hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-18 21:44:02 +02:00
Code Issues Packages Projects Releases Wiki Activity
86,767 Commits 1,740 Branches 165 Tags
cedacc91db92af5ea5437bc459fdf373ff97569f
Commit Graph

86767 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tom Hvitved
09a2dd4a2e Update rust/ql/lib/codeql/rust/internal/typeinference/FunctionType.qll 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-03-25 15:01:39 +01:00
Paolo Tranquilli
6c52de9234 Merge pull request #21566 from github/redsun82/csharp-opt-out-of-dotnet-telemetry 
C#: Opt out of dotnet CLI telemetry
 2026-03-25 14:55:33 +01:00
Tom Hvitved
c579ec9ea7 Merge pull request #21575 from hvitved/rust/model-generator-taint-steps 
Rust: Include taint steps when generating flow models
 2026-03-25 14:41:36 +01:00
Owen Mansel-Chan
898713538f Merge pull request #21563 from owen-mc/rust/allow-mad-barriers 
Rust: Enable MaD barriers for queries with MaD sinks
 2026-03-25 12:55:31 +00:00
Tom Hvitved
fba4a83dc8 Rust: Include taint steps when generating flow models 2026-03-25 12:52:08 +01:00
Owen Mansel-Chan
f25d7456da Fix QL formatting 2026-03-25 10:05:04 +00:00
Óscar San José
851315fb93 Merge pull request #21573 from github/release-prep/2.25.1 
Release preparation for version 2.25.1
 2026-03-25 10:55:04 +01:00
Tom Hvitved
6295f57a87 Rust: Take additional type parameter constraints into account 2026-03-25 10:11:04 +01:00
github-actions[bot]
8cf0954796 Release preparation for version 2.25.1 2026-03-25 08:28:30 +00:00
Owen Mansel-Chan
bedfe1e755 Apply suggestions from code review 
Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
 2026-03-24 22:06:53 +00:00
Simon Friis Vindum
0ed037d667 Merge pull request #21544 from paldepind/cpp/extraction-information-expr-types 
C++: Add expressions with type data to `cpp/extraction-information`
 2026-03-24 17:16:47 +01:00
Jeroen Ketema
dad517ff5e C++: Fix typo 2026-03-24 16:16:14 +01:00
Jeroen Ketema
db7c61969d Update cpp/ql/lib/change-notes/2026-03-24-field-init.md 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-03-24 16:11:10 +01:00
Jeroen Ketema
49c5cc05ac Update cpp/ql/lib/semmle/code/cpp/ir/implementation/raw/internal/TranslatedCall.qll 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-03-24 16:09:33 +01:00
Simon Friis Vindum
8cb5380d84 C++: Remove unused find predicate 2026-03-24 15:54:46 +01:00
Tom Hvitved
ddc407257f Rust: Type inference test 2026-03-24 15:41:43 +01:00
Jeroen Ketema
0f44d6a780 C++: Add change note 2026-03-24 15:39:09 +01:00
Jeroen Ketema
4a637cbe0a C++: Accept dataflow test changes 
These need to be looked at, but because data flow through default field
initialization is currently not working, let's postpone this as part of that
work.
 2026-03-24 15:34:34 +01:00
Jeroen Ketema
b554d7dd16 C++: Fix QL-for-QL warnings 2026-03-24 15:33:35 +01:00
Jeroen Ketema
f3fc80a080 C++: Update expected test results 2026-03-24 15:33:34 +01:00
Jeroen Ketema
22eda4ef0a C++: Add call side effects for default field initializations to the IR 2026-03-24 15:33:32 +01:00
Jeroen Ketema
e986d8922a C++: Call functions for NSDMI initialization 
Currently missing: side-effect information for the functions
 2026-03-24 15:33:30 +01:00
Jeroen Ketema
b91a52a050 C++: Allow getInstructionFunction to yield a declaration 2026-03-24 15:33:29 +01:00
Jeroen Ketema
9e60e1217f C++: Update expected test results 2026-03-24 15:33:27 +01:00
Jeroen Ketema
09f930f4e8 C++: Generate initialization function for each NSDMI 2026-03-24 15:33:25 +01:00
Jeroen Ketema
68039ecd68 C++: Add NSDMI dataflow test 2026-03-24 15:33:24 +01:00
Jeroen Ketema
59c27a2196 C++: Add NSDMI tests 2026-03-24 15:33:22 +01:00
Jeroen Ketema
07603a835a C++: Rename CallOrAllocationExpr to something more generic 2026-03-24 15:33:20 +01:00
Jeroen Ketema
5aabd90eff C++: Add direct and default initialization subclasses for ConstructorFieldInit 2026-03-24 15:32:58 +01:00
Michael Nebel
d96e8cb704 C#: Remove expr_parent_adjusted. 2026-03-24 15:32:20 +01:00
Michael Nebel
a900fe8657 C#: Adress review comments. 2026-03-24 15:32:17 +01:00
Michael Nebel
3d2d09d0bc C#: Use the DB types and replace the abstract class implementation. 2026-03-24 15:32:15 +01:00
Michael Nebel
96f55fbdf1 C#: Add operation types to the DB scheme. 2026-03-24 15:32:13 +01:00
Michael Nebel
55516342b2 C#: Add/update tests and expected output. 2026-03-24 15:32:11 +01:00
Michael Nebel
51673312c5 C#: Upgrade libraries and queries to use the new Operation classes. 2026-03-24 15:32:08 +01:00
Michael Nebel
149df86ce2 C#: Update the CFG implementation based on the new operations and remove hack that rotates children of assignments. 2026-03-24 15:32:06 +01:00
Michael Nebel
569e33b407 C#: Introduce a new kind of assignable definitions for compound assignments (those that was previously covered by expanded assignments). 2026-03-24 15:32:04 +01:00
Michael Nebel
e2afb000b2 C#: Cleaup expanded assignments from the dispatch logic. 2026-03-24 15:32:02 +01:00
Michael Nebel
2a78183238 C#: Deprecate the expanded assignment predicate as we no longer extract expanded assignments. 2026-03-24 15:32:00 +01:00
Michael Nebel
327757dbcb C#: Update the child indices for assignments, update Assign classes to extend OperatorCall and add AssignOperation classes. 2026-03-24 15:31:57 +01:00
Michael Nebel
b426c6fb39 C#: Update the DB scheme to reflect that assign arithmetic- and bitwise operations are operator calls. 2026-03-24 15:31:55 +01:00
Michael Nebel
c8169f576f C#: Don't extract expanded assignments and swap child indices for assignments. 2026-03-24 15:31:53 +01:00
Paolo Tranquilli
14b3f6211e C#: Opt out of dotnet CLI telemetry 
Add `DOTNET_CLI_TELEMETRY_OPTOUT=1` to the minimal environment used for
all `dotnet` invocations. The telemetry is unnecessary and may even be
causing segfaults in some cases.
 2026-03-24 14:16:49 +01:00
Taus
059693ce89 Python: Restrict ShouldBeContextManager.ql results 
By limiting the results to the class that actually defines the `__del__`
method, we eliminate a bunch of FPs where a _subclass_ of such a class
would also get flagged.
 2026-03-24 13:04:44 +00:00
Florin Coada
70d8c1c76e Merge pull request #21558 from github/codeql-spark-run-23458057791 
Update changelog documentation site for codeql-cli-2.25.0
 2026-03-24 12:54:23 +00:00
Taus
f245da1e52 Merge pull request #21560 from github/tausbn/cpp-fix-bad-join-in-printf 
C++: Fix bad join in `callsVariadicFormatter`
 2026-03-24 13:37:23 +01:00
Owen Mansel-Chan
7e6319d648 Remove unused field 2026-03-24 10:39:32 +00:00
Owen Mansel-Chan
93231794ee Document that MaD barriers for hardcoded credentials apply to all kinds 2026-03-24 10:39:05 +00:00
Owen Mansel-Chan
5762191832 Enable MaD barriers for queries with MaD sinks 2026-03-24 10:28:25 +00:00
Owen Mansel-Chan
fd8821fcb5 Merge pull request #21475 from owen-mc/rust/mad-barriers 
Rust: Add support for defining barriers and barrier guards using models-as-data
 2026-03-24 09:31:24 +00:00