Benjamin Rodes
|
25203db4e7
|
Removing 'security' tags from all queries.
|
2023-09-27 12:43:51 -04:00 |
|
Benjamin Rodes
|
c0c2ae544b
|
Updating weak elliptic curve sample queries.
|
2023-09-21 12:12:16 -07:00 |
|
Benjamin Rodes
|
50db4fd63e
|
Moved Cpp into sub directory 'cryptography' instead of crypto. Added python models, inventory, and example alerts.
|
2023-09-21 12:12:15 -07:00 |
|
Benjamin Rodes
|
fe22dc45b1
|
Moving inventory queries into a new subdirectory structure for new_models and old_models.
|
2023-09-21 12:12:15 -07:00 |
|
Benjamin Rodes
|
6d7ac8de28
|
Adding example alerts
|
2023-09-21 12:12:15 -07:00 |
|
Benjamin Rodes
|
4c9cc5a21f
|
Adding inventory queries.
|
2023-09-21 12:12:15 -07:00 |
|
Alex Eyers-Taylor
|
d0849311a6
|
CPP: Fix use after free FPs by elimnatiing freeing nodes rather than freeing expressions.
|
2023-09-20 18:47:57 +01:00 |
|
github-actions[bot]
|
3acf5244b0
|
Post-release preparation for codeql-cli-2.14.6
|
2023-09-20 10:25:10 +00:00 |
|
github-actions[bot]
|
0a3670727f
|
Release preparation for version 2.14.6
|
2023-09-19 11:40:30 +00:00 |
|
AlexDenisov
|
ff7ff6dcfa
|
Merge pull request #14201 from MathiasVP/add-ast-consistency-query
C++: Add AST consistency query
|
2023-09-14 16:34:20 +02:00 |
|
Mathias Vorreiter Pedersen
|
177fcacf38
|
Merge pull request #14134 from MathiasVP/add-surprising-lifetimes-to-experimental
C++: Copy the Coding Standards' use-after-lifetime-ended query to Experimental
|
2023-09-13 13:06:18 +01:00 |
|
Mathias Vorreiter Pedersen
|
0cd4e32ed8
|
C++: Add AST consistency query.
|
2023-09-13 12:15:40 +01:00 |
|
Mathias Vorreiter Pedersen
|
af51a0a9ca
|
C++: Respond to review comments.
|
2023-09-13 11:43:12 +01:00 |
|
Mathias Vorreiter Pedersen
|
81d20be1ee
|
Update cpp/ql/src/experimental/Security/CWE/CWE-416/UseAfterExpiredLifetime.qhelp
Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
|
2023-09-13 11:37:32 +01:00 |
|
Mathias Vorreiter Pedersen
|
05080924de
|
C++: Don't use converted expressions in 'LeapYear.qll'.
|
2023-09-12 19:48:52 +01:00 |
|
Mathias Vorreiter Pedersen
|
71fe6f5d4b
|
C++: Use fully converted expressions in 'cpp/use-after-free' and 'cpp/double-free'.
|
2023-09-12 19:28:57 +01:00 |
|
Mathias Vorreiter Pedersen
|
becb469477
|
Merge branch 'main' into deduplicate-dataflow-results-take-3
|
2023-09-11 09:55:11 +01:00 |
|
github-actions[bot]
|
d699880c86
|
Post-release preparation for codeql-cli-2.14.4
|
2023-09-08 21:17:52 +00:00 |
|
Alex Eyers-Taylor
|
e208a7aed6
|
CPP: Add change notes for the non-returning function improvements.
|
2023-09-08 11:26:27 +01:00 |
|
Mathias Vorreiter Pedersen
|
b22199982e
|
C++: Add change note.
|
2023-09-06 13:08:21 +01:00 |
|
Mathias Vorreiter Pedersen
|
3eb2da4c03
|
C++: No need to remove duplications manually.
|
2023-09-06 09:29:11 +01:00 |
|
github-actions[bot]
|
abf2b12b1c
|
Release preparation for version 2.14.4
|
2023-09-05 16:56:14 +00:00 |
|
Mathias Vorreiter Pedersen
|
1232120d42
|
C++: Naively copy the 'surprising lifetimes' query from Coding Standards and add required metadata.
|
2023-09-04 16:21:28 +01:00 |
|
Mathias Vorreiter Pedersen
|
20f501d1c7
|
C++: Change queries to use 'asExpr' instead of 'asConvertedExpr'.
|
2023-09-01 15:01:32 +01:00 |
|
Mathias Vorreiter Pedersen
|
d14ad92dbd
|
Merge pull request #14006 from MathiasVP/promote-invalid-pointer-deref-out-of-experimental
C++: Promote `cpp/invalid-pointer-deref` out of experimental
|
2023-08-29 09:38:56 +01:00 |
|
Mathias Vorreiter Pedersen
|
f3a77c6006
|
Merge pull request #14060 from MathiasVP/fix-compare-where-assign-meant-fp
C++: Fix FP in `cpp/compare-where-assign-meant`
|
2023-08-29 09:38:39 +01:00 |
|
Mathias Vorreiter Pedersen
|
dbdb433957
|
Merge pull request #14058 from alexet/delete-or-delete-array
CPP: Add parent class for delete and delete[]
|
2023-08-29 09:38:07 +01:00 |
|
Dave Bartolomeo
|
3343b78015
|
Merge pull request #14074 from github/post-release-prep/codeql-cli-2.14.3
Post-release preparation for codeql-cli-2.14.3
|
2023-08-28 13:34:10 -04:00 |
|
github-actions[bot]
|
3eba77421a
|
Post-release preparation for codeql-cli-2.14.3
|
2023-08-28 15:53:49 +00:00 |
|
Mathias Vorreiter Pedersen
|
9542646a5d
|
C++: Add change note.
|
2023-08-25 16:45:53 +01:00 |
|
Mathias Vorreiter Pedersen
|
cb2f7b0f95
|
C++: Exclude results in macro expansions from 'cpp/compare-where-assign-meant'.
|
2023-08-25 16:39:47 +01:00 |
|
Mathias Vorreiter Pedersen
|
89b91ec5c8
|
C++: Disable field flow from the 'cpp/invalid-pointer-deref' query.
|
2023-08-25 15:01:37 +01:00 |
|
Alex Eyers-Taylor
|
c43ba456e5
|
CPP: Remove old DeleteOrDeleteArrayExpr from a query.
|
2023-08-25 13:57:16 +01:00 |
|
Alex Eyers-Taylor
|
1afcf8c8a8
|
Add changenotes.
|
2023-08-25 13:05:10 +01:00 |
|
Alex Eyers-Taylor
|
45ddb4832c
|
CPP: Make wordexp take an indirect argument.
|
2023-08-25 13:05:10 +01:00 |
|
Jeroen Ketema
|
da403c1a79
|
Merge pull request #14039 from jketema/non-constant-assign
C++: Omit assign case from `cpp/non-constant-format`
|
2023-08-24 16:54:19 +02:00 |
|
Jeroen Ketema
|
45c56fbce7
|
Update cpp/ql/src/change-notes/2023-08-24-remove-non-constant-assign-sources.md
Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>
|
2023-08-24 16:17:59 +02:00 |
|
Jeroen Ketema
|
607f729339
|
C++: Add change note
|
2023-08-24 16:11:39 +02:00 |
|
Jeroen Ketema
|
9f7413eded
|
C++: Omit assign case from cpp/non-constant-format
|
2023-08-24 11:02:40 +02:00 |
|
Mathias Vorreiter Pedersen
|
123e58767b
|
C++: Share RangeAnalysisUtil with 'cpp/overrun-write'.
|
2023-08-23 22:42:00 +01:00 |
|
Alex Eyers-Taylor
|
949b0a2613
|
CPP:Move import to start of file
|
2023-08-23 13:39:29 +01:00 |
|
Alex Eyers-Taylor
|
7d99d61662
|
CPP: Convert SQL tainted to IR dataflow.
|
2023-08-23 13:39:29 +01:00 |
|
Mathias Vorreiter Pedersen
|
530c950b41
|
C++: Fix formatting.
|
2023-08-22 13:40:00 +01:00 |
|
Mathias Vorreiter Pedersen
|
66f11d427b
|
C++: Simplify description.
|
2023-08-22 13:39:38 +01:00 |
|
Mathias Vorreiter Pedersen
|
1c3a0d1632
|
Update cpp/ql/src/Security/CWE/CWE-193/InvalidPointerDeref.qhelp
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
|
2023-08-22 13:03:07 +01:00 |
|
Mathias Vorreiter Pedersen
|
e88277bd3b
|
Update cpp/ql/src/Security/CWE/CWE-193/InvalidPointerDeref.qhelp
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
|
2023-08-22 13:02:37 +01:00 |
|
Mathias Vorreiter Pedersen
|
abe28cb106
|
Update cpp/ql/src/Security/CWE/CWE-193/InvalidPointerDeref.ql
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
|
2023-08-22 13:02:29 +01:00 |
|
Mathias Vorreiter Pedersen
|
e776178be5
|
C++: Add some whitespace to make stuff appear in the diff.
|
2023-08-21 10:23:41 +01:00 |
|
Mathias Vorreiter Pedersen
|
0a41acc0a6
|
C++: Add change note.
|
2023-08-21 10:23:41 +01:00 |
|
Mathias Vorreiter Pedersen
|
70fdfc2ae3
|
C++: Set precision to medium and add security severity.
|
2023-08-21 10:23:23 +01:00 |
|