codeql

mirror of https://github.com/github/codeql.git synced 2025-12-18 09:43:15 +01:00

Author	SHA1	Message	Date
Asger Feldthaus	cff8dc0537	JS: Improve flow through Array.prototype.reduce	2022-04-07 09:57:31 +02:00
Asger Feldthaus	8753632193	JS: Fix bug in reachableFromStoreBase	2022-03-17 17:30:46 +01:00
Asger Feldthaus	b336c29283	JS: Track functions with methods	2021-12-10 09:38:29 +01:00
Asger Feldthaus	4ef2a5f4f1	JS: Add test	2021-12-10 09:38:29 +01:00
Erik Krogh Kristensen	d2c74480b9	add taint step through flatten libraries	2021-07-15 12:36:07 +02:00
Erik Krogh Kristensen	77f4d56cd9	add taint step through `array-union`, `array-uniq`, and `uniq`	2021-07-15 12:32:29 +02:00
Erik Krogh Kristensen	5ff7d208b7	add taint step through `arrify`	2021-07-15 11:24:50 +02:00
CodeQL CI	f9b539e5b9	Merge pull request #6253 from asgerf/js/more-precise-capture-steps Approved by erik-krogh	2021-07-13 07:42:07 -07:00
CodeQL CI	c87fe95d52	Merge pull request #6258 from erik-krogh/case Approved by asgerf	2021-07-13 05:44:49 -07:00
Erik Krogh Kristensen	d22ebadcf2	add support for many more case changing libraries	2021-07-12 14:09:34 +02:00
Erik Krogh Kristensen	a5d1325d3f	add support for the `change-case` library	2021-07-12 13:37:06 +02:00
Erik Krogh Kristensen	bef7e61e76	add support for the `fast-json-stringify` library	2021-07-12 11:13:01 +02:00
Erik Krogh Kristensen	40aa970db3	add support for the `strip-json-comments` library	2021-07-12 11:08:50 +02:00
Erik Krogh Kristensen	23c3be6860	add support for the `json-cycle` library	2021-07-12 11:03:39 +02:00
Erik Krogh Kristensen	f99a33598f	add support for the `safe-stable-stringify` library	2021-07-12 10:51:43 +02:00
Erik Krogh Kristensen	d6300bced3	add support for the `replicator` library	2021-07-12 10:51:43 +02:00
Erik Krogh Kristensen	babf657d9d	add support for the `teleport-javascript` library	2021-07-12 10:51:43 +02:00
Erik Krogh Kristensen	9261b7f859	add support for the `flatted` library	2021-07-12 10:51:43 +02:00
Erik Krogh Kristensen	0bfff1eb7e	add support for the `json5` library	2021-07-12 10:51:42 +02:00
Erik Krogh Kristensen	cb3bd4901b	add taint step through the `json2csv` library	2021-07-12 10:51:42 +02:00
Asger Feldthaus	457ce14ca6	JS: Summarize steps into captured variables	2021-07-02 13:42:42 +02:00
Asger Feldthaus	093ff41170	JS: Update tests	2021-07-02 13:31:17 +02:00
Asger Feldthaus	8befb03cb9	JS: Add test case with spurious call/return flow	2021-07-02 13:17:32 +02:00
Erik Krogh Kristensen	0adc001df0	add taint-step for `serialize-javascript`	2021-06-06 22:48:53 +02:00
Erik Krogh Kristensen	902a4368a1	assume that all pipe elements that return something, return outputs	2021-04-28 12:36:07 +02:00
Erik Krogh Kristensen	2f14a6218a	generalize RxJS pipes	2021-04-28 12:26:02 +02:00
Erik Krogh Kristensen	fd23e0bdda	use more API nodes in XmlParsers, and recognize more results from parsing XML	2021-04-14 11:48:31 +02:00
Asger Feldthaus	bd3f6d1234	JS: Add `o[o.length] = y` taint step	2021-03-25 09:00:10 +00:00
CodeQL CI	e3ab94fc6b	Merge pull request #5498 from asgerf/js/flow-through-accessors Approved by erik-krogh, max-schaefer	2021-03-24 12:46:05 +00:00
Asger Feldthaus	23d2f11840	JS: Handle inheritance	2021-03-23 14:39:37 +00:00
Asger Feldthaus	3d94ccf5dd	JS: Support accessor-calls in object literals via local flow	2021-03-23 14:16:06 +00:00
Asger F	2f3d516413	JS: Track flow into ES accessors	2021-03-19 11:11:25 +00:00
Asger Feldthaus	e4d891cab5	JS: Add tests for flow through replace	2021-03-17 15:20:40 +00:00
Erik Krogh Kristensen	0ca2310594	add model for htmlparser2	2021-02-10 14:16:31 +01:00
Erik Krogh Kristensen	e2a66bf3ed	add model for `xml-js`	2021-02-10 14:16:31 +01:00
Erik Krogh Kristensen	73f7cd149f	add model for `sax`	2021-02-10 14:16:31 +01:00
Erik Krogh Kristensen	c43025d7b3	add model for xml2js	2021-02-10 14:16:30 +01:00
Erik Krogh Kristensen	44ca2e26a6	add taint-step to XML parsers	2021-02-10 14:16:08 +01:00
Asger Feldthaus	1d1149f4cd	JS: Test and QLDoc for RxJS model	2021-01-21 12:08:22 +00:00
Asger Feldthaus	0496642b0b	JS: Add test for captured flow into callback	2020-12-07 10:34:27 +00:00
Erik Krogh Kristensen	65a1769d43	Merge branch 'main' into asyncCalls	2020-08-21 14:58:27 +02:00
Erik Krogh Kristensen	9bcac10d9e	summarize exceptions thrown by immidiatly awaited function calls	2020-08-10 13:28:25 +02:00
Erik Krogh Kristensen	aab2e6f803	update name of test file	2020-08-07 18:20:22 +02:00
Erik Krogh Kristensen	cc94c5ec60	remove imprecise return-flow from async functions	2020-08-07 17:33:24 +02:00
Erik Krogh Kristensen	f70cb2e7b3	add test for new JSON serializers	2020-08-05 12:14:56 +02:00
Asger Feldthaus	06dd3ab2ca	JS: Propagate into RegExp.$x	2020-06-26 18:58:43 +01:00
Esben Sparre Andreasen	f9ed64fc45	Merge branch 'master' into js/membershiptest	2020-06-02 08:54:44 +02:00
Asger Feldthaus	75be3b7ecb	JS: Add test case for missed captured flow	2020-05-21 16:14:13 +01:00
Esben Sparre Andreasen	ddb545c182	JS: introduce MembershipTests.qll and use in two locations	2020-05-18 09:50:00 +02:00
Asger Feldthaus	0edb765958	JS: Split test case function in two	2020-03-18 11:55:13 +00:00

1 2 3

106 Commits