Ethan Palm
|
b73a2f7d56
|
Merge pull request #6667 from ethanpalm/indirect-build-tracing-docs
Add indirect build tracing docs
codeql-cli/v2.6.2
|
2021-09-16 12:36:56 -04:00 |
|
Ethan P
|
4d7aa5c945
|
Update example note
|
2021-09-16 09:29:35 -07:00 |
|
Anders Schack-Mulligen
|
a67db45454
|
Merge pull request #6612 from Marcono1234/marcono1234/literal-getLiteral-usage
Java: Replace incorrect usage of `Literal.getLiteral()`
|
2021-09-16 17:00:32 +02:00 |
|
Marcono1234
|
020aa4d94c
|
Java: Address feedback and fix test failures
|
2021-09-16 14:10:48 +01:00 |
|
Marcono1234
|
58d2d5d14e
|
Java: Replace incorrect usage of Literal.getLiteral()
|
2021-09-16 14:10:48 +01:00 |
|
Tom Hvitved
|
1c1c46591e
|
Merge pull request #6708 from hvitved/python/files-folders-drop-columns
Python: Drop redundant columns from `files` and `folders` relations
|
2021-09-16 14:42:15 +02:00 |
|
Tom Hvitved
|
9f10018d48
|
Address review comment
|
2021-09-16 13:11:03 +02:00 |
|
Taus
|
783233dfe4
|
Merge pull request #6696 from yoff/python/copy-multiples-performance-fix-from-ruby
Python: Copy performance fix for `multiples` from ruby
|
2021-09-16 13:01:07 +02:00 |
|
Tony Torralba
|
8022530f34
|
Merge pull request #5983 from atorralba/atorralba/promote-insecure-basic-auth
Java: Promote Insecure Basic Authentication query from experimental
|
2021-09-16 11:45:30 +02:00 |
|
Tom Hvitved
|
37ec83a68b
|
Python: Upgrade script
|
2021-09-16 10:51:27 +02:00 |
|
Tom Hvitved
|
94b5c4eada
|
Python: Drop redundant columns from files and folders relations
|
2021-09-16 10:51:27 +02:00 |
|
Benjamin Muskalla
|
d3caa80274
|
Merge pull request #6706 from github/workflow/coverage/update
Update CSV framework coverage reports
|
2021-09-16 09:58:19 +02:00 |
|
Erik Krogh Kristensen
|
0198cf6318
|
Merge pull request #6704 from erik-krogh/fix-upgrade
JS: fix dbsheme upgrade from TypeScript 4.4 PR
|
2021-09-16 08:34:58 +02:00 |
|
Anders Schack-Mulligen
|
236ffc8972
|
Merge pull request #6700 from aschackmull/dataflow/subpaths-joinorder
Dataflow: Fix bad joinorder in subpaths
|
2021-09-16 08:22:59 +02:00 |
|
github-actions[bot]
|
563878d28d
|
Add changed framework coverage reports
|
2021-09-16 00:08:03 +00:00 |
|
Erik Krogh Kristensen
|
5c73fed83a
|
fix dbsheme upgrade from TypeScript 4.4 PR
|
2021-09-15 22:38:27 +02:00 |
|
Ethan P
|
080867a390
|
Add reviewer feedback
|
2021-09-15 11:19:41 -07:00 |
|
Nick Rolfe
|
f76ce8b33b
|
Merge pull request #6686 from hvitved/cpp/files-folders-drop-columns
C++: Drop redundant columns from `files` and `folders` relations
|
2021-09-15 18:33:20 +01:00 |
|
Mathias Vorreiter Pedersen
|
33ef634ea8
|
Merge pull request #6679 from andersfugmann/relax_memberMayBeVarSize
Improve precision on OverflowStatic query.
|
2021-09-15 17:24:10 +01:00 |
|
Tony Torralba
|
d3cf697b07
|
QLDoc
|
2021-09-15 17:32:36 +02:00 |
|
Tony Torralba
|
5ed9949498
|
Adapt InsecureBasicAuth to the previous commit
|
2021-09-15 17:20:28 +02:00 |
|
Tony Torralba
|
2e08c5dd2b
|
Refactored HttpsUrls.ql
|
2021-09-15 17:20:28 +02:00 |
|
Tony Torralba
|
c3c73377b8
|
Fix scope issues in the Java example
|
2021-09-15 17:20:28 +02:00 |
|
Tony Torralba
|
023264660b
|
Suggestions from code review
|
2021-09-15 17:20:28 +02:00 |
|
mc
|
0e7cbbfeb8
|
Update InsecureBasicAuth.qhelp
|
2021-09-15 17:20:28 +02:00 |
|
mc
|
e58b90ef1c
|
Added full stops
|
2021-09-15 17:20:28 +02:00 |
|
Tony Torralba
|
e159351179
|
Update java/change-notes/2021-06-01-insecure-basic-auth-query.md
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
|
2021-09-15 17:20:27 +02:00 |
|
Tony Torralba
|
30178d4f23
|
Decouple InsecureBasicAuth.qll to reuse the taint tracking configuration
|
2021-09-15 17:20:27 +02:00 |
|
Tony Torralba
|
90df3fa94c
|
Remove CWE reference from qlhelp since it's obtained from metadata
|
2021-09-15 17:20:27 +02:00 |
|
Tony Torralba
|
49c6a56f97
|
Add change note
|
2021-09-15 17:20:27 +02:00 |
|
Tony Torralba
|
148443fae1
|
Use InlineExpectationsTest
|
2021-09-15 17:20:27 +02:00 |
|
Tony Torralba
|
2cada386b4
|
Refactored into InsecureBasicAuth.qll
|
2021-09-15 17:20:27 +02:00 |
|
Tony Torralba
|
905be67aae
|
Moved from experimental
|
2021-09-15 17:20:27 +02:00 |
|
Anders Schack-Mulligen
|
c0fd44c909
|
Dataflow: Sync.
|
2021-09-15 16:10:54 +02:00 |
|
Anders Schack-Mulligen
|
3abe1b4fc6
|
Dataflow: Fix bad join-order.
|
2021-09-15 16:10:30 +02:00 |
|
Geoffrey White
|
c4714b55a3
|
Merge pull request #6588 from ihsinme/ihsinme-patch-069
CPP: Add query for CWE-675: Duplicate Operations on Resource
|
2021-09-15 15:10:03 +01:00 |
|
Jonas Jensen
|
65f4ec403f
|
Merge pull request #6593 from geoffw0/samate-move
C++: Add test cases with SAMATE Juliet code snippets to the codeql test suite.
|
2021-09-15 14:18:08 +02:00 |
|
Erik Krogh Kristensen
|
3f736d3eb8
|
Merge pull request #6694 from erik-krogh/owasp-fixes
JS/Java: use the correct cwe tags
|
2021-09-15 13:46:35 +02:00 |
|
CodeQL CI
|
b228398b87
|
Merge pull request #6587 from erik-krogh/ts44
Approved by asgerf
|
2021-09-15 04:00:13 -07:00 |
|
Geoffrey White
|
0e7afb24cf
|
Merge pull request #6643 from MathiasVP/add-frontend-and-extractor-diagnostic-query
C++: Add uninterpreted query for obtaining frontend and extraction time
|
2021-09-15 11:17:58 +01:00 |
|
Geoffrey White
|
9ad51fbc02
|
C++: Fix the correct test this time.
|
2021-09-15 11:03:09 +01:00 |
|
Erik Krogh Kristensen
|
cf149bd8c8
|
add static_initializer as a stmt_parent
|
2021-09-15 11:54:30 +02:00 |
|
Chris Smowton
|
03db15af9a
|
Merge pull request #6685 from smowton/smowton/admin/android-uri-model
Java: Add models for android.net.Uri[.Builder]
|
2021-09-15 10:48:33 +01:00 |
|
Erik Krogh Kristensen
|
0b83d033d7
|
add @static_initializer in the stats file
|
2021-09-15 11:33:05 +02:00 |
|
Anders Fugmann
|
e49cd83868
|
C++: update change note per suggestion from peer review
|
2021-09-15 10:31:15 +02:00 |
|
Anders Schack-Mulligen
|
8485b6f0b3
|
Merge pull request #6691 from bmuskalla/moreStringMethods
Java: Support String#getChars and #translateEscapes
|
2021-09-15 10:14:54 +02:00 |
|
CodeQL CI
|
220f2ded85
|
Merge pull request #6698 from asgerf/js/template-self-assignment
Approved by esbena
|
2021-09-15 01:08:39 -07:00 |
|
Anders Schack-Mulligen
|
3f7d6e6f85
|
Merge pull request #6136 from smowton/smowton/admin/spring-xss-content-type-sensitivity
Spring HTTP: improve content-type sensitivity
|
2021-09-15 09:50:56 +02:00 |
|
Anders Schack-Mulligen
|
2a9e3da24f
|
Merge pull request #6697 from github/workflow/coverage/update
Update CSV framework coverage reports
|
2021-09-15 09:35:09 +02:00 |
|
Asger Feldthaus
|
b5db4047a0
|
JS: Exclude template files in SelfAssignment
|
2021-09-15 08:59:47 +02:00 |
|