codeql

mirror of https://github.com/github/codeql.git synced 2025-12-24 12:46:34 +01:00

Author	SHA1	Message	Date
Tony Torralba	c54e93f005	Merge pull request #13705 from atorralba/atorralba/java/android-unsafe-fetch-apply Java: Add support for Kotlin's `apply` to java/android/unsafe-android-wevbiew-fetch	2023-07-12 09:45:54 +02:00
Owen Mansel-Chan	8e85f4d91c	Merge pull request #13601 from pwntester/ruby/add_bun_support Go: Add support for Bun library	2023-07-11 14:48:48 +01:00
Owen Mansel-Chan	84bfd10352	Merge pull request #13589 from owen-mc/go/tolerate-go-mod-not-in-project-root Go: Deal better with a single go.mod file which is not in the project root	2023-07-11 14:32:10 +01:00
Asger F	c8af28c2ca	Merge pull request #13700 from asgerf/js/path-join-spread JS: Recognize 'fs/promises' alias and handle spread arguments in path.join()	2023-07-11 15:31:13 +02:00
Geoffrey White	cffdc0a8a7	Merge pull request #13698 from geoffw0/url2 Swift: Expand taint models for URL	2023-07-11 13:14:20 +01:00
Jeroen Ketema	92ee31849c	Merge pull request #13643 from jketema/inline-5 Rework the remaining inline expectation tests to use the parameterized module	2023-07-11 11:29:14 +02:00
Geoffrey White	5ef097fd66	Swift: Update consistency check .expected to exactly match CI.	2023-07-11 09:54:39 +01:00
Mathias Vorreiter Pedersen	a4c0063ab1	Merge pull request #13679 from MathiasVP/speedup-big-step DataFlow: Speed up the big step relation	2023-07-11 09:44:17 +01:00
Jeroen Ketema	d217e1e87c	Merge pull request #13647 from purs3lab/uninitialized-local C++: exclude uninitialized uses inside pure expression statements	2023-07-11 10:31:33 +02:00
Jeroen Ketema	8cee4f37a4	Merge branch 'main' into inline-5	2023-07-11 10:30:11 +02:00
Tony Torralba	93ad204abd	Merge pull request #13708 from github/workflow/coverage/update Update CSV framework coverage reports	2023-07-11 09:48:12 +02:00
github-actions[bot]	7b8cd77cec	Add changed framework coverage reports	2023-07-11 00:19:16 +00:00
Jeroen Ketema	8cec884c59	Merge pull request #13701 from rdmarsh2/rdmarsh2/cpp/constant-array-overflow-tests-2 C++: more constant array off-by-one tests	2023-07-11 00:17:09 +02:00
Jeroen Ketema	3fe99dc4c7	Merge pull request #13704 from jketema/ir-test C++: Add assignment operation IR test where the result is being used	2023-07-10 19:01:24 +02:00
Robert Marsh	5eea8e49b7	C++: more constant array off-by-one tests	2023-07-10 12:51:48 -04:00
Jeroen Ketema	de3251a634	C++: Add assignment operation IR test where the result is being used	2023-07-10 17:55:50 +02:00
Tony Torralba	ce600367df	Java: Add support for Kotlin's apply to java/android/unsafe-android-webview-fetch	2023-07-10 17:40:16 +02:00
Tony Torralba	16529cdd18	Add failing test	2023-07-10 17:40:15 +02:00
Tony Torralba	b70e21df4f	Merge pull request #13702 from atorralba/atorralba/kotlin/apply Kotlin: Support apply	2023-07-10 17:39:57 +02:00
Tony Torralba	0f18c0227b	Kotlin: Support apply	2023-07-10 16:15:27 +02:00
Geoffrey White	ce9c367e90	Swift: Add a .expected file for the consistency test failure.	2023-07-10 13:30:26 +01:00
Asger F	8234b8f175	JS: Change note	2023-07-10 13:19:44 +02:00
Asger F	d88f557dbe	Merge pull request #13683 from asgerf/rb/api-graph-noobject Ruby: exclude Object class from API graph	2023-07-10 12:51:15 +02:00
Asger F	27085b1fd0	JS: Fix whitespace	2023-07-10 12:07:13 +02:00
Asger F	fe90146a16	JS: Add test for path.join with spread argument	2023-07-10 12:07:07 +02:00
Asger F	06bc0f6957	JS: Add test for fs/promises	2023-07-10 12:05:03 +02:00
Erik Krogh Kristensen	e5cc5a1ede	Merge pull request #13693 from github/dependabot/cargo/ql/regex-1.9.1 Bump regex from 1.9.0 to 1.9.1 in /ql	2023-07-10 10:08:52 +02:00
Alvaro Muñoz	b380853d1a	remove already modeled stubs	2023-07-10 09:58:35 +02:00
AlexDenisov	408e7ad572	Merge pull request #13678 from github/alexdenisov/5.9-preparation Swift: 5.9 preparation	2023-07-10 08:35:17 +02:00
dependabot[bot]	be71898a65	Bump regex from 1.9.0 to 1.9.1 in /ql Bumps [regex](https://github.com/rust-lang/regex) from 1.9.0 to 1.9.1. - [Release notes](https://github.com/rust-lang/regex/releases) - [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md) - [Commits](https://github.com/rust-lang/regex/compare/1.9.0...1.9.1) --- updated-dependencies: - dependency-name: regex dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-07-10 03:42:24 +00:00
Mathias Vorreiter Pedersen	44f23bfa59	Merge pull request #13690 from github/post-release-prep/codeql-cli-2.14.0 Post-release preparation for codeql-cli-2.14.0	2023-07-07 23:39:38 +01:00
Mingjie Shen	d8e0ffa52d	Update cpp/ql/src/Likely Bugs/Memory Management/UninitializedLocal.ql Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>	2023-07-07 12:25:42 -04:00
github-actions[bot]	13cf054a9d	Post-release preparation for codeql-cli-2.14.0	2023-07-07 14:55:41 +00:00
Tamás Vajk	4028a50c4c	Merge pull request #13689 from tamasvajk/fix-conflict C#: Add missing parameter to interface	2023-07-07 16:42:38 +02:00
Tamas Vajk	65ed244f34	C#: Add missing parameter to interface	2023-07-07 16:10:41 +02:00
Tamás Vajk	9cef290bc3	Merge pull request #13687 from tamasvajk/standalone/nugetconfig C#: Use `nuget.config` file for `dotnet restore` fallback logic	2023-07-07 15:53:07 +02:00
Jeroen Ketema	c2be2c2738	Add change note for `InlineExpectationsTest` class deprecation	2023-07-07 15:26:47 +02:00
Michael Nebel	314ca79881	Merge pull request #13667 from michaelnebel/csharp/standalonescan C#: Use dotnet --list-runtimes to find runtime locations.	2023-07-07 15:15:33 +02:00
Rasmus Wriedt Larsen	a850a481d0	Merge pull request #13676 from RasmusWL/aiohttp-ssrf-sink Python: Relax restriction of flow through `async with`	2023-07-07 14:55:57 +02:00
Tamas Vajk	23f3e44fa1	C#: Use `nuget.config` file for `dotnet restore` fallback logic	2023-07-07 14:47:07 +02:00
Asger F	b14cac6b28	Merge pull request #12689 from asgerf/rb/perf-diagnostics Ruby: performance diagnostics query	2023-07-07 14:25:56 +02:00
Asger F	965ca169e5	JS: Recognise fs/promises	2023-07-07 14:14:49 +02:00
Asger F	d49359a95c	JS: Add step through spread arg to path.join()	2023-07-07 14:10:50 +02:00
Michael Nebel	e4aaa43c43	C#: Also support alpha, beta, rc candidates.	2023-07-07 14:06:11 +02:00
Mathias Vorreiter Pedersen	1af60aa9d4	Merge pull request #13684 from github/release-prep/2.14.0 Release preparation for version 2.14.0 codeql-cli/v2.14.0	2023-07-07 12:30:09 +01:00
Michael Nebel	f065ba9aa1	C#: Add unit tests for runtime version fetching.	2023-07-07 13:21:02 +02:00
Michael Nebel	4270425f14	C#: Cater for preview versions.	2023-07-07 13:16:35 +02:00
Michael Nebel	bffdbbcf95	C#: Address review comments.	2023-07-07 13:16:34 +02:00
Mathias Vorreiter Pedersen	a826c8327a	Merge pull request #13682 from jketema/ptr-comp C++: Support pointer addition and subtraction in the IRGuards library	2023-07-07 11:32:43 +01:00
Rasmus Wriedt Larsen	4920557c36	Merge pull request #13670 from jorgectf/seclab/xxe-sanitizer Python: Add `markupsafe` as XXE sanitizer	2023-07-07 12:30:26 +02:00

1 2 3 4 5 ...

56504 Commits