codeql

mirror of https://github.com/github/codeql.git synced 2026-05-14 11:19:27 +02:00

Author	SHA1	Message	Date
murderteeth	cff07342f5	Recognize legacy @now/node type aliases Extends the Vercel serverless handler detection to also match the deprecated Zeit-era @now/node package with NowRequest/NowResponse types. Per-review feedback from asgerf, these aliases still appear in real-world code. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-13 17:31:29 +00:00
murderteeth	dfe05599d3	JS: Add support for @vercel/node serverless functions This adds a framework model for Vercel serverless functions so that CodeQL's existing JavaScript security queries can detect vulnerabilities in handlers of the form export default function handler(req: VercelRequest, res: VercelResponse) { ... } Handlers are identified as the default export of a module whose first two parameters are typed as `VercelRequest`/`VercelResponse` from `@vercel/node`. The default-export constraint excludes private helpers that share the same signature. Type-based detection follows the same pattern already used by `NextReqResHandler` in `Next.qll`. The framework model covers: - Route handler recognition (default-exported typed handlers only) - Request input sources: `query`, `body`, `cookies`, and `url` (the last inherited from Node's `IncomingMessage`) - Named header accesses like `req.headers.host` and `req.headers.referer`, modelled as `Http::RequestHeaderAccess` so header-specific queries fire - Response sinks: `res.send`, `res.status(...).send`, `res.redirect` - Header definitions via `res.setHeader` Includes a library test exercising each model predicate (including a negative case for private helpers) and query consistency fixtures demonstrating end-to-end detection for js/reflected-xss, js/request-forgery, js/sql-injection, and js/command-line-injection. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-12 19:17:18 +00:00
github-actions[bot]	ce6e6d5db3	Post-release preparation for codeql-cli-2.25.1	2026-03-30 08:43:48 +00:00
github-actions[bot]	fb011842c9	Release preparation for version 2.25.1	2026-03-25 23:43:06 +00:00
github-actions[bot]	8cf0954796	Release preparation for version 2.25.1	2026-03-25 08:28:30 +00:00
github-actions[bot]	d6055754b6	Release preparation for version 2.25.0	2026-03-16 12:15:34 +00:00
Asger F	821cc0e875	JS: Address PR review comments - Fix misplaced semicolons in test files (was inside comment, moved before it) - Update QLdoc comments to reference new browser source kind names - Update docs to list browser source kinds and fix outdated 'only remote' note Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>	2026-03-13 14:58:04 +01:00
Asger F	5db30c9947	JS: Add change note	2026-03-11 15:40:07 +01:00
Asger F	1253553aec	JS: Add browser source kinds	2026-03-11 13:50:07 +01:00
Óscar San José	3b9eba2afc	Merge branch 'main' of https://github.com/github/codeql into oscarsj/merge-back-rc-3.21	2026-03-06 16:20:36 +01:00
Asger F	c9fa7fa283	Merge pull request #21369 from asgerf/js/this-bindings JS: Emit variables for 'this'	2026-03-05 13:36:38 +01:00
Owen Mansel-Chan	c82f75604a	Add change notes	2026-03-05 10:34:30 +00:00
github-actions[bot]	e152f08468	Post-release preparation for codeql-cli-2.24.3	2026-03-02 22:51:27 +00:00
github-actions[bot]	7795badd18	Release preparation for version 2.24.3	2026-03-02 13:23:40 +00:00
Asger F	f2cc0da936	JS: Add upgrade/downgrade scripts but with 'partial' compatibility	2026-03-02 11:09:19 +01:00
Asger F	0f2de46648	JS: Emit variable bindings for 'this' expressions	2026-02-27 11:44:54 +01:00
Asger F	f0e665d08c	Merge pull request #21349 from asgerf/mobx-wrapper Support React components wrapped by 'mobx-react'	2026-02-25 09:24:45 +01:00
Owen Mansel-Chan	ada9c452f0	Merge pull request #21336 from owen-mc/js/accept-mad-sanitizers JS: Accept MaD sanitizers for queries with MaD sinks	2026-02-23 13:44:54 +00:00
Asger F	27638c7029	JS: Add change note	2026-02-20 11:20:46 +01:00
Asger F	a684943bb7	JS: Model mobx-react{-lite} as higher-order component builders	2026-02-19 11:26:46 +01:00
Owen Mansel-Chan	05f9b4124d	Revert "javascript: remove sanitizer to be replaced by model" This reverts commit `da2f77d615`.	2026-02-17 14:39:04 +00:00
Owen Mansel-Chan	b8f9dd9de5	Revert "javascript: add MaD model" This reverts commit `75bd4a7a12`.	2026-02-17 14:38:56 +00:00
Owen Mansel-Chan	61e8f91404	Accept MaD sanitizers for queries with MaD sinks	2026-02-17 12:45:24 +00:00
github-actions[bot]	b5898c5a30	Post-release preparation for codeql-cli-2.24.2	2026-02-16 17:07:45 +00:00
github-actions[bot]	ef04f927fb	Release preparation for version 2.24.2	2026-02-16 13:29:25 +00:00
github-actions[bot]	73d06f26cb	Post-release preparation for codeql-cli-2.24.1	2026-02-02 14:04:26 +00:00
github-actions[bot]	0db542e9f0	Release preparation for version 2.24.1	2026-02-02 12:09:09 +00:00
Tom Hvitved	b974a84bef	Merge pull request #21051 from hvitved/shared/flow-summary-provenance-filtering Shared: Provenance-based filtering of flow summaries	2026-01-26 17:24:34 +01:00
Tom Hvitved	0f6bae0ae1	Add change notes	2026-01-26 12:40:22 +01:00
Tom Hvitved	93dad867cd	JS: Adapt to changes in `FlowSummaryImpl`	2026-01-26 12:40:21 +01:00
yoff	d05901ad3f	python/javascript/ruby: mark internal predicates	2026-01-22 17:30:24 +01:00
yoff	75bd4a7a12	javascript: add MaD model - consider if the model is in the right place - consider if the barrier kind (sink kind) is the appropriate one	2026-01-22 17:30:24 +01:00
yoff	da2f77d615	javascript: remove sanitizer to be replaced by model	2026-01-22 17:30:24 +01:00
yoff	3dbfb9fa4b	python: add machinery for MaD barriers and reinstate previously removed barrier now as a MaD row	2026-01-22 17:30:24 +01:00
Ian Lynagh	a299174f4d	javascript: Add up/downgrade scripts	2026-01-20 11:56:15 +00:00
Ian Lynagh	4140121e96	javascript: Use more standard shared dbscheme sections We now use the shared "Overlay support" and "Database metadata".	2026-01-20 11:56:14 +00:00
github-actions[bot]	48475e66af	Post-release preparation for codeql-cli-2.24.0	2026-01-19 15:49:08 +00:00
Nick Rolfe	1739e135f5	Fix list formatting inconsistency	2026-01-19 15:17:11 +00:00
github-actions[bot]	4142b9c4ce	Release preparation for version 2.24.0	2026-01-19 14:49:14 +00:00
Asger F	077bbb24ac	Merge pull request #21159 from asgerf/js/vue-prop-function JS: Add support for props callbacks in Vue router configs	2026-01-19 10:13:49 +01:00
Asger F	ff580410fe	Merge pull request #20733 from asgerf/js/incremental-api-graphs JS: Incremental API graph	2026-01-14 12:49:41 +01:00
Asger F	e430aa97f3	Merge pull request #20916 from asgerf/js/next-folders2 JS: Handle Next.js files named 'page' or 'route'	2026-01-14 11:10:57 +01:00
Ian Lynagh	63f78e7609	Merge pull request #21156 from igfoo/igfoo/mb Merge rc/3.20 into main	2026-01-13 12:11:37 +00:00
Asger F	7cd820ea86	JS: Add support for props callbacks in router configs	2026-01-13 11:46:12 +01:00
Asger F	da9aafc3b0	JS: Also track additional use-steps crossing the overlay boundary	2026-01-13 10:54:16 +01:00
Asger F	ca52fe59e8	Merge pull request #20918 from asgerf/js/response-default-content-type JS: Handle default 'content-type' header in Response() objects	2026-01-13 10:34:40 +01:00
Asger F	d2e6ae5e14	Update javascript/ql/lib/semmle/javascript/frameworks/Next.qll Co-authored-by: Napalys Klicius <napalys@github.com>	2026-01-13 10:34:25 +01:00
Ian Lynagh	dcd0a69759	Merge remote-tracking branch 'upstream/main' into igfoo/mb	2026-01-13 01:01:35 +00:00
Asger F	cf0b77074f	JS: Workaround forceLocal not supporting 'result' column A bug made it into the release which causes compilation errors when forceLocal is used on a predicate with a result column. This commit works around the issue by converting the result column to a positional parameter, for the predicates that we use forceLocal on. It should be safe to revert this commit once the compiler fix has made it into a stable release.	2026-01-07 11:05:41 +01:00
Asger F	e16cacd48d	JS: Rename "in scope" to "in active file"	2026-01-07 11:05:41 +01:00

1 2 3 4 5 ...

3134 Commits