22a67e7fe	Remove unnecessary methods	2023-08-17 13:05:37 -04:00
Ed Minnix	a3a4c31911	Replace servlet source node with RemoteFlowSource	2023-08-17 13:05:37 -04:00
Edward Minnix III	929090a847	Typos and style fixes Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>	2023-08-17 13:05:37 -04:00
Ed Minnix	52ebf9fff6	Java: Add trust boundary change note	2023-08-17 13:05:37 -04:00
Ed Minnix	172b8a6967	Documentation fixes	2023-08-17 13:05:37 -04:00
Ed Minnix	b567ec875a	Documentation	2023-08-17 13:05:37 -04:00
Ed Minnix	55fae2daaa	Added ESAPI sanitizer	2023-08-17 13:05:37 -04:00
Ed Minnix	97d6e82869	Stubs for `org.owasp.esapi`	2023-08-17 13:05:37 -04:00
Ed Minnix	f58590c6a9	Trust Boundary Work	2023-08-17 13:05:37 -04:00
Ed Minnix	2aba425464	TrustBoundary test ql file	2023-08-17 13:05:36 -04:00
Ed Minnix	ab9f0240d3	Add taint steps for HTML encoding methods	2023-08-17 13:05:36 -04:00
Ed Minnix	b9f2da7875	Comments and import fixes	2023-08-17 13:05:36 -04:00
Ed Minnix	3e7444cd66	Style fixes	2023-08-17 13:05:36 -04:00
Ed Minnix	15370506b8	Add missing security severity	2023-08-17 13:05:36 -04:00
Ed Minnix	a8b7e70d01	Convert trust boundary models to MaD	2023-08-17 13:05:36 -04:00
Ed Minnix	76438f13b6	Trust Boundary Query	2023-08-17 13:05:36 -04:00
Edward Minnix III	41a527cf72	Merge pull request #13934 from egregius313/egregius313/add-dashes-to-sha-algorithms Java: Add dashes to SHA algorithm names in `Encryption.qll`	2023-08-17 13:03:15 -04:00
Paolo Tranquilli	700f383bab	Merge pull request #13988 from github/redsun82/swift-version-macro Swift: fix version check macro to be lexicographic	2023-08-17 15:34:04 +02:00
Anders Schack-Mulligen	e27aad9d6c	Merge pull request #13987 from aschackmull/java/rangeanalysis-joinorder-fix Java: Join-order fix in RangeAnalysis.	2023-08-17 14:47:26 +02:00
Mathias Vorreiter Pedersen	af7fe89c5a	Merge pull request #13989 from MathiasVP/add-invalid-ptr-false-positive-3 C++: Add `cpp/invalid-pointer-deref` false positive	2023-08-17 12:50:55 +01:00
Mathias Vorreiter Pedersen	5f5a87e2c7	C++: Add false positive.	2023-08-17 12:13:16 +01:00
Paolo Tranquilli	75cc1d8f75	Swift: fix version check macro to be lexicographic	2023-08-17 12:19:28 +02:00
Anders Schack-Mulligen	f8a0b6cd22	Java: Add nomagic	2023-08-17 11:20:02 +02:00
Anders Schack-Mulligen	0afda68ba1	Java: Join-order fix in RangeAnalysis.	2023-08-17 11:07:24 +02:00
Tom Hvitved	7cc01ea8b5	Merge pull request #13595 from hvitved/csharp/use-shared-cfg-pack C#: Adopt shared CFG construction library from shared `controlflow` pack	2023-08-17 10:37:09 +02:00
Tony Torralba	67c557115b	Merge pull request #13915 from github/workflow/coverage/update Update CSV framework coverage reports	2023-08-17 10:03:04 +02:00
Tom Hvitved	fe0f766994	Merge pull request #13966 from hvitved/csharp/mad-repr-fix C#: Fix `getMadRepresentationSpecific`	2023-08-17 09:40:41 +02:00
github-actions[bot]	b0da1ef892	Add changed framework coverage reports	2023-08-17 00:14:13 +00:00
Ian Lynagh	1fb4e13e0a	Merge pull request #13960 from igfoo/igfoo/parent Kotlin: Handle Kotlin 2 parents better	2023-08-16 16:27:15 +01:00
Mathias Vorreiter Pedersen	e56cd0b498	Merge pull request #13984 from MathiasVP/fix-expected-for-swift Swift: Fix expected files after a semantic merge conflict	2023-08-16 15:06:27 +01:00
yoff	7f2f6f14e7	Merge pull request #13729 from yoff/python/model-aws-lambdas Python/JavaScript: Shared module for serverless functions	2023-08-16 15:14:08 +02:00
Mathias Vorreiter Pedersen	b2c7c57815	Swift: Fix expected files after a semantic merge conflict.	2023-08-16 13:52:06 +01:00
Mathias Vorreiter Pedersen	66d13dc0d5	Merge pull request #13981 from MathiasVP/fix-orig-delta-for-subtraction C++: Fix original delta calculation for subtraction in new range analysis	2023-08-16 13:28:21 +01:00
Mathias Vorreiter Pedersen	20df63f26d	C++: Respond to review comments.	2023-08-16 12:50:41 +01:00
Jeroen Ketema	591565a0db	Merge pull request #13971 from jketema/float C++: Update test after float128 related extractor changes	2023-08-16 13:11:35 +02:00
Mathias Vorreiter Pedersen	5e14b5cca7	C++: 'origDelta' should always be 'odLeft' when deriving subtraction ranges.	2023-08-16 12:10:31 +01:00
yoff	b2988e5516	Update python/ql/lib/change-notes/2023-08-07-serverless-sources.md Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2023-08-16 12:56:39 +02:00
Mathias Vorreiter Pedersen	986aa74db7	Merge pull request #13972 from MathiasVP/range-analysis-for-sub-expr C++: Support subtraction in the new range analysis	2023-08-16 11:51:11 +01:00
Rasmus Wriedt Larsen	c55b0982f7	Merge pull request #13819 from yoff/python/relax-module-resolution Python: Relax module resolution	2023-08-16 12:04:49 +02:00
Michael Nebel	365b10183f	Merge pull request #13744 from tamasvajk/standalone/integration-test C#: Add integration test for standalone extraction	2023-08-16 10:50:12 +02:00
Stephan Brandauer	20254c3d0a	Merge pull request #13886 from github/kaeluka/java-automodel-variadic-args Java: automodel application mode: use endpoint class like in framework mode	2023-08-16 08:49:01 +02:00
Ed Minnix	cafd08521e	Add change note	2023-08-15 23:46:12 -04:00

1 2 3 4 5 ...

57754 Commits