codeql

mirror of https://github.com/github/codeql.git synced 2026-02-12 05:01:06 +01:00

Author	SHA1	Message	Date
Esben Sparre Andreasen	f3de75ae07	JS: update a js/code-injection test	2019-09-11 09:45:54 +02:00
Asger F	f7654d6f1c	JS: Add test	2019-09-06 14:42:07 +01:00
Max Schaefer	28d8011bcf	JavaScript: Add models for popular base64 transcoders.	2019-03-13 08:20:58 +00:00
Asger F	50a77ea843	JS: update test expectations	2019-03-06 08:41:03 +00:00
Asger F	ad6add383c	JS: improve concatenation-sanitizer for property injection	2019-01-14 15:34:01 +00:00
Max Schaefer	b4f400fb23	Merge remote-tracking branch 'upstream/next' into qlucie/master	2019-01-04 10:35:57 +00:00
Asger F	ce18aca62b	JS: update expected output	2018-12-19 11:30:46 +00:00
Asger F	61ef6552c3	JS: handle both data() and taint() source labels	2018-11-22 09:59:31 +00:00
Asger F	4ae2493798	JS: rename query to Unsafe Dynamic Method Access	2018-11-21 12:34:18 +00:00
Asger F	7d80847832	JS: add qhelp example to test suite	2018-11-20 18:44:18 +00:00
Asger F	49cd2876c9	JS: use StringConcatenation library in ConcatSanitizer	2018-11-20 18:12:07 +00:00
Asger F	2239f863f7	JS: add query MethodNameInjection	2018-11-20 15:57:18 +00:00
Asger F	bc3b983768	JS: move CodeInjection tests into subfolder	2018-11-20 14:24:37 +00:00
Max Schaefer	9221b62ded	JavaScript: Update expectd test output for security path queries to include `nodes` and `edges` query predicates.	2018-11-14 09:32:31 +00:00
semmle-qlci	44e4b25f42	Merge pull request #14 from rdmarsh2/rdmarsh/js/electron-http-client Approved by xiemaisi	2018-08-20 07:59:25 +01:00
Robert Marsh	aaeda5dfcc	JavaScript: add the ESLint attack as a test	2018-08-17 10:16:52 -07:00
Max Schaefer	199990feea	JavaScript: Add `WebView`-related taint sinks for `CodeInjection`, `DomBasedXss` and `ServerSideUrlRedirect`.	2018-08-10 15:59:27 +01:00
Pavel Avgustinov	b55526aa58	QL code and tests for C#/C++/JavaScript.	2018-08-02 17:53:23 +01:00

18 Commits