Stephan Brandauer
|
8f9ca33f59
|
add assignedToPropName feature to let the model improve number of false positives for XSS query
|
2022-06-29 15:15:38 +02:00 |
|
Stephan Brandauer
|
e1b9945383
|
fix bug in InputArgumentIndex feature
|
2022-06-29 15:15:38 +02:00 |
|
Stephan Brandauer
|
c1af1e0cc5
|
performance fixes
|
2022-06-29 15:15:38 +02:00 |
|
Stephan Brandauer
|
b1103b7c5a
|
use ? for unknown parameternames
|
2022-06-29 15:15:38 +02:00 |
|
Stephan Brandauer
|
d2b5cd1a45
|
add documentations and rename a feature
|
2022-06-29 15:15:38 +02:00 |
|
Stephan Brandauer
|
05f2bd6f0a
|
add functionInterfacesInFile and surroundingFunctionParameters features
|
2022-06-29 15:15:38 +02:00 |
|
Stephan Brandauer
|
4d6942cf06
|
documentation for calleeImports ATM feature
|
2022-06-29 15:15:38 +02:00 |
|
Stephan Brandauer
|
a35ec612e5
|
documentation for new feature
|
2022-06-29 15:15:38 +02:00 |
|
Stephan Brandauer
|
8b0075f2b4
|
ATM: new feature to list all imports in an endpoint's file
|
2022-06-29 15:15:38 +02:00 |
|
Esben Sparre Andreasen
|
d30316f1ea
|
use proper import instead of inlining
|
2022-06-29 15:15:38 +02:00 |
|
Esben Sparre Andreasen
|
6f5bc6c8a6
|
remove Input_ArgumentIndexAndAccessPathFromCallee
|
2022-06-29 15:15:38 +02:00 |
|
Esben Sparre Andreasen
|
04dfd0f5f3
|
add docstring examples
|
2022-06-29 15:15:38 +02:00 |
|
Esben Sparre Andreasen
|
ac956f93ad
|
address review comments
|
2022-06-29 15:15:38 +02:00 |
|
Esben Sparre Andreasen
|
006ac2599f
|
Apply suggestions from code review
Co-authored-by: Henry Mercer <henrymercer@github.com>
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
c2fc89c96d
|
fix semantic merge conflict
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
d196af4972
|
rename new features
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
1bba9a557a
|
add more features
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
6eeb8be082
|
improve feature documentation
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
751b807fbe
|
improve feature tests with more cases
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
0189206af2
|
improve access path strings
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
7c8549ca2f
|
support import in getSimpleAccessPath
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
553014ac51
|
support await in getSimpleAccessPath
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
ccdec2fb98
|
avoid using new feautes by default
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
53b33c0a32
|
add CompareFeatures.ql
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
9dc8774624
|
add generic tests for features
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
fdecb35c7c
|
Document EndpointFeatures.qll
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
0ed5785a15
|
add ParameterAccessPathSimpleFromArgumentTraversal
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
2948f5bc47
|
improve getSimpleAccessPath
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
e0e6e0eb9e
|
refactor calleeAccessPath feature to class
|
2022-06-29 15:15:37 +02:00 |
|
Stephan Brandauer
|
2581d183da
|
refactor getACallBasedTokenFeature to class-use
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
2dfa68dd2a
|
Add CalleeAccessPathSimpleFromArgumentTraversal
|
2022-06-29 15:15:37 +02:00 |
|
Esben Sparre Andreasen
|
dadc99b641
|
refactor EndpointFeatures.ql to use classes
|
2022-06-29 15:15:37 +02:00 |
|
Asger F
|
cc42f2f824
|
Merge pull request #8606 from asgerf/js/api-graph-api
JS/Python/Ruby: Document how API graphs should be interpreted
|
2022-05-30 10:49:14 +02:00 |
|
Tom Bolton
|
5830db786e
|
Merge pull request #9285 from github/codeql-ci/js-atm-new-release
JS: Bump version numbers of ML-powered packs after 0.3.0 release
|
2022-05-27 11:39:45 +01:00 |
|
tombolton
|
91fa17a05e
|
simplify imports in counting queries
|
2022-05-24 15:02:26 +01:00 |
|
tombolton
|
7e32614c25
|
refactor counting code into a library
|
2022-05-24 15:02:26 +01:00 |
|
tombolton
|
33964383d7
|
add individual per-security-query counting queries
|
2022-05-24 15:02:26 +01:00 |
|
github-actions[bot]
|
1fa2fd73f2
|
JS: Bump patch version of ML-powered library and query packs post-release
|
2022-05-24 10:40:45 +00:00 |
|
github-actions[bot]
|
53a25c8c42
|
JS: Bump minor version of ML-powered library and query packs
|
2022-05-24 10:34:26 +00:00 |
|
github-actions[bot]
|
1287925676
|
JS: Bump patch version of ML-powered model pack post-release
|
2022-05-24 10:34:26 +00:00 |
|
github-actions[bot]
|
171fe98084
|
JS: Bump ML model pack dependency of ML-powered model building and query packs
|
2022-05-24 10:34:26 +00:00 |
|
github-actions[bot]
|
e519304268
|
JS: Bump minor version of ML-powered model pack
|
2022-05-24 10:33:45 +00:00 |
|
Asger F
|
87cbf7b216
|
JS: Update ATM code
|
2022-05-24 11:57:30 +02:00 |
|
Asger Feldthaus
|
e2858b7b64
|
JS: Update ATM code
|
2022-05-24 11:57:30 +02:00 |
|
Erik Krogh Kristensen
|
b74d1fdb1a
|
Merge pull request #8783 from erik-krogh/jsAbstractBi
JS: don't initialize sanitizer-guards in the standard library
|
2022-04-29 11:12:16 +02:00 |
|
Anna Railton
|
00b74d8b1c
|
Merge pull request #8895 from github/annarailton-patch-1
ATM: Update `TaintedPathInjection` -> `TaintedPath`
|
2022-04-27 16:15:46 +01:00 |
|
Erik Krogh Kristensen
|
e1c7d369be
|
Merge pull request #8796 from erik-krogh/redundantImport
Remove redundant imports
|
2022-04-27 12:39:51 +02:00 |
|
Anna Railton
|
1f1ef22f90
|
Update TaintedPathInjection -> TaintedPath
Lines up with usual naming in https://github.com/github/ml-ql-adaptive-threat-modeling-backend
|
2022-04-27 11:27:43 +01:00 |
|
Anna Railton
|
eacfceb6ce
|
Merge pull request #8605 from github/annarailton/new-query-label-mappings
Experimental (ATM): update query label mappings
|
2022-04-26 16:39:06 +01:00 |
|
Erik Krogh Kristensen
|
d389012b75
|
Merge branch 'main' into redundantImport
|
2022-04-26 14:24:51 +02:00 |
|