codeql

mirror of https://github.com/github/codeql.git synced 2026-04-28 02:05:14 +02:00

Author	SHA1	Message	Date
Joe Farebrother	abf894a64c	Fix typos	2022-08-05 12:56:20 +01:00
Joe Farebrother	03c2a0e818	Add missing qldoc	2022-08-05 12:56:20 +01:00
Joe Farebrother	0d09484efc	Add change note	2022-08-05 12:56:19 +01:00
Joe Farebrother	f8ccbcba70	Add qhelp	2022-08-05 12:56:19 +01:00
Joe Farebrother	a2245bb858	Fix test	2022-08-05 12:56:19 +01:00
Joe Farebrother	498ad230c2	Update stubs	2022-08-05 12:56:19 +01:00
Joe Farebrother	c4de158e0d	Add tests	2022-08-05 12:56:18 +01:00
Joe Farebrother	16e16f08dc	Add webview cert validation query	2022-08-05 12:56:18 +01:00
AlexDenisov	a779f0e376	Merge pull request #9977 from github/alexdenisov/extract-swift-comments Swift: extract comments	2022-08-05 12:15:56 +02:00
Alex Denisov	5e69adb0a9	Swift: extract comments	2022-08-05 11:50:48 +02:00
Mathias Vorreiter Pedersen	1c8090fa04	Merge pull request #9964 from geoffw0/cwe95 Swift: Query for CWE-79 / CWE-95	2022-08-05 10:38:33 +01:00
Geoffrey White	1ce06accbd	Swift: Fix capitalization issue?	2022-08-05 10:20:51 +01:00
Mathias Vorreiter Pedersen	ac26371de0	Merge pull request #9909 from geoffw0/stringlengthconflation6 Swift: Understand String.utf8.count etc in the string length conflation CVE query	2022-08-05 10:13:25 +01:00
Tom Hvitved	56ee07e24c	Merge pull request #9936 from aibaars/gh-codeql-nightly Use 'gh codeql' with the nightly release for CI jobs	2022-08-05 10:34:39 +02:00
Jeroen Ketema	ba2cee07a9	Merge pull request #8596 from rdmarsh2/rdmarsh2/dataflow-global-vars C++: IR data flow through global variables	2022-08-05 10:07:00 +02:00
Anders Schack-Mulligen	1fde06c0a8	Merge pull request #9970 from aschackmull/java/confusingoverload-perf Java: Improve performance of ConfusingOverloading.	2022-08-05 09:38:22 +02:00
Harry Maclean	74d529d3e3	Merge pull request #9918 from hmac/hmac/mime-type-match Ruby: Model Mime::Type	2022-08-05 11:51:45 +12:00
Harry Maclean	157bbccf62	Merge pull request #9851 from hmac/hmac/active-record-improvements Ruby: Recognise more AR write accesses	2022-08-05 11:49:50 +12:00
Tom Hvitved	6fa1e06afb	Merge pull request #9966 from hvitved/csharp/no-clr-tracer C#: Disable CLR tracer	2022-08-04 20:50:19 +02:00
Anders Schack-Mulligen	43d4324f65	Java: Improve performance of ConfusingOverloading.	2022-08-04 16:05:30 +02:00
Tom Hvitved	bc6a74b4dd	C#: Disable CLR tracer Also remove old tracer configs, as we now use the Lua tracer.	2022-08-04 13:11:07 +02:00
mc	935def739c	Merge pull request #9955 from securingdev/patch-1 Update Other section with example exit code details	2022-08-04 10:26:45 +01:00
mc	df1633a838	Merge branch 'main' into patch-1	2022-08-04 10:13:23 +01:00
Anders Schack-Mulligen	a5a58f46eb	Merge pull request #9945 from aschackmull/java/wrappedinvocation-joinorder Java: Improve join-order.	2022-08-04 11:12:23 +02:00
mc	360cff9c24	Merge branch 'main' into patch-1	2022-08-04 10:08:55 +01:00
Anders Schack-Mulligen	c2b99747d4	Merge pull request #9951 from aschackmull/java/notintersect-perf Java: Improve join-order for `not haveIntersection`.	2022-08-04 11:08:02 +02:00
mc	8905df9abb	Merge branch 'main' into patch-1	2022-08-04 10:06:01 +01:00
mc	e4c9f8a9a2	Update docs/codeql/codeql-cli/exit-codes.rst	2022-08-04 10:05:52 +01:00
Chris Smowton	96091e4fa0	Merge pull request #9947 from github/smowton/fix/golang-path-injection-numeric-sanitizer Go: note that numeric-typed nodes can't cause path traversal	2022-08-04 09:00:34 +01:00
Chris Smowton	af274354a0	Merge pull request #9956 from github/smowton/feature/tainted-path-query-mad Make java/path-injection recognise create-file MaD sinks	2022-08-04 08:59:59 +01:00
Harry Maclean	ee9e6b1f2e	Ruby: Add change note	2022-08-04 17:27:34 +12:00
Harry Maclean	452811dbf2	Ruby: move change note	2022-08-04 17:25:55 +12:00
Harry Maclean	83393dc195	Ruby: Recognise more AR write accesses This change means we recognise calls like ```rb User.create(params) User.update(id, params) ``` as instances of `PersistentWriteAccess`.	2022-08-04 17:22:46 +12:00
Harry Maclean	21b4918904	Ruby: Add getPositionalArgument This gets positional arguments from a call. These are arguments which are not keyword arguments.	2022-08-04 17:22:46 +12:00
Harry Maclean	d4f7f2b75e	Ruby: Add test for AR PersistentWriteAccesses	2022-08-04 17:22:46 +12:00
Harry Maclean	7ed81db32d	Ruby: Move ActiveRecord tests to new directory	2022-08-04 17:22:46 +12:00
Harry Maclean	def1b3c3b3	Ruby: QLDoc fix	2022-08-04 17:21:29 +12:00
Harry Maclean	fdbe16945f	Ruby: Add change note	2022-08-04 17:19:05 +12:00
Geoffrey White	997068a9cb	Swift: Fix a suggestion merge conflict.	2022-08-03 18:16:31 +01:00
Geoffrey White	873c62ef78	Swift: Apply another code review suggestion.	2022-08-03 18:16:01 +01:00
Geoffrey White	e4dab17318	Apply suggestions from code review Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2022-08-03 18:14:14 +01:00
Geoffrey White	9d49986345	Swift: Make QL-for-QL happy.	2022-08-03 17:18:57 +01:00
Mathias Vorreiter Pedersen	9355f9132e	Merge pull request #9961 from MathiasVP/swift-cache-lastRefRedef Swift: Cache `lastRefRedef`	2022-08-03 15:43:35 +01:00
Alex Ford	33fbec1174	Merge pull request #9917 from github/post-release-prep/codeql-cli-2.10.2 Post-release preparation for codeql-cli-2.10.2	2022-08-03 15:17:00 +01:00
Mathias Vorreiter Pedersen	97bd007592	Merge pull request #9962 from intrigus-lgtm/patch-7 C: Add additional reference to CERT C coding standard	2022-08-03 15:00:33 +01:00
Geoffrey White	39f1352847	Swift: Complete the rename.	2022-08-03 14:45:20 +01:00
Geoffrey White	81bd61288c	Swift: I think CWE-079 is the more accurate CWE for this query.	2022-08-03 14:45:19 +01:00
Geoffrey White	c635895644	Swift: Documentation.	2022-08-03 14:45:18 +01:00
Alex Ford	440547c958	Merge branch 'main' into post-release-prep/codeql-cli-2.10.2	2022-08-03 13:44:37 +01:00
Arthur Baars	912dce3ea7	Merge branch 'main' into gh-codeql-nightly	2022-08-03 14:43:07 +02:00

1 2 3 4 5 ...

41605 Commits