codeql

mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Author	SHA1	Message	Date
github-actions[bot]	a02dcdc5e1	Release preparation for version 2.11.1	2022-10-07 02:20:28 +00:00
Chris Smowton	28fa06ab9c	Merge pull request #10709 from gregxsunday/main add BeegoInput.RequestBody source to Beego framework	2022-10-06 16:04:04 +01:00
Chris Smowton	812a5e5c74	Autoformat test.go	2022-10-06 14:08:56 +01:00
Chris Smowton	4e161c867e	Rename 2022-10-06-beego- to 2022-10-06-beego-request-body-source.md	2022-10-06 14:01:36 +01:00
Chris Smowton	7d98b74eec	Create 2022-10-06-beego-	2022-10-06 14:00:52 +01:00
gregxsunday	9960d11042	added RequestBody source to Beego framework	2022-10-06 13:23:56 +02:00
Henry Mercer	d80d39504f	Tag successfully extracted files queries Tag the successfully extracted files queries with `successfully-extracted-files` to make them easier to identify programmatically in a language-independent way. This follows the prior art for lines of code queries, which are tagged `lines-of-code`.	2022-10-05 19:19:43 +01:00
Chris Smowton	a8197b27aa	Merge pull request #10561 from github/henrymercer/go-consistent-query-id Go: Use a consistent query identifier for successfully extracted files	2022-09-24 17:22:56 +01:00
github-actions[bot]	6cef0af5df	Post-release preparation for codeql-cli-2.11.0	2022-09-23 21:01:40 +00:00
Henry Mercer	8f9dafcce9	Go: Use a consistent query identifier for successfully extracted files Update the query identifier for `Diagnostics/SuccessfullyExtractedFiles.ql` to be consistent with other languages.	2022-09-23 16:02:36 +01:00
github-actions[bot]	f5cf8cffa3	Release preparation for version 2.11.0	2022-09-22 20:14:12 +00:00
Henry Mercer	f8f99af8b7	Bump the minor version of packs we regularly release	2022-09-22 12:14:19 +01:00
Andrew Eisenberg	99e8cb78b0	Merge pull request #10496 from aeisenberg/aeisenberg/merge-rc3.7-into-main Aeisenberg/merge rc3.7 into main	2022-09-21 08:09:47 -07:00
erik-krogh	175d3acf4d	reword alert-message `go/user-controlled-bypass` to avoid using "here"	2022-09-20 22:51:35 +02:00
erik-krogh	83bedc0320	be more specific about what the source is in `go/suspicious-character-in-regex`, which also avoids using "here" in the alert-message	2022-09-20 22:51:35 +02:00
erik-krogh	1be14962a0	use "depends to" for a taint-tracking query	2022-09-20 22:51:35 +02:00
erik-krogh	c241185c21	avoid more instances of "this location" and "here" in alert-messages	2022-09-20 22:51:35 +02:00
erik-krogh	2602a38d94	update expected test output	2022-09-20 22:51:35 +02:00
erik-krogh	3cf5516df6	make the alert messages of taint-tracking queries more consistent	2022-09-20 22:51:35 +02:00
erik-krogh	e2a41cf49f	fix most ql/alert-message-style-violation	2022-09-20 22:51:35 +02:00
Andrew Eisenberg	58e4861b45	Merge branch 'main' into rc/3.7	2022-09-20 12:43:20 -07:00
erik-krogh	49d1e584a8	deprecate a source class that wasn't used anywhere	2022-09-19 15:07:18 +02:00
erik-krogh	f6ada6e022	use sanitizer class in the insecure-randomness query	2022-09-19 15:07:00 +02:00
Erik Krogh Kristensen	a4cd913aea	Merge pull request #10312 from erik-krogh/fix-caseDiff ensure consistent casing of names	2022-09-19 10:43:12 +02:00
github-actions[bot]	67ce442674	Post-release preparation for codeql-cli-2.10.5	2022-09-16 14:23:44 +00:00
Rasmus Wriedt Larsen	ca66a29b18	Go: Rewrite `::Range` patterns to use `instanceof`	2022-09-13 15:48:17 +02:00
Rasmus Wriedt Larsen	6f5701f9c7	Go: Rewrite concepts to use `extends ... instanceof ...`	2022-09-13 15:36:16 +02:00
erik-krogh	bae4490620	add change-note	2022-09-12 12:12:18 +02:00
Cornelius Riemenschneider	bc7fcaa06f	Go: Remove the legacy tracer configuration files.	2022-09-09 11:13:01 +02:00
erik-krogh	26d8553f6e	ensure consistent casing of names	2022-09-09 10:34:14 +02:00
github-actions[bot]	a9d80a5a48	Release preparation for version 2.10.5	2022-09-08 11:35:54 +00:00
Erik Krogh Kristensen	6cee635cb5	Merge pull request #10180 from erik-krogh/fixTags Add missing security tags	2022-09-02 08:04:57 +02:00
Edoardo Pirovano	8f332714f4	Merge pull request #10260 from github/edoardo/3.7-mergeback Merge `rc/3.7` into `main`	2022-09-01 15:44:17 +01:00
erik-krogh	d0814aa37c	Go: add change-note for go	2022-08-29 13:10:23 +02:00
erik-krogh	33ba01927f	Go: add CWE tag and @security-severity tag to go/insecure-hostkeycallback	2022-08-29 13:10:23 +02:00
github-actions[bot]	3b4ad3c4f1	Post-release preparation for codeql-cli-2.10.4	2022-08-26 09:32:11 +00:00
erik-krogh	cc7a9ef97a	rename more acronyms	2022-08-25 20:52:27 +02:00
Ian Lynagh	711e769382	Update go/ql/lib/change-notes/released/0.2.4.md Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>	2022-08-25 14:25:30 +01:00
Ian Lynagh	b951e94d85	Update go/ql/lib/CHANGELOG.md Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>	2022-08-25 14:25:20 +01:00
Erik Krogh Kristensen	06afe9c0f4	Merge pull request #9816 from erik-krogh/msgConsis Make alert messages consistent across languages	2022-08-25 15:20:01 +02:00
github-actions[bot]	0f63bc077f	Release preparation for version 2.10.4	2022-08-25 12:52:26 +00:00
Ian Lynagh	3fcfd32eb1	Make *.ql non-executable	2022-08-24 16:55:11 +01:00
Ian Lynagh	b9a4b5ab9a	Make *.qlref non-executable	2022-08-24 16:53:16 +01:00
Ian Lynagh	344863d896	Make *.qhelp non-executable	2022-08-24 16:38:15 +01:00
erik-krogh	1c0f2251e2	Merge branch 'main' into msgConsis	2022-08-24 14:38:57 +02:00
Michael Nebel	c514c8838d	Merge pull request #9867 from michaelnebel/csharp/nosummary C#: Negative summaries (ie. no flow through)	2022-08-24 12:06:05 +02:00
Arthur Baars	acff279e8d	Merge pull request #10147 from github/aibaars-fix-go Go: fix tracing spec for windows	2022-08-24 11:17:34 +02:00
Michael Nebel	761ed283b6	C#/Java/Ruby/Swift: Address review comments.	2022-08-24 09:58:54 +02:00
Michael Nebel	2e273f2273	C#: Re-arange the import order, such that CsvValidation follows ExternalFlow directly.	2022-08-24 09:58:54 +02:00
Michael Nebel	37976d56bc	C#/Java/Go/Swift: Move CsvValidation back into ExternalFlow.	2022-08-24 09:58:53 +02:00

1 2 3 4

157 Commits