codeql

mirror of https://github.com/github/codeql.git synced 2025-12-20 10:46:30 +01:00

Author	SHA1	Message	Date
Geoffrey White	ad05cc3cb1	Swift: Separate out a FormatString library as well.	2022-12-01 18:09:46 +00:00
Geoffrey White	43596869e7	Swift: Move query logic to a .qll.	2022-12-01 18:09:45 +00:00
Geoffrey White	87fa159384	Swift: Add security-severity, and correct one for another query that apparently wasn't right.	2022-12-01 18:09:39 +00:00
Geoffrey White	58e9a0436e	Swift: Add metadata.	2022-12-01 18:09:33 +00:00
Geoffrey White	2b61f26a64	Swift: Add doc.	2022-12-01 16:32:34 +00:00
Geoffrey White	32c4728f83	Swift: Add tests.	2022-12-01 16:32:33 +00:00
Geoffrey White	a2210959b5	Swift: Uncontrolled format string query (initial version).	2022-12-01 16:32:33 +00:00
Paolo Tranquilli	ace7146164	Merge pull request #11454 from erik-krogh/swift-test Swift: CI cache fixes	2022-11-28 16:24:22 +01:00
Mathias Vorreiter Pedersen	3716d67cc9	Merge pull request #11451 from geoffw0/wkuserscript Swift: models for WKUserScript	2022-11-28 14:24:19 +00:00
Geoffrey White	f291320655	Merge pull request #11447 from geoffw0/localflow2 Swift: Update queries to use LocalFlowSource	2022-11-28 14:18:01 +00:00
erik-krogh	751ffbd9c8	use different keys for different caches	2022-11-28 14:44:07 +01:00
Geoffrey White	30468dd419	Swift: Implement field content as well.	2022-11-28 12:27:33 +00:00
Geoffrey White	ffbd201450	Swift: Implement basic model of WKUserScript.	2022-11-28 12:20:29 +00:00
Geoffrey White	116d9667e7	Swift: Remove special case from query.	2022-11-28 12:15:38 +00:00
Geoffrey White	3971cbf294	Swift: Extend the taint test with WKUserScript.	2022-11-28 12:11:38 +00:00
Geoffrey White	b3d2e759a6	Swift: Update swift/sql-injection to include local flow sources.	2022-11-28 10:11:44 +00:00
Geoffrey White	a5a459fe0a	Swift: Update swift/unsafe-js-eval to include local flow sources.	2022-11-28 10:11:44 +00:00
Paolo Tranquilli	8df7d465cb	Swift: cache more aggressively in CI * the QL compilation cache action is used for ql and integration tests * all caches (Bazel and QL) are populated on push	2022-11-25 08:52:46 +01:00
Edoardo Pirovano	9071acea01	Merge pull request #11416 from github/edoardo/mergeback-3.8 Merge `rc/3.8` into `main`	2022-11-24 15:05:28 +00:00
Tony Torralba	1d57663343	Merge pull request #11345 from atorralba/atorralba/swift/data-models Swift: Add taint models for the Data class	2022-11-24 14:23:41 +01:00
Geoffrey White	32442a33de	Merge pull request #11270 from geoffw0/optionals2 Swift: Dataflow through ?? and ? :	2022-11-24 13:20:54 +00:00
Tony Torralba	e4e5291511	Fix more test expectations after rebase	2022-11-24 13:03:12 +01:00
Tony Torralba	fc7c66dab2	Remove now unnecessary additional taint step in UnsafeJsEval	2022-11-24 12:35:52 +01:00
Tony Torralba	e67b72d954	Update test expectations	2022-11-24 12:35:51 +01:00
Tony Torralba	25354d2dd8	Apply code review suggestions	2022-11-24 12:35:51 +01:00
Tony Torralba	6a8b9fde78	Add data flowsources test	2022-11-24 12:35:51 +01:00
Tony Torralba	d6b14a1395	Update test expectations	2022-11-24 12:35:50 +01:00
Tony Torralba	2284127650	Add MaD rows for the Data class	2022-11-24 12:35:50 +01:00
Geoffrey White	c6835cd270	Swift: Update .generated.list.	2022-11-24 11:16:56 +00:00
Tony Torralba	4f8ef13cd8	Fix expectation in NSData tests	2022-11-24 12:13:46 +01:00
Tony Torralba	04450c5173	Merge pull request #11378 from atorralba/atorralba/swift/nsdata-models Swift: Add models for NSData and NSMutableData	2022-11-24 11:19:14 +01:00
Tony Torralba	2ac06b8db9	Turns out lambda flow is already supported	2022-11-24 10:52:27 +01:00
Nora Dimitrijević	8f065e9483	Merge pull request #11001 from d10c/swift/js-injection	2022-11-24 10:52:05 +01:00
Geoffrey White	2b52a44024	Merge pull request #11210 from geoffw0/alamofire2 Swift: Add Alamofire model to swift/cleartext-transmission	2022-11-23 18:23:44 +00:00
Geoffrey White	ef837f72e4	Swift: Test .expected changes resulting from merge.	2022-11-23 14:57:08 +00:00
Paolo Tranquilli	876add5214	Swift: reject uppercase acronyms in schema This was causing hardly debuggable errors because names are transformed to underscored lowercase names in the dbscheme and back to camelcase for trap emission classes, which is not a noop in case uppercase acronyms (like SIL or ABI) are in the name. This makes the error be surfaced early with a helpful message.	2022-11-23 13:56:03 +01:00
AlexDenisov	1c17d854d8	Merge pull request #11391 from github/redsun82/swift-package-downgrades Swift: add downgrades script to extractor pack	2022-11-23 12:46:28 +01:00
Paolo Tranquilli	a1bffff0b0	Swift: add downgrades script to extractor pack	2022-11-23 12:15:29 +01:00
Geoffrey White	556d68aeed	Update swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>	2022-11-23 09:17:18 +00:00
Paolo Tranquilli	545c2f67e9	Merge pull request #11382 from github/alexdenisov/swift-relax-file-archiving Swift: do not abort if cannot archive a source file	2022-11-23 06:56:26 +01:00
Geoffrey White	7d45ca6293	Merge branch 'main' into optionals2	2022-11-22 17:35:27 +00:00
Alex Denisov	8f02463411	Swift: fix remapping bug This issue has slipped during a recent refactoring: https://github.com/github/codeql/pull/10987/files#diff-c5ab26a06a93c4507a834859a6a56878d5bfe16c4d7cbac4afc4f081d46f461aL63-R64	2022-11-22 17:25:07 +01:00
Alex Denisov	a2ac1384cb	Swift: do not abort if cannot archive a source file	2022-11-22 17:18:40 +01:00
Tony Torralba	2e1a78e1bf	Add models for NSData and NSMutableData	2022-11-22 15:48:58 +01:00
Geoffrey White	949cfb758d	Merge branch 'main' into alamofire2	2022-11-22 09:29:53 +00:00
Tony Torralba	16a76853f4	Add libxml2 sinks	2022-11-21 16:25:51 +01:00
Tom Hvitved	d189ba52c0	Merge pull request #11341 from hvitved/cfg/multi-edge-workaround CFG: Workaround in test output for origin/target pairs with multiple edges	2022-11-21 14:34:17 +01:00
Tom Hvitved	0d89f57680	Swift: Update expected test output	2022-11-21 12:55:40 +01:00
Tom Hvitved	e7ed056b6f	Sync files	2022-11-21 12:00:36 +01:00
Paolo Tranquilli	aaa96b20ed	Swift: fix python compatibility with CI	2022-11-18 17:51:20 +01:00

1 2 3 4 5 ...

1357 Commits