Erik Krogh Kristensen
|
d008975ff4
|
Merge pull request #9825 from erik-krogh/repeatedWord
QL: add ql/repeated-word query
|
2022-08-10 07:25:26 +02:00 |
|
Harry Maclean
|
30ff18aec8
|
Merge pull request #9919 from hmac/hmac/ar-associations
Ruby: ActiveRecord associations
|
2022-08-10 11:13:39 +12:00 |
|
Esben Sparre Andreasen
|
0c6f28014c
|
Merge pull request #9821 from erik-krogh/jsQlFix
JS: fix some QL-for-QL warnings in JS
|
2022-08-09 22:06:29 +02:00 |
|
Erik Krogh Kristensen
|
559ec7ba56
|
Merge branch 'main' into repeatedWord
|
2022-08-09 21:22:47 +02:00 |
|
Geoffrey White
|
f2fead7ec7
|
Merge pull request #9995 from MathiasVP/swift-cfg-for-anytry
Swift: CFG for `any!`
|
2022-08-09 18:00:28 +01:00 |
|
Tony Torralba
|
7f5fe85e2e
|
Merge pull request #9975 from atorralba/atorralba/asynctask-improvs
Java: Improve AsyncTask data flow support
|
2022-08-09 17:10:09 +02:00 |
|
Mathias Vorreiter Pedersen
|
5ee11c3d7b
|
Swift: Accept test changes.
|
2022-08-09 15:12:42 +01:00 |
|
Mathias Vorreiter Pedersen
|
06fecf3869
|
Swift: Include 'any!' in the the CFG tree for 'any' expressions.
|
2022-08-09 15:12:31 +01:00 |
|
Erik Krogh Kristensen
|
add9e9dac4
|
Merge pull request #9548 from erik-krogh/exports
JS: support the "exports" property in a package.json
|
2022-08-09 12:16:12 +02:00 |
|
Tamás Vajk
|
82a56608ef
|
Merge pull request #9992 from tamasvajk/fix/fetch-codeql-path
Fix path of `fetch-codeql`
|
2022-08-09 10:57:11 +02:00 |
|
Geoffrey White
|
db8a3107b3
|
Merge pull request #9089 from ihsinme/ihsinme-patch-87
CPP: Add query for CWE-125 Out-of-bounds Read with different interpretation of the string when use mbtowc
|
2022-08-09 09:31:32 +01:00 |
|
Tom Hvitved
|
975edac34e
|
Merge pull request #9969 from hvitved/ruby/kwargs-missing-flow
Ruby: Support more flow through keyword arguments
|
2022-08-09 09:59:57 +02:00 |
|
Michael Nebel
|
b90a404658
|
Merge pull request #9636 from michaelnebel/csharp/sinkmodelcsv
C#: Convert Sinks to CSV format for SymmetricAlgorithm.
|
2022-08-09 09:05:12 +02:00 |
|
Tamas Vajk
|
2cab1ed076
|
Fix path of fetch-codeql
|
2022-08-09 07:59:25 +02:00 |
|
Harry Maclean
|
22d7b046ab
|
Ruby: Fix <<
|
2022-08-09 15:08:17 +12:00 |
|
Harry Maclean
|
e3115b5ed7
|
Ruby: Add test for other=
|
2022-08-09 15:08:17 +12:00 |
|
Harry Maclean
|
831f722402
|
Ruby: Make room for new test
|
2022-08-09 15:08:17 +12:00 |
|
Harry Maclean
|
58b628b6d1
|
Ruby: Add change note
|
2022-08-09 15:08:17 +12:00 |
|
Harry Maclean
|
dc853d9728
|
Ruby: Model ActiveRecord associations
|
2022-08-09 15:08:17 +12:00 |
|
ihsinme
|
4fdf4b23bd
|
Update DangerousWorksWithMultibyteOrWideCharacters.ql
|
2022-08-08 18:46:39 +03:00 |
|
ihsinme
|
212b1031b2
|
Update DangerousWorksWithMultibyteOrWideCharacters.qhelp
|
2022-08-08 18:42:54 +03:00 |
|
ihsinme
|
7cbf79b144
|
Rename DangerousUseMbtowc.ql to DangerousWorksWithMultibyteOrWideCharacters.ql
|
2022-08-08 18:39:41 +03:00 |
|
ihsinme
|
9b5154f878
|
Update and rename DangerousUseMbtowc.qlref to DangerousWorksWithMultibyteOrWideCharacters.qlref
|
2022-08-08 18:39:10 +03:00 |
|
ihsinme
|
bce395f201
|
Rename DangerousUseMbtowc.expected to DangerousWorksWithMultibyteOrWideCharacters.expected
|
2022-08-08 18:38:24 +03:00 |
|
ihsinme
|
ef04b8f5b3
|
Rename DangerousUseMbtowc.qhelp to DangerousWorksWithMultibyteOrWideCharacters.qhelp
|
2022-08-08 18:37:15 +03:00 |
|
ihsinme
|
5ee499389e
|
Rename DangerousUseMbtowc.cpp to DangerousWorksWithMultibyteOrWideCharacters.cpp
|
2022-08-08 18:36:53 +03:00 |
|
ihsinme
|
02bea35da2
|
Update DangerousUseMbtowc.qhelp
|
2022-08-08 18:35:25 +03:00 |
|
Asger F
|
fdcb1fa115
|
Merge pull request #9928 from asgerf/js/source-node-type
JS: Simplify type hierarchy for SourceNode
|
2022-08-08 16:53:20 +02:00 |
|
Esben Sparre Andreasen
|
ab3d365ddb
|
Merge pull request #9535 from github/js-array-filter-taint-step
Tests for rebased 7010
|
2022-08-08 14:31:22 +02:00 |
|
Tom Hvitved
|
9268437a58
|
Ruby: Generalize SynthHashSplatParameterNode to also work for synthesized methods
|
2022-08-08 14:05:06 +02:00 |
|
Ian Lynagh
|
b5d6258e54
|
Merge pull request #9809 from igfoo/igfoo/fakeLabel
Kotlin: Remove the last uses of fakeLabel
|
2022-08-08 11:54:53 +01:00 |
|
yoff
|
20febb6edd
|
Merge pull request #9567 from RasmusWL/typetracker-decorators
Python: allow class decorators in `.getASubclass()`
|
2022-08-08 12:42:27 +02:00 |
|
Esben Sparre Andreasen
|
da44340334
|
formatting
|
2022-08-08 12:22:41 +02:00 |
|
Edoardo Pirovano
|
d3ec8a8ec3
|
Merge pull request #9949 from github/edoardo/trap-cache-config
JS: Change how TRAP cache is configured
|
2022-08-08 11:19:31 +01:00 |
|
Rasmus Wriedt Larsen
|
f89b32183f
|
Merge branch 'main' into typetracker-decorators
|
2022-08-08 11:52:09 +02:00 |
|
Edoardo Pirovano
|
5c3d39579a
|
JS: Change how TRAP cache is configured
|
2022-08-08 10:25:50 +01:00 |
|
Esben Sparre Andreasen
|
a3cf81d419
|
js: add filter taint test (post rebase conflicts)
|
2022-08-08 11:00:11 +02:00 |
|
Evgenii Protsenko
|
50264547bf
|
make array taint-step better
|
2022-08-08 11:00:11 +02:00 |
|
Anders Schack-Mulligen
|
aa3655678e
|
Merge pull request #9823 from aschackmull/dataflow/stage-module
Dataflow: Replace stage duplication with parameterised modules.
|
2022-08-08 10:56:32 +02:00 |
|
Tom Hvitved
|
d16a154f9e
|
Address review comment
|
2022-08-08 10:45:55 +02:00 |
|
Michael Nebel
|
cebd49af9d
|
Merge pull request #9968 from michaelnebel/csharp/aspreviewcomment
C#: Simplification of AspNetCoreRemoteFlowSourceMember.
|
2022-08-08 09:44:02 +02:00 |
|
Tony Torralba
|
98b930cd67
|
Accept test changes in experimental query after AsyncTask improvements
|
2022-08-08 09:23:12 +02:00 |
|
Tom Hvitved
|
27e89cbbb1
|
Merge pull request #9980 from hvitved/csharp/lua-tracer-improvements
C#: Also disable shared compilation in the tracer for `dotnet msbuild`
|
2022-08-08 08:57:52 +02:00 |
|
Joe Farebrother
|
d2007bcd6e
|
Merge pull request #9663 from joefarebrother/android-certificate-validation
Java: Add query for improper webview certificate validation
|
2022-08-05 20:49:15 +01:00 |
|
Mathias Vorreiter Pedersen
|
f2767eb03a
|
Merge pull request #9972 from MathiasVP/swift-taint-through-interpolated-strings
Swift: Taint through interpolated strings
|
2022-08-05 15:55:35 +01:00 |
|
Robert Marsh
|
10710e27df
|
Merge pull request #9978 from MathiasVP/swift-fix-mad
Swift: Fix flow summaries for methods
|
2022-08-05 09:53:16 -04:00 |
|
Tony Torralba
|
03b854a1ed
|
Add test for initializer method
|
2022-08-05 15:29:17 +02:00 |
|
Mathias Vorreiter Pedersen
|
6cfeb24d94
|
Swift: More comments.
|
2022-08-05 13:30:45 +01:00 |
|
Tom Hvitved
|
400071091c
|
C#: Also disable shared compilation in the tracer for dotnet msbuild
|
2022-08-05 14:17:16 +02:00 |
|
AlexDenisov
|
d3e5449e3b
|
Merge pull request #9979 from MathiasVP/add-inline-expectations-framework-to-Swift
Swift: Add InlineExpectationsTest framework
|
2022-08-05 14:10:41 +02:00 |
|