codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00

Author	SHA1	Message	Date
Tom Hvitved	eb1b2a5594	Bump `tree-sitter` to `0.23.0`	2024-09-04 09:47:59 +02:00
Henry Mercer	3490067316	Merge branch 'main' into henrymercer/rc-3.15-mergeback	2024-08-29 19:48:01 +01:00
Tom Hvitved	7f8e6bf574	Merge pull request #16970 from hvitved/dataflow/local-big-step-stage Data flow: Compute local big step relation as stage output	2024-08-28 12:28:16 +02:00
Cornelius Riemenschneider	3326bc417c	Ruby: Move all integration tests. We no longer need the platform-specific directories, so simplify the test organization. If you don't want this change, just skip merging this PR. It's purely optional.	2024-08-28 10:45:05 +02:00
Tom Hvitved	c92c96fa78	Data flow: Compute local big step relation per stage	2024-08-26 09:15:27 +02:00
github-actions[bot]	0724fd7ce2	Post-release preparation for codeql-cli-2.18.3	2024-08-21 18:25:54 +00:00
github-actions[bot]	17cd9624fb	Release preparation for version 2.18.3	2024-08-21 17:13:52 +00:00
Tom Hvitved	cb1b1da422	Ruby: Add another array flow test	2024-08-21 19:06:53 +02:00
Tom Hvitved	b0003c0453	Ruby: Remove two redundant checks	2024-08-21 19:06:29 +02:00
Tom Hvitved	d15e1b5598	Ruby: Prevent synthetic splat matching for actual splats at same positions	2024-08-20 16:21:59 +02:00
Tom Hvitved	c4b0f81883	Ruby: Prevent positional matching when preceded by a splat	2024-08-20 16:21:58 +02:00
Tom Hvitved	20dc242830	Ruby: Rework hash splat argument/parameter matching	2024-08-20 16:21:57 +02:00
Tom Hvitved	6d4f3bd014	Ruby: Rework splat argument/parameter matching	2024-08-20 16:21:56 +02:00
Anders Schack-Mulligen	8470e91c16	Legacy Dataflow: Sync.	2024-08-20 10:07:57 +02:00
Tom Hvitved	c9aaba677d	Ruby: Update expected test output	2024-08-13 13:34:46 +02:00
Tom Hvitved	f83df76928	Shared: Apply `ShowProvenance` in `InlineFlowTest.qll`	2024-08-13 13:34:43 +02:00
Joe Farebrother	d08713f66c	Merge branch 'main' into patch-7	2024-08-12 15:12:33 +01:00
Alexander Eyers-Taylor	ffd811a55d	Merge pull request #17182 from github/post-release-prep/codeql-cli-2.18.2 Post-release preparation for codeql-cli-2.18.2	2024-08-08 16:28:03 +01:00
github-actions[bot]	cc6d87c276	Post-release preparation for codeql-cli-2.18.2	2024-08-08 12:56:21 +00:00
github-actions[bot]	019da8c287	Release preparation for version 2.18.2	2024-08-07 14:02:38 +00:00
Alexander Eyers-Taylor	46577b585e	Revert "Release preparation for version 2.18.2"	2024-08-07 14:24:37 +01:00
Cornelius Riemenschneider	def662d641	Merge branch 'main' into criemen/pytest-ruby	2024-08-06 16:41:23 +02:00
github-actions[bot]	c14ba0e4bd	Release preparation for version 2.18.2	2024-08-06 12:46:15 +00:00
Tom Hvitved	0f1b5327ef	Ruby: Update expected test output	2024-08-06 13:58:05 +02:00
Joe Farebrother	e47d4ccb79	Merge pull request #17002 from Flying-Tom/add-get-response Ruby: Add get_response for Net::HTTP	2024-08-06 09:44:21 +01:00
Tom Hvitved	87c5627024	Merge pull request #16937 from hvitved/ruby/ssa-integration Ruby: Adopt shared SSA data-flow integration	2024-08-06 10:39:41 +02:00
Cornelius Riemenschneider	d42e424289	Port integration tests to pytest.	2024-08-05 22:07:42 +02:00
Anders Schack-Mulligen	9724516c84	C#/Go/Java/Python/Ruby: Accept qltest .expected changes.	2024-07-31 14:45:10 +02:00
Alex Ford	9fb657c4c4	Merge pull request #16781 from alexrford/rb/weak-sensitive-data-hashing Add `rb/weak-sensitive-data-hashing` query port	2024-07-25 14:11:42 +01:00
Anders Schack-Mulligen	7a48fe1102	Dataflow: Replace ppReprType with DataFlowType.toString.	2024-07-25 13:08:47 +02:00
github-actions[bot]	49cc8f8ff8	Post-release preparation for codeql-cli-2.18.1	2024-07-22 22:00:48 +00:00
github-actions[bot]	368bcb684a	Release preparation for version 2.18.1	2024-07-22 21:30:50 +00:00
Chuan-kai Lin	23320b6e5e	Revert "Release preparation for version 2.18.1"	2024-07-22 13:22:49 -07:00
github-actions[bot]	55935fc123	Release preparation for version 2.18.1	2024-07-22 14:56:15 +00:00
Tom	f09010e79c	Update NetHttp.qll	2024-07-17 16:39:11 +08:00
Anders Schack-Mulligen	da5abc8321	Dataflow: Replace MakeSets with QlBuiltins::InternSets.	2024-07-15 13:35:57 +02:00
Tom Hvitved	9263977329	Ruby: Adopt shared SSA data-flow integration	2024-07-12 14:23:24 +02:00
github-actions[bot]	ae3aba061b	Post-release preparation for codeql-cli-2.18.0	2024-07-08 13:30:13 +00:00
github-actions[bot]	b0d6778652	Release preparation for version 2.18.0	2024-07-08 09:10:51 +00:00
Tom Hvitved	4ae8720930	SSA: Add `BasicBlock.{getNode/1,length/0}` to the input signature	2024-07-03 11:32:35 +02:00
Tom Hvitved	8e8100fd34	Merge pull request #16887 from hvitved/ruby/local-flow-missing-steps Ruby: Add missing local flow steps	2024-07-02 15:43:52 +02:00
Tom Hvitved	19e910e1b5	Merge pull request #16801 from hvitved/ruby/element-reference-block Ruby: Handle element references with blocks	2024-07-02 13:08:31 +02:00
Tom Hvitved	7fdc09c17f	Ruby: Add missing local flow steps	2024-07-01 19:46:40 +02:00
Arthur Baars	b12b33c8f9	Merge remote-tracking branch 'upstream/main' into 'rc/3.14'	2024-06-28 19:50:35 +02:00
Tom Hvitved	25daaf9d47	Ruby: Add change note	2024-06-25 10:00:01 +02:00
github-actions[bot]	fd385736e6	Post-release preparation for codeql-cli-2.17.6	2024-06-25 06:39:45 +00:00
github-actions[bot]	e32a587078	Release preparation for version 2.17.6	2024-06-24 14:33:10 +00:00
Anders Schack-Mulligen	8c23e21073	Dataflow: Cache compatibleTypes.	2024-06-24 13:35:48 +02:00
Jonathan Leitschuh	1728e5dfd5	Align Ruby NonConstantKernelOpen.ql Severity Align severity with other command injection vulnerabilities: - `4a448f445e/cpp/ql/src/Security/CWE/CWE-078/ExecTainted.ql (L8)` - `4a448f445e/go/ql/src/Security/CWE-078/CommandInjection.ql (L7)` - `4a448f445e/swift/ql/src/queries/Security/CWE-078/CommandInjection.ql (L7)` - `4a448f445e/javascript/ql/src/Security/CWE-078/CommandInjection.ql (L7)`	2024-06-21 10:27:47 -04:00
Tom Hvitved	a8758c0160	Ruby: Handle element references with blocks	2024-06-21 12:04:55 +02:00

1 2 3 4 5 ...

4520 Commits