codeql

mirror of https://github.com/github/codeql.git synced 2026-04-28 02:05:14 +02:00

Author	SHA1	Message	Date
Asger Feldthaus	f23c6030aa	JS: Restrict domValueRef to known DOM property names	2020-06-10 15:14:23 +01:00
Asger Feldthaus	bb2b7fb6fb	JS: Add test with class stored in global variable	2020-06-10 15:14:23 +01:00
Asger Feldthaus	36c4803694	JS: Add test	2020-06-10 14:08:33 +01:00
semmle-qlci	df79f2adc5	Merge pull request #3655 from asger-semmle/js/string-ops-regexp-test-fix Approved by esbena	2020-06-10 13:35:22 +01:00
Esben Sparre Andreasen	1d396524a3	JS: add initial version of ServerCrash.ql	2020-06-10 14:25:56 +02:00
Erik Krogh Kristensen	c4f61134f1	include the source of cryptographically random number in alert message	2020-06-10 13:32:46 +02:00
Erik Krogh Kristensen	7e8fd80327	use steps from InsecureRandomness, and use small-steps	2020-06-10 12:27:50 +02:00
Erik Krogh Kristensen	9189f23403	add support for secure-random	2020-06-10 10:39:02 +02:00
Erik Krogh Kristensen	16ec405724	add explanations about modulo by power of 2	2020-06-10 10:38:47 +02:00
Erik Krogh Kristensen	111f6d406c	introduce query to detect biased random number generators	2020-06-10 10:00:10 +02:00
Erik Krogh Kristensen	b8a9ac39f4	add lValueFlowStep for rest-pattern nested inside a property-pattern (and removed old incorrect approach)	2020-06-09 18:16:00 +02:00
Erik Krogh Kristensen	b6e0e6645f	Merge pull request #3645 from erik-krogh/infExposure JS: add query to detect accidential leak of private files	2020-06-09 17:38:31 +02:00
Erik Krogh Kristensen	b510e470b1	support rest-patterns inside property patterns	2020-06-09 13:28:56 +02:00
Erik Krogh Kristensen	b04d7015ae	fix test	2020-06-09 11:23:46 +02:00
Asger Feldthaus	0345036420	JS: Fix 'match' call in StringOps::RegExpTest	2020-06-09 10:07:36 +01:00
Esben Sparre Andreasen	2d2468463b	JS: initial version of IncompleteMultiCharacterSanitization.ql	2020-06-09 08:59:59 +02:00
Erik Krogh Kristensen	167239e745	add query to detect accidential leak of private files	2020-06-08 23:41:14 +02:00
Erik Krogh Kristensen	0f06f04e32	extend support for yargs for js/indirect-command-line-injection	2020-06-08 16:45:09 +02:00
semmle-qlci	ff6936caa7	Merge pull request #3625 from erik-krogh/CVE714 Approved by asgerf	2020-06-05 12:21:10 +01:00
semmle-qlci	69a1e11c06	Merge pull request #3609 from erik-krogh/CredFN Approved by asgerf, esbena	2020-06-05 10:49:01 +01:00
Erik Krogh Kristensen	815671f5d0	add sanitizer guard for typeof undefined	2020-06-04 21:32:26 +02:00
Max Schaefer	9549b01e3c	JavaScript: Turn on experimental language features for two tests. All other tests already pass with experimental features turned on, so once this is merged we can do so by default.	2020-06-04 11:27:31 +01:00
semmle-qlci	70131e6ac8	Merge pull request #3598 from asger-semmle/js/regexp-test Approved by esbena	2020-06-04 09:05:21 +01:00
Erik Krogh Kristensen	a90c8769ee	update expected output	2020-06-03 15:24:04 +02:00
Erik Krogh Kristensen	a1940979ba	support credentials in a Buffer	2020-06-03 12:02:00 +02:00
Erik Krogh Kristensen	ba44ebe8a8	better support for browser based fetch API	2020-06-03 11:51:24 +02:00
Erik Krogh Kristensen	3622fb8716	support more variants of the Headers API	2020-06-03 11:50:10 +02:00
Erik Krogh Kristensen	3c802007a3	add support for string concatenations and base64-encoding of hardcoded credentials	2020-06-02 23:15:13 +02:00
Erik Krogh Kristensen	b6dc94fccb	add fetch.Headers.Authorization as a CredentialsExpr	2020-06-02 23:02:16 +02:00
Asger Feldthaus	8a38633639	JS: Handle exec() == undefined	2020-06-02 16:52:07 +01:00
Asger Feldthaus	945db4d86c	JS: Fix test output	2020-06-02 16:38:21 +01:00
Esben Sparre Andreasen	f9ed64fc45	Merge branch 'master' into js/membershiptest	2020-06-02 08:54:44 +02:00
Asger Feldthaus	707b0f33a0	JS: Use in ContainsHTMLGuard	2020-06-01 12:06:40 +01:00
Asger Feldthaus	fa1a6eefa7	JS: Add StringOps::RegExpTest	2020-06-01 11:43:50 +01:00
Erik Krogh Kristensen	5bb308dc8f	sanitize variables used in an HTML escaping switch-case	2020-05-28 12:37:41 +02:00
Erik Krogh Kristensen	1a2db10a90	recognize barrier guard where the result is stored in a variable	2020-05-28 10:24:42 +02:00
Erik Krogh Kristensen	562a38cdd5	add ContainsHTMLGuard	2020-05-28 10:24:42 +02:00
Erik Krogh Kristensen	33da82d884	Merge branch 'master' of https://github.com/github/codeql into pr/erik-krogh/3566	2020-05-27 12:21:14 +00:00
Erik Krogh Kristensen	d05a61c745	Merge branch 'master' of https://github.com/github/codeql into pr/erik-krogh/3566	2020-05-27 12:12:08 +00:00
Erik Krogh Kristensen	319363f56c	update expected output	2020-05-26 18:47:37 +02:00
Erik Krogh Kristensen	124c4cb15e	Merge branch 'master' of github.com:github/codeql into OptionalSanitizer	2020-05-26 13:59:57 +02:00
semmle-qlci	be5b343a0c	Merge pull request #3564 from max-schaefer/js/reflective-argument-access Approved by asgerf	2020-05-26 12:09:13 +01:00
Erik Krogh Kristensen	ad40c4b0f2	add a sanitizer guard for safe attribute string concatenations	2020-05-26 12:36:47 +02:00
semmle-qlci	4b0354c4bc	Merge pull request #3555 from max-schaefer/js/require-flow Approved by asgerf	2020-05-26 10:54:21 +01:00
Max Schaefer	7ddf5ced23	JavaScript: Update expected output for unrelated tests.	2020-05-26 10:49:30 +01:00
semmle-qlci	4b56229ca0	Merge pull request #3527 from esbena/js/fastify Approved by asgerf	2020-05-26 10:44:59 +01:00
semmle-qlci	df205b617e	Merge pull request #3539 from asger-semmle/js/capture-level-flow Approved by erik-krogh	2020-05-26 10:42:14 +01:00
Max Schaefer	9d3a9d71f1	JavaScript: Add basic support for reasoning about reflective parameter accesses. Currently, only `arguments[c]` for a constant value `c` is supported. This allows us to detect the prototype-pollution vulnerabilities in (old versions of) `extend`, `jquery`, and `node.extend`.	2020-05-26 09:59:29 +01:00
Max Schaefer	a39e8b4802	JavaScript: Add test for `FlowSteps::argumentPassing` predicate.	2020-05-26 09:51:06 +01:00
Erik Krogh Kristensen	9254df1f78	sanitize optionally sanitized values	2020-05-26 00:09:11 +02:00

1 2 3 4 5 ...

1875 Commits