Tony Torralba
|
b20d53cfd4
|
Update java/ql/src/semmle/code/java/security/OgnlInjection.qll
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
|
2021-07-29 15:08:27 +02:00 |
|
Tony Torralba
|
7a898a04f3
|
Fix release note
|
2021-07-20 17:23:47 +02:00 |
|
Tony Torralba
|
3259ead946
|
Decouple OgnlInjection.qll to reuse the taint tracking configuration
|
2021-07-20 17:21:10 +02:00 |
|
Tony Torralba
|
b6904a7992
|
Merge branch 'main' into atorralba/promote-ognl-injection
|
2021-07-20 17:17:17 +02:00 |
|
Rasmus Wriedt Larsen
|
5a489a386a
|
Merge pull request #6329 from havron/qhelp-typo
Fix qhelp typo in RequestWithoutValidation
|
2021-07-20 10:18:35 +02:00 |
|
Anders Schack-Mulligen
|
47528b3379
|
Merge pull request #6332 from github/workflow/coverage/update
Update CSV framework coverage reports
|
2021-07-20 09:27:59 +02:00 |
|
github-actions[bot]
|
bed08a6f4f
|
Add changed framework coverage reports
|
2021-07-20 00:06:37 +00:00 |
|
Aditya Sharad
|
48778ce9a4
|
Merge pull request #6160 from timoles/patch-1
Add information for generating qhelp files locally
|
2021-07-19 14:14:22 -07:00 |
|
Sam Havron
|
733e5b45bf
|
Fix qhelp typo in RequestWithoutValidation
|
2021-07-19 16:01:06 -04:00 |
|
Timo Müller
|
b24c096a76
|
Apply suggestions from code review
Co-authored-by: Aditya Sharad <6874315+adityasharad@users.noreply.github.com>
|
2021-07-19 21:12:59 +02:00 |
|
Aditya Sharad
|
20fa8e49c8
|
Merge pull request #6326 from adityasharad/codeowners/codeql-tools
Codeowners: Add reviewer teams for CodeQL tools and associated docs
|
2021-07-19 11:15:58 -07:00 |
|
Aditya Sharad
|
94b2b174c1
|
Merge pull request #6177 from skyzyx/patch-1
Update getting-started-with-the-codeql-cli.rst
|
2021-07-19 10:58:43 -07:00 |
|
Aditya Sharad
|
c26a4d315d
|
Codeowners: Add reviewer teams for CodeQL tools and associated docs
|
2021-07-19 10:35:59 -07:00 |
|
Arthur Baars
|
ed054acd8e
|
Merge pull request #6305 from intrigus-lgtm/patch-5
C# remove spurious spaces in <code> tag
|
2021-07-19 17:09:36 +02:00 |
|
Mathias Vorreiter Pedersen
|
7bc18abbb0
|
Merge pull request #6150 from geoffw0/toctou
C++: Tests for cpp/toctou-race-condition
|
2021-07-19 15:51:35 +02:00 |
|
Geoffrey White
|
0c029898bb
|
C++: Autoformat.
|
2021-07-19 13:58:25 +01:00 |
|
Geoffrey White
|
49bbfefb4d
|
C++: Fix uses of 'rename' in tests.
|
2021-07-19 13:57:16 +01:00 |
|
Anders Schack-Mulligen
|
db76b12f3f
|
Merge pull request #6313 from aschackmull/java/fix-csv-dispatch
Java: Fix a bug in call-context-sensitve dispatch to SummarizedCallable.
|
2021-07-19 12:49:31 +02:00 |
|
Anders Schack-Mulligen
|
0b89f96055
|
Merge pull request #6318 from Marcono1234/patch-1
Java: Fix documentation mistake for `ProtoPom`
|
2021-07-19 11:25:06 +02:00 |
|
Anders Schack-Mulligen
|
d1f21a854a
|
Merge pull request #6042 from joefarebrother/spring-http
[Java] Model spring `http` package
|
2021-07-19 11:24:41 +02:00 |
|
Taus
|
12f7921c92
|
Merge pull request #6304 from RasmusWL/more-snippets
Python: Add more snippets
|
2021-07-19 11:23:24 +02:00 |
|
Anders Schack-Mulligen
|
c32a75a1b3
|
Merge pull request #6183 from smowton/smowton/feature/javax-json-models
Add models of the jakarta/javax.json package
|
2021-07-19 11:19:21 +02:00 |
|
Anders Schack-Mulligen
|
6de31f8b59
|
Merge pull request #6317 from github/workflow/coverage/update
Update CSV framework coverage reports
|
2021-07-19 10:45:22 +02:00 |
|
Rasmus Wriedt Larsen
|
c9087b2e1b
|
Python: Minor fixup to snippet
Spotted by @tausbn 🎉
|
2021-07-19 10:19:23 +02:00 |
|
github-actions[bot]
|
9b7616bea4
|
Add changed framework coverage reports
|
2021-07-19 00:07:04 +00:00 |
|
Marcono1234
|
87d6b9ca5a
|
Java: Fix documentation mistake for ProtoPom
|
2021-07-18 02:49:43 +02:00 |
|
Tom Hvitved
|
1c68d3f4cd
|
Merge pull request #6309 from hvitved/csharp/dead-store-of-local-perf
C#: Improve performance of `DeadStoreOfLocal.ql`
|
2021-07-17 10:56:35 +02:00 |
|
Tom Hvitved
|
25706e0812
|
Merge pull request #6303 from hvitved/csharp/get-qual-name-nomagic
C#: Two `pragma` performance fixes
|
2021-07-17 07:53:35 +02:00 |
|
Robert Marsh
|
e0ff1d949b
|
Merge pull request #6315 from MathiasVP/fix-off-by-one-in-rem-expr-range-analysis
C++: Fix off–by-one in range analysis for `RemExpr`.
|
2021-07-16 15:22:03 -07:00 |
|
Mathias Vorreiter Pedersen
|
39d9395bc3
|
C++: Fix off-by-one in range analysis for 'RemExpr'.
|
2021-07-16 16:35:19 +02:00 |
|
Mathias Vorreiter Pedersen
|
81aa115838
|
C++: Fix range analysis bug for 'RemExpr'.
|
2021-07-16 16:28:08 +02:00 |
|
Mathias Vorreiter Pedersen
|
dc2eea59a3
|
C++: Add buggy testcase with 'RemExpr'.
|
2021-07-16 16:27:09 +02:00 |
|
Anders Schack-Mulligen
|
effca4495f
|
Java: Fix a bug in call-context-sensitve dispatch to SummarizedCallable.
|
2021-07-16 14:31:29 +02:00 |
|
Anders Schack-Mulligen
|
68b3c28202
|
Merge pull request #6310 from github/workflow/coverage/update
Update CSV framework coverage reports
|
2021-07-16 14:10:33 +02:00 |
|
CodeQL CI
|
9aafe8242e
|
Merge pull request #6271 from erik-krogh/logs
Approved by asgerf
|
2021-07-16 03:49:22 -07:00 |
|
Anders Schack-Mulligen
|
ef9d09692d
|
Merge pull request #5796 from smowton/smowton/feature/apache-mutable-flow
Java: Add synthetic fields; model Commons Lang's MutableObject type
|
2021-07-16 12:08:26 +02:00 |
|
Erik Krogh Kristensen
|
36de24aecb
|
use API nodes instead of type-tracking in the pino model
|
2021-07-16 11:32:32 +02:00 |
|
Erik Krogh Kristensen
|
178d3de824
|
Merge branch 'main' into logs
|
2021-07-16 11:21:25 +02:00 |
|
CodeQL CI
|
a02a82caac
|
Merge pull request #6284 from erik-krogh/qs
Approved by asgerf
|
2021-07-16 02:11:59 -07:00 |
|
CodeQL CI
|
c1d0e52492
|
Merge pull request #6286 from erik-krogh/mkdirp
Approved by asgerf
|
2021-07-16 02:11:07 -07:00 |
|
CodeQL CI
|
6c2c51a767
|
Merge pull request #6287 from erik-krogh/react-tooltip
Approved by asgerf
|
2021-07-16 02:10:36 -07:00 |
|
CodeQL CI
|
d4fa1f7d96
|
Merge pull request #6295 from erik-krogh/sort-keys
Approved by asgerf
|
2021-07-16 02:09:47 -07:00 |
|
CodeQL CI
|
520337577b
|
Merge pull request #6298 from erik-krogh/ansi-to-html
Approved by asgerf
|
2021-07-16 02:09:03 -07:00 |
|
CodeQL CI
|
f4f8ce0d36
|
Merge pull request #6294 from erik-krogh/arrify
Approved by asgerf
|
2021-07-16 02:08:19 -07:00 |
|
CodeQL CI
|
8ef57366c4
|
Merge pull request #6278 from erik-krogh/toUnicodeInAngular
Approved by asgerf
|
2021-07-16 02:07:18 -07:00 |
|
Chris Smowton
|
9cde13bf82
|
Note spurious results that stem from weak updates to synthetic fields.
|
2021-07-16 09:44:36 +01:00 |
|
Tom Hvitved
|
45ee21622d
|
C#: Cache NamedElement::getQualifiedName()
|
2021-07-16 10:25:07 +02:00 |
|
CodeQL CI
|
b14139f3a0
|
Merge pull request #6261 from max-schaefer/js/module-constructor
Approved by asgerf
|
2021-07-16 00:28:30 -07:00 |
|
Tom Hvitved
|
8321d5f312
|
Merge pull request #6293 from hvitved/csharp/ssa/remove-redundant-conjunct
C#: Remove redundant conjunct in `ssaDefReachesReadWithinBlock`
|
2021-07-16 06:15:34 +02:00 |
|
github-actions[bot]
|
e61702c281
|
Add changed framework coverage reports
|
2021-07-16 00:07:10 +00:00 |
|