codeql

mirror of https://github.com/github/codeql.git synced 2026-03-28 10:18:17 +01:00

Author	SHA1	Message	Date
Max Schaefer	df42707050	Merge pull request #675 from asger-semmle/window.name JS: Add window.name as remote flow source	2018-12-13 08:13:15 +00:00
Aditya Sharad	41a48078f7	Merge pull request #673 from calumgrant/cs/sync-files C#: Sync samples and qltest cases	2018-12-12 17:10:00 +00:00
calumgrant	8e546a30b0	Merge pull request #637 from hvitved/csharp/cfg/throwing-callable C#: Fix a bug in `ThrowingCallable`	2018-12-12 16:58:28 +00:00
Anders Schack-Mulligen	12bc1fc656	Merge pull request #581 from jf205/metadata-guide Query metadata style guide: add to ql/docs	2018-12-12 12:55:20 +00:00
Asger F	a96c53f9b8	JS: restrict when a variable reference is considered a source	2018-12-12 12:28:26 +00:00
Asger F	14621760bb	JS: add window.name as DOM-based remote flow source	2018-12-12 12:22:39 +00:00
calum	3037b2b197	C#: Sync the -Good and -Bad files in the qltest to match the sample.	2018-12-12 11:36:00 +00:00
semmle-qlci	06dd5f3616	Merge pull request #656 from xiemaisi/js/unused-local-underscore Approved by esben-semmle	2018-12-12 08:11:37 +00:00
semmle-qlci	9df5d4b0c2	Merge pull request #660 from esben-semmle/js/angularjs-alert-locations Approved by xiemaisi	2018-12-12 08:05:19 +00:00
yh-semmle	14488cb62e	Merge pull request #652 from aschackmull/java/constant-loop-cond-alert-pos Java: Change alert location for ConstantLoopCondition.	2018-12-11 21:26:14 -05:00
Esben Sparre Andreasen	fac638ffab	JS: improve alert location of js/angular/unused-dependency	2018-12-11 21:47:08 +01:00
Esben Sparre Andreasen	b5bbf990b0	JS: improve alert location of js/angular/repeated-dependency-injection	2018-12-11 21:47:08 +01:00
Esben Sparre Andreasen	5acd1ca26d	JS: improve alert location of js/angular/duplicate-dependency	2018-12-11 21:47:08 +01:00
Robert Marsh	98005edd9d	Merge pull request #641 from geoffw0/exprnoeffect2 CPP: More tests of isSideEffectFree() / ExprHasNoEffect.ql	2018-12-11 12:17:30 -08:00
Max Schaefer	4d186e0edc	JavaScript: Teach `Unused{Variable,Parameter}` to ignore variables with leading underscore.	2018-12-11 08:50:50 +00:00
Jonas Jensen	a4b3b1e8c8	Merge pull request #653 from geoffw0/ex-ch-notes CPP: Additional change notes (for 1.20)	2018-12-10 16:59:12 +01:00
Geoffrey White	709fd6382a	CPP: Change note for #562 .	2018-12-10 13:51:15 +00:00
Geoffrey White	6b7337d766	CPP: Change note for #540 .	2018-12-10 13:42:17 +00:00
Jonas Jensen	1f7383498a	Merge pull request #644 from geoffw0/pointerscaling CPP: Fix type confusion in IncorrectPointerscaling.ql	2018-12-10 14:22:10 +01:00
Anders Schack-Mulligen	bfc7fb7c8a	Java: Change alert location for ConstantLoopCondition.	2018-12-10 12:37:11 +00:00
Felicity Chapman	6ef16bb728	Merge pull request #649 from jf205/qhelp-guide Query help style guide: editorial review	2018-12-10 10:59:48 +00:00
james	a0d5049132	update links to query pages	2018-12-10 09:33:58 +00:00
james	4bd922e442	address further comments	2018-12-10 09:18:05 +00:00
james	36fe86f730	address felicity's comments	2018-12-10 09:18:05 +00:00
james	59542fc367	mention of qldoc comment requirements	2018-12-10 09:18:05 +00:00
james	934fd9f3d6	address geoffrey's comments and reword tags	2018-12-10 09:18:05 +00:00
james	2ed648d798	metadat-style-guide: address anders' review	2018-12-10 09:18:05 +00:00
james	09d08a7547	metadata-style-guide: update title	2018-12-10 09:18:04 +00:00
james	9560165921	metadata-style-guide: add style guide	2018-12-10 09:18:04 +00:00
james	41f5d65e0c	remove hyphen from title and update some links	2018-12-10 09:13:33 +00:00
yh-semmle	ba4fa0a246	Merge pull request #643 from aschackmull/java/nullguard-isblank Java: Add org.apache.commons.lang3.StringUtils.isBlank as a nullguard.	2018-12-07 15:31:58 -05:00
Geoffrey White	9857a85817	CPP: Fix similar queries.	2018-12-07 18:43:28 +00:00
Geoffrey White	d3c6d83786	CPP: Change note.	2018-12-07 18:43:27 +00:00
Geoffrey White	0f268cac40	CPP: Fix the issue.	2018-12-07 18:43:27 +00:00
Geoffrey White	02a060fbfa	CPP: Add a test.	2018-12-07 18:21:48 +00:00
calumgrant	67d4099e3f	Merge pull request #593 from hvitved/csharp/nullness C#: Rewrite nullness queries	2018-12-07 15:57:27 +00:00
Geoffrey White	91578258f7	Merge pull request #595 from jf205/qhelp-guide Query help style-guide	2018-12-07 15:38:58 +00:00
Anders Schack-Mulligen	f09eb67af0	Java: Add org.apache.commons.lang3.StringUtils.isBlank as a nullguard.	2018-12-07 16:18:32 +01:00
Geoffrey White	e7390f3ea5	CPP: Add simple tests of CommaExpr.	2018-12-07 14:29:09 +00:00
Tom Hvitved	2a30dee8df	Merge pull request #621 from calumgrant/cs/invalid-key C#: Fix [INVALID_KEY] error	2018-12-07 11:24:45 +01:00
Tom Hvitved	c887dc89dc	C#: Fix a bug in `ThrowingCallable` A method such as ``` void M() { throw new Exception(); } ``` was incorrectly not categorized as a `ThrowingCallable`, that is, a callable that always throws an exception upon invocation.	2018-12-07 10:56:11 +01:00
Geoffrey White	b1e7649d02	CPP: Add functions containing errors to the sideEffects tests.	2018-12-07 09:54:36 +00:00
Tom Hvitved	243af36167	C#: Add more CFG tests with throwing methods	2018-12-07 10:43:45 +01:00
Tom Hvitved	fce805834e	C#: Address review comments	2018-12-07 09:40:49 +01:00
semmle-qlci	9e73ed71b9	Merge pull request #623 from esben-semmle/js/incomplete-url-sanitization Approved by mc-semmle	2018-12-06 20:46:37 +00:00
yh-semmle	c2116f0d91	Merge pull request #560 from aschackmull/java/normalize-parentheses Java: Normalize parentheses.	2018-12-06 12:38:26 -05:00
Esben Sparre Andreasen	4f53411397	JS: recognize HTTP URLs in js/incomplete-url-sanitization	2018-12-06 15:53:20 +01:00
Esben Sparre Andreasen	56fb63adbc	JS: change notes for js/incomplete-url-substring-sanitization	2018-12-06 15:53:20 +01:00
Esben Sparre Andreasen	229eea00dc	JS: add query js/incomplete-url-substring-sanitization	2018-12-06 15:53:20 +01:00
semmle-qlci	3397533045	Merge pull request #628 from xiemaisi/js/setUnsafeHTML Approved by esben-semmle	2018-12-06 13:58:52 +00:00

1 2 3 4 5 ...

1918 Commits