hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-27 13:23:00 +01:00
Code Issues Packages Projects Releases Wiki Activity
5,348 Commits 1,688 Branches 159 Tags
ea4e2630600e35af044ff5ea99c190d863f6fb4e
Commit Graph

5348 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mark Shannon
ea4e263060 Python: Initial version and help of tar-slip (CWE-022) query. 2019-06-19 11:48:31 +01:00
Taus
cb43d27344 Merge pull request #1472 from markshannon/python-taint-through-iterators 
Python: Track taint through iteration and iterators including generators.
 2019-06-19 11:33:10 +02:00
Taus
b43df7439e Merge pull request #1471 from markshannon/python-no-taint-past-sinks 
Python: Don't record taint past sinks.
 2019-06-19 11:23:27 +02:00
Jonas Jensen
53d4b2dfc9 Merge pull request #1365 from geoffw0/uninit 
CPP: Fix for the 'LoopConditionAlwaysTrueUponEntry' logic
 2019-06-19 11:01:57 +02:00
Jonas Jensen
9d18b351cc Merge pull request #1469 from geoffw0/av95perf 
CPP: Fix AV Rule 95 performance issue.
 2019-06-19 10:32:57 +02:00
Jonas Jensen
0b891013a4 Merge pull request #1466 from geoffw0/castarrayperf 
CPP: Resolve performance issue in CastArrayPointerArithmetic.ql
 2019-06-19 10:23:23 +02:00
Jonas Jensen
ba3ec500fd Merge pull request #1467 from geoffw0/dates-cleanup1 
CPP: Follow-up for Mishandling Japanese Era and Leap Year in calculations
 2019-06-18 20:13:33 +02:00
Mark Shannon
e8190d9a7b Python: Track taint through 'yield' expressions. 2019-06-18 16:39:52 +01:00
Mark Shannon
97c98f29e4 Python taint-tracking: Support iterables of taint. 2019-06-18 16:39:47 +01:00
Mark Shannon
918bdecba5 Python: Don't record taint past sinks. 2019-06-18 16:34:23 +01:00
Geoffrey White
659fa477df CPP: Change note. 2019-06-18 16:12:08 +01:00
Geoffrey White
98d80deefb CPP: Improved solution (mostly performance). 2019-06-18 15:56:22 +01:00
Geoffrey White
47ff38ef22 CPP: Add a warning to getFollowingStmt. 2019-06-18 15:56:22 +01:00
Geoffrey White
ef3ceb5910 CPP: Don't use getFollowingStmt. 2019-06-18 15:56:22 +01:00
Geoffrey White
536adaae7f CPP: Additional test cases. 2019-06-18 15:56:22 +01:00
Geoffrey White
52b68a77bd CPP: Remove commented out code. 2019-06-18 15:56:22 +01:00
Geoffrey White
56adcff2c9 CPP: Fix for LocalScopeReachability. 2019-06-18 15:56:22 +01:00
Geoffrey White
f4b4ddbdaf CPP: Add a test examining the LoopEntryConditionEvaluator on this code. 2019-06-18 15:56:22 +01:00
Geoffrey White
12bbb0755f CPP: Additional test cases. 2019-06-18 15:56:22 +01:00
Geoffrey White
6cca2d54f4 CPP: Autoformat. 2019-06-18 13:26:54 +01:00
Geoffrey White
717522f469 CPP: Fix qhelp more. 2019-06-18 13:00:41 +01:00
Calum Grant
196ad7613f Merge pull request #1464 from hvitved/csharp/netcoreapp2.2 
C#: Update to `netcoreapp2.2`
 2019-06-18 12:56:44 +01:00
Geoffrey White
fb5d02a634 CPP: Remove a redundant line. 2019-06-18 11:40:12 +01:00
Geoffrey White
bdb495d58a CPP: Fix AV Rule 95 performance issue. 2019-06-18 11:25:48 +01:00
Geoffrey White
83ec5f1ae9 Merge pull request #1354 from denislevin/denisl/cpp/MishandlingJapaneseDatesAndLeapYear 
C++: Mishandling Japanese Era and Leap Year in calculations
 2019-06-18 09:26:35 +01:00
Geoffrey White
b9a57a46d2 CPP: More accurate qldoc comment. 2019-06-18 08:56:52 +01:00
Tom Hvitved
a1d7382a67 C#: Update expected test output 2019-06-17 20:07:54 +02:00
Geoffrey White
ce29047840 CPP: Resolve performance issue in CastArrayPointerArithmetic.ql's 'introducesNewField' predicate. 2019-06-17 16:33:48 +01:00
Tom Hvitved
5cc11ba232 C#: Update nuget packages 2019-06-17 13:26:11 +02:00
Tom Hvitved
d333ffb57a C#: Update to netcoreapp2.2 2019-06-17 13:21:00 +02:00
Geoffrey White
413788ae2d CPP: Fix qhelp. 2019-06-17 11:55:24 +01:00
Tom Hvitved
f408a6ddfc Merge pull request #1404 from calumgrant/cs/dispose-not-called-on-throw 
C#: Improvement to cs/dispose-not-called-on-throw
 2019-06-17 11:25:16 +02:00
Geoffrey White
415655ac23 CPP: Remove precision (for now) from a query that I've seen time out. 2019-06-17 10:07:34 +01:00
Geoffrey White
df230d2ba6 CPP: Make precision/severity more conservative for now. 2019-06-17 10:07:32 +01:00
Geoffrey White
93c4f1eea5 CPP: Autoformat. 2019-06-17 10:07:22 +01:00
semmle-qlci
03cf8ef94f Merge pull request #1422 from hvitved/csharp/switch-expr-completion 
Approved by calumgrant
 2019-06-17 08:33:43 +01:00
Denis Levin
6a05c84282 Merge pull request #3 from geoffw0/dates-fix 
CPP: Fixes for C++: Mishandling Japanese Era and Leap Year in calculations #1354
 2019-06-14 11:21:52 -07:00
Calum Grant
1e7ce8cd31 Merge pull request #1451 from hvitved/csharp/element-preds 
C#: Move two predicates from `csharp/Element.qll` to `dotnet/Element.qll`
 2019-06-14 16:21:28 +01:00
Geoffrey White
8ebc0b9c39 CPP: Add basic .qhelp for Adding365daysPerYear.ql. 2019-06-14 14:25:02 +01:00
Geoffrey White
f1b76be57f CPP: Fix LeapYear.qhelp. 2019-06-14 14:25:01 +01:00
Jonas Jensen
41d5d5ab86 Merge pull request #1438 from geoffw0/assignedvalue 
CPP: Support for aggregate initializers in getAnAssignedValue()
 2019-06-14 00:37:46 -07:00
Denis Levin
7ff8fcd50e Some more typo fixes and a fix to test files 2019-06-13 17:16:30 -07:00
Denis Levin
ad489db815 Corrections related to the review comments. 2019-06-13 13:04:42 -07:00
Geoffrey White
37a1c48071 CPP: Optimize AV Rule 71.ql. 2019-06-13 15:30:56 +01:00
Max Schaefer
b9703b70ed Merge pull request #1452 from markshannon/merge-121 
Merge rc/1.21 into master.
 2019-06-13 15:05:09 +01:00
Calum Grant
8354f813f7 Merge pull request #1419 from hvitved/csharp/stubs 
C#: Improvements to `Stubs.qll`
 2019-06-13 14:17:24 +01:00
Mark Shannon
77030c4dde Merge branch 'rc/1.21' into 'master' 2019-06-13 12:32:45 +01:00
Tom Hvitved
8c8929a702 C#: Move two predicates from csharp/Element.qll to dotnet/Element.qll 2019-06-13 13:00:18 +02:00
semmle-qlci
8a43fdc806 Merge pull request #1448 from xiemaisi/js/fix-access-paths-perf-regression 
Approved by esben-semmle
 2019-06-13 10:13:27 +01:00
semmle-qlci
bffc3307b5 Merge pull request #1450 from esben-semmle/js/classify-json-js-as-generated 
Approved by xiemaisi
 2019-06-13 09:45:37 +01:00