hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-21 19:26:31 +01:00
Code Issues Packages Projects Releases Wiki Activity
58,700 Commits 1,672 Branches 157 Tags
b18de9e6417c60b51d2371c98394f4033d2683e4
Commit Graph

343 Commits

Author SHA1 Message Date
Jami Cogswell
62d64d5828 Java: add comments for reflection-related models 2023-03-23 18:00:21 -04:00
Jami Cogswell
e0c0c973a7 Java: remove Format and MessageFormat 2023-03-23 18:00:21 -04:00
Jami Cogswell
702ca19c3c Java: added comment about second order sql injection 2023-03-23 18:00:20 -04:00
Jami Cogswell
db545e4981 Java: switch StringBuilder.delete to AbstractStringBuilder.delete 2023-03-23 18:00:20 -04:00
Jami Cogswell
56d14820e4 Java: change taint to value for Class.cast 2023-03-23 18:00:20 -04:00
Jami Cogswell
79ce46a221 Java: remove FileInputStream summary model since causing issues in DCA 2023-03-23 18:00:20 -04:00
Jami Cogswell
bdd7f18e35 Java: remove some comments 2023-03-23 18:00:20 -04:00
Jami Cogswell
17e0920325 Java: resolve more conflicts 2023-03-23 18:00:14 -04:00
Jami Cogswell
c213d56d2c Java: resolve some more -1 to this conflicts 2023-03-23 17:56:46 -04:00
Jami Cogswell
44c3a41194 Java: resolve more -1 to this conflicts 2023-03-23 17:53:27 -04:00
Jami Cogswell
971b0e8814 Java: -1 to this conflict 2023-03-23 17:50:08 -04:00
Joe Farebrother
48823aec75 Fix tests and missing model after rebase 2023-03-23 14:37:32 +00:00
Joe Farebrother
56fb3d23ff Argument[-1] -> Argument[this] 2023-03-23 14:37:32 +00:00
Joe Farebrother
9287549e93 Generate tests; fix models 2023-03-23 14:37:32 +00:00
Joe Farebrother
14f753b8cf Use precise access paths for http headers models 2023-03-23 14:37:31 +00:00
Joe Farebrother
a476677b2b Model more setters and constructors 2023-03-23 14:37:31 +00:00
Joe Farebrother
904102143e Add some missing models 2023-03-23 14:37:31 +00:00
Joe Farebrother
28b0e7e074 Remove unneeded blank lines 2023-03-23 14:37:31 +00:00
Joe Farebrother
312c3eae06 Generate tests and stubs, fix an issue 2023-03-23 14:37:31 +00:00
Joe Farebrother
0124d81145 Fix models 2023-03-23 14:37:31 +00:00
Joe Farebrother
2fb560a170 Add more models for message decoder sources an headers fluent methods 2023-03-23 14:37:31 +00:00
Joe Farebrother
5d6eab4f3a Add models for more utility methods 2023-03-23 14:37:31 +00:00
Joe Farebrother
7b02616f30 Fix a model 2023-03-23 14:37:31 +00:00
Joe Farebrother
f292e85c51 Model fixes - remove ambiguity, correctly model constructors 2023-03-23 14:37:31 +00:00
Joe Farebrother
39ed5038af Generate test cases and fix some errors in models 2023-03-23 14:37:30 +00:00
Joe Farebrother
f88780cdd1 Add some tests; improve buffer models 2023-03-23 14:37:30 +00:00
Joe Farebrother
6ea0cfc2af Add more models for byte buffer handling and http2 utils 2023-03-23 14:37:30 +00:00
Joe Farebrother
63f0823a9b Add more sources and flow steps for http2 types 2023-03-23 14:37:30 +00:00
Joe Farebrother
d8da4fb1f4 Add websocket models 2023-03-23 14:37:30 +00:00
Joe Farebrother
24c59bb7e5 Formatting fixes 2023-03-23 14:37:30 +00:00
Joe Farebrother
f3882f92db Add more netty modelling, mostly around http requests 2023-03-23 14:37:29 +00:00
Joe Farebrother
d257e32eba Separate different packages into different files 2023-03-23 14:37:29 +00:00
Joe Farebrother
0f7a1d283d Add Netty models 2023-03-23 14:37:29 +00:00
Jami Cogswell
82daf50ed4 Java: add signature 2023-03-22 10:05:55 -04:00
Jami Cogswell
974f4bc371 Java: remove nativeSql sink 2023-03-22 10:05:55 -04:00
Jami Cogswell
ea626a03b6 Java: add nativeSQL as summary model 2023-03-22 10:05:55 -04:00
Stephan Brandauer
0a605638e5 Merge branch 'main' into java/update-mad-decls-after-triage-2023-03-13T13-21-27 2023-03-21 10:56:53 +01:00
Stephan Brandauer
3134ad859e Merge branch 'main' into java/update-mad-decls-after-triage-2023-03-20T12-45-37 2023-03-21 10:04:00 +01:00
Tony Torralba
1258812428 Fix Argument[this] 2023-03-20 17:13:44 +01:00
Tony Torralba
a66b7ed54a Fix incorrect model, add missing model 2023-03-20 17:09:48 +01:00
Stephan Brandauer
0cab45e4b9 update old data to current standard (stream creation arg is a sink) 2023-03-20 17:09:48 +01:00
Stephan Brandauer
8802fbdfe7 Update java/ql/lib/ext/java.nio.file.model.yml 
Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
 2023-03-20 17:09:48 +01:00
Stephan Brandauer
bc227179c7 Update java/ql/lib/ext/org.geogebra.web.full.main.model.yml 
Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
 2023-03-20 17:09:48 +01:00
Tony Torralba
bc99a44f3a Apply suggestions from code review 2023-03-20 17:09:48 +01:00
Stephan Brandauer
12bb0d98c0 move toFile back to its original location 2023-03-20 17:09:48 +01:00
Stephan Brandauer
4761c3a328 remove duplicates 2023-03-20 17:09:48 +01:00
Stephan Brandauer
bd21dc9460 remove nonexploitable sinks 2023-03-20 17:09:48 +01:00
Stephan Brandauer
b7ce0c2d96 fix: taint flow of ctor goes to Argument[-1], instead of ReturnValue 2023-03-20 17:09:48 +01:00
Stephan Brandauer
2236db43ec sort the changed MaD declarations 2023-03-20 17:09:46 +01:00
Stephan Brandauer
74e261738f remove predicate 2023-03-20 17:06:40 +01:00