codeql

mirror of https://github.com/github/codeql.git synced 2026-03-21 06:57:09 +01:00

Author	SHA1	Message	Date
Henry Mercer	a89882c14e	JS: Update lockfiles for ML-powered queries packs	2022-02-21 16:03:05 +00:00
Henry Mercer	25f6ac3ec4	JS: Remove ML model pack from default workspace We only want to put the checked out version of the model pack to test a custom model. Given that the repo doesn't contain any models by default, most users won't want the local checkout of the model pack to override the one downloaded from the package registry.	2022-02-21 15:06:30 +00:00
Henry Mercer	6fb9895367	JS: Separate the ML-powered queries model into its own pack This allows users to more easily get started with development. Running `codeql pack install` from the `-queries` pack will now install the ML model.	2022-02-21 15:05:57 +00:00
Erik Krogh Kristensen	4bbb7ad320	Merge pull request #7876 from erik-krogh/zipRelative JS: recognize more startswith sanitizers for path-injection queries	2022-02-08 15:22:39 +01:00
Nick Rolfe	ade7921079	Merge pull request #7890 from github/nickrolfe/unique_node Ruby/QL: add `unique` annotation on `node` column	2022-02-08 13:15:17 +00:00
Erik Krogh Kristensen	28ba78cb76	add explicit this	2022-02-08 12:20:21 +01:00
Michael Nebel	c04e344192	Merge pull request #7749 from michaelnebel/csharp/lambda-improvements C# 10 - Lambda improvements.	2022-02-08 11:28:55 +01:00
Benjamin Muskalla	b62df5a9ad	Merge pull request #7872 from bmuskalla/fixCoverageCollection Collect framework coverage on demand	2022-02-08 11:27:48 +01:00
Henry Mercer	eff0ca01b1	Merge pull request #7417 from github/henrymercer/java/update-telemetry-query-metadata Java: Start running telemetry queries on Code Scanning	2022-02-08 10:26:30 +00:00
Benjamin Muskalla	ff8a96b96d	Rename framework coverage query Move it to the other summary queries, update all references.	2022-02-08 11:14:03 +01:00
Benjamin Muskalla	85a8efab63	Update .github/workflows/csv-coverage-metrics.yml Co-authored-by: Henry Mercer <henry.mercer@me.com>	2022-02-08 11:07:56 +01:00
Benjamin Muskalla	6e3d2a2046	Update misc/suite-helpers/security-and-quality-selectors.yml Co-authored-by: Henry Mercer <henry.mercer@me.com>	2022-02-08 11:07:35 +01:00
Benjamin Muskalla	fb91821882	Update misc/suite-helpers/security-extended-selectors.yml Co-authored-by: Henry Mercer <henry.mercer@me.com>	2022-02-08 11:06:51 +01:00
Benjamin Muskalla	94c517efd6	Update misc/suite-helpers/code-scanning-selectors.yml Co-authored-by: Henry Mercer <henry.mercer@me.com>	2022-02-08 11:06:35 +01:00
Benjamin Muskalla	284c397883	Update misc/suite-helpers/lgtm-selectors.yml Co-authored-by: Henry Mercer <henry.mercer@me.com>	2022-02-08 11:06:30 +01:00
Benjamin Muskalla	e7823a78ef	Update .github/workflows/csv-coverage-metrics.yml Co-authored-by: Henry Mercer <henry.mercer@me.com>	2022-02-08 11:06:21 +01:00
Nick Rolfe	fa16ff9ffc	QL for QL: make `node` column `unique`	2022-02-08 09:59:11 +00:00
Nick Rolfe	8881031d0a	Ruby: add upgrade/downgrade scripts	2022-02-08 09:57:55 +00:00
Nick Rolfe	2037368f62	Ruby: make `node` column `unique`	2022-02-08 09:55:34 +00:00
Nick Rolfe	dbe2951aec	Merge pull request #7880 from github/nickrolfe/locations_column_ql QL for QL: sync changes from Ruby	2022-02-08 09:53:06 +00:00
CodeQL CI	db8ffb5ba9	Merge pull request #7870 from erik-krogh/nodeReExport Approved by esbena	2022-02-08 09:44:25 +00:00
Erik Krogh Kristensen	d73b2effa0	rename `maybeGetJoinArg` `maybeGetPathSuffix`	2022-02-08 10:42:06 +01:00
Erik Krogh Kristensen	cc3f9bf2a8	fix performance issue by inlining a simpler version of `getASourceProp`	2022-02-08 00:22:01 +01:00
Rasmus Wriedt Larsen	eb109828c0	Merge pull request #7252 from museljh/feature/cwe-338 Python: CWE-338 insecureRandomness	2022-02-07 19:30:06 +01:00
Nick Rolfe	073d325750	QL for QL: update dbscheme stats	2022-02-07 17:54:35 +00:00
Nick Rolfe	3ee109731a	QL for QL: sync changes from Ruby In particular, update the dbscheme to put location columns in a single table.	2022-02-07 17:44:40 +00:00
Nick Rolfe	9217d0e1b9	Merge pull request #7875 from github/nickrolfe/locations_column Ruby: put AST node locations in a single table	2022-02-07 17:43:33 +00:00
Erik Krogh Kristensen	b59c7911a3	update locations of expected output	2022-02-07 15:23:26 +01:00
Erik Krogh Kristensen	ca5f91e587	recognize more startswith sanitizers for path-injection queries	2022-02-07 14:19:13 +01:00
Michael Nebel	f478bf5b9b	Merge pull request #7809 from michaelnebel/csharp/test-pattern-match-flow C#: Add flow test cases for undetected value flow, when making variable bindings in pattern matching.	2022-02-07 14:05:50 +01:00
Nick Rolfe	881776a2ac	Ruby: delete commented-out code	2022-02-07 12:50:06 +00:00
Nick Rolfe	e049f08c24	Ruby: update dbscheme stats	2022-02-07 12:42:34 +00:00
Nick Rolfe	b3b2bba618	Ruby: make some generated predicates final	2022-02-07 12:17:50 +00:00
Nick Rolfe	b43cc23277	Ruby: add db downgrade script	2022-02-07 12:10:36 +00:00
Nick Rolfe	e8855c3718	Ruby: add db upgrade script	2022-02-07 12:10:36 +00:00
Nick Rolfe	388d361ec3	Ruby: put AST node locations in a single table	2022-02-07 12:10:36 +00:00
Michael Nebel	99f89f1fe2	C#: Update db stats file.	2022-02-07 12:57:10 +01:00
Mathias Vorreiter Pedersen	55e69d421c	Merge pull request #7849 from Yonah125/main C/C++: Useless Test : verification of "Fully converted" Type	2022-02-07 11:46:51 +00:00
Benjamin Muskalla	2f94356899	Run daily	2022-02-07 12:12:29 +01:00
Benjamin Muskalla	bd417769ce	Add workflow to upload metrics	2022-02-07 12:08:18 +01:00
Benjamin Muskalla	a1432c47dc	Exclude framework coverage query from suites We don't want to run this query on any database but rather in a specific setup. Exclude from suites by default.	2022-02-07 12:08:18 +01:00
Benjamin Muskalla	9af50f5216	Turn framework coverage into metric query	2022-02-07 12:08:18 +01:00
Jeroen Ketema	1f2865c7cc	Merge pull request #7798 from jketema/missing-open-arg C++: Add query for missing mode argument in `open`/`openat` calls	2022-02-07 12:01:44 +01:00
BACK Yonah	61dc9ef12e	C/C++: AutoFormat fix	2022-02-07 11:41:17 +01:00
Erik Krogh Kristensen	0584a6acaf	recognize a nodejs re-exports in a loop	2022-02-07 10:12:38 +01:00
Michael Nebel	b2e18ebae1	C#: Lambda improvements change note.	2022-02-07 09:22:46 +01:00
Michael Nebel	782d6da754	C#: Support for lambda expression explicit return types and lambda attributes.	2022-02-07 09:19:47 +01:00
Arthur Baars	ac03fab986	Merge pull request #7753 from aibaars/ruby-3.1 Ruby 3.1 features	2022-02-06 21:06:16 +01:00
Erik Krogh Kristensen	ab2d3a7ca0	Merge pull request #7828 from Naman-ntc/main JS: Adding model for `.get` function of `Map` in Unvalidated Dynamic Method Call	2022-02-04 20:19:02 +01:00
Erik Krogh Kristensen	f00d723c49	Merge pull request #7843 from erik-krogh/CVE-2021-23484 JS: add file sources from `jszip` to `js/zip-slip`	2022-02-04 20:17:43 +01:00

1 2 3 4 5 ...

32373 Commits