codeql

mirror of https://github.com/github/codeql.git synced 2026-03-20 14:36:46 +01:00

Author	SHA1	Message	Date
Erik Krogh Kristensen	eb5dfe8438	autoformat	2020-08-17 22:46:20 +02:00
Erik Krogh Kristensen	6f28ddf1f8	proper support for `this` inside a JSX-name	2020-08-17 14:23:42 +02:00
Anders Schack-Mulligen	3469ad7ca6	Merge pull request #3600 from luchua-bc/java-sensitive-log4j2-logging Add Log4J 2 and a new search string secret	2020-08-13 13:35:52 +02:00
Anders Schack-Mulligen	8891ae70b6	Merge pull request #3938 from lcartey/java/untrusted-data-to-external-api Java: Untrusted data used in external APIs	2020-08-13 09:53:57 +02:00
lcartey@github.com	6f83c55ebd	Java: Switch to `low` as a precision Code Scanning doesn't support "very-low"	2020-08-12 13:48:59 +01:00
CodeQL CI	66541f260b	Merge pull request #4012 from erik-krogh/getId Approved by asgerf, esbena	2020-08-12 13:28:18 +01:00
Luke Cartey	56ff8cf084	Apply suggestions from code review Co-authored-by: Felicity Chapman <felicitymay@github.com>	2020-08-12 13:12:06 +01:00
CodeQL CI	aa9dfa0d6f	Merge pull request #4039 from intrigus-lgtm/patch-3 Approved by erik-krogh	2020-08-12 13:07:22 +01:00
lcartey@github.com	6b6172fa5b	Java: ExternalAPIs: Further review comments - Extra qldoc - Remove unnecessary module	2020-08-12 09:21:14 +01:00
Robert Marsh	e80cc63219	Merge pull request #3861 from dilanbhalla/privatedata C++: Private Data File/Buffer Writes	2020-08-11 15:49:31 -04:00
lcartey@github.com	e1d4b98923	Java: Add further missing </p> to qhelp	2020-08-11 15:28:55 +01:00
lcartey@github.com	8a65dd2cd6	Java: Address review comments	2020-08-11 15:28:06 +01:00
Erik Krogh Kristensen	656ff9c441	autoformat	2020-08-11 15:40:30 +02:00
Jonas Jensen	0476b97f63	Merge pull request #3789 from dilanbhalla/cpp C++ Memory Unsafe Functions	2020-08-11 10:09:37 +02:00
intrigus-lgtm	5a3acc231e	Fix typo	2020-08-11 01:01:53 +02:00
dilanbhalla	7bd5464b01	Update cpp/ql/src/experimental/Security/CWE/CWE-120/MemoryUnsafeFunctionScan.qhelp Co-authored-by: intrigus-lgtm <60750685+intrigus-lgtm@users.noreply.github.com>	2020-08-10 15:43:16 -07:00
dilanbhalla	4dcaa7be57	pr fixes	2020-08-10 15:30:09 -07:00
dilanbhalla	dcfbb86674	pr fixes	2020-08-10 15:14:12 -07:00
Erik Krogh Kristensen	dc5167bbe7	autoformat	2020-08-10 11:52:45 +00:00
Jonas Jensen	1f432dc45f	Merge pull request #4023 from geoffw0/loopdir C++: Exclude decrementing unsigned counters from inconsistentLoopDirection.ql	2020-08-10 12:10:29 +02:00
Erik Krogh Kristensen	85de5aa16b	add `deprecated` modifier Co-authored-by: Asger F <asgerf@github.com>	2020-08-10 10:51:21 +02:00
Erik Krogh Kristensen	410b696562	add deprecated aliases `getId()` forwarding to `getIdentifier()`	2020-08-10 09:11:38 +02:00
CodeQL CI	7c4e10df17	Merge pull request #4014 from erik-krogh/stringify Approved by esbena	2020-08-10 07:50:21 +01:00
Arthur Baars	5874ecc28b	Merge pull request #3976 from luchua-bc/java-unsecure-basic-auth Java: Insecure basic authentication	2020-08-07 21:39:23 +02:00
Geoffrey White	3cf11eca2a	C++: And more test cases.	2020-08-07 17:30:07 +01:00
Erik Krogh Kristensen	aab2e6f803	update name of test file	2020-08-07 18:20:22 +02:00
Erik Krogh Kristensen	7670e7da97	retarget change-note for 1.26	2020-08-07 18:17:46 +02:00
Geoffrey White	7d491afaeb	C++: More test cases.	2020-08-07 17:05:13 +01:00
Geoffrey White	b7d2e0ca63	C++: Make all the tests meaningful.	2020-08-07 14:18:28 +01:00
CodeQL CI	1b0cfc96b3	Merge pull request #4015 from erik-krogh/nonAbstract Approved by asgerf	2020-08-07 13:44:23 +01:00
Geoffrey White	0ba59210fc	Merge pull request #4020 from jbj/taint-range-based-for-ast C++: Taint through RangeBasedForStmt (AST only)	2020-08-07 13:41:49 +01:00
Anders Schack-Mulligen	e3a12c5fea	Merge pull request #4004 from Marcono1234/patch-2 [Java] Clarify Wildcard.hasUpperBound() doc	2020-08-07 13:06:13 +02:00
Tom Hvitved	c20d763490	Merge pull request #3951 from raulgarciamsft/users/raulgarciamsft/dataset_serialization C#: DataSet serialization	2020-08-07 12:54:10 +02:00
Jonas Jensen	c8911ab973	C++: Test range-based-for with std::vector too	2020-08-07 12:40:00 +02:00
Anders Schack-Mulligen	77db87efb7	Merge pull request #3968 from rvermeulen/java-importable-cwe-090 Java: Move LDAP injection sinks, sanitizers, and additional taint steps to importable location	2020-08-07 11:57:51 +02:00
Arthur Baars	c177eff3d8	Merge pull request #4027 from aschackmull/java/weak-crypto-precision Java: Update precision of java/weak-cryptographic-algorithm.	2020-08-07 10:31:38 +02:00
Anders Schack-Mulligen	f9de8eb3b4	Java: Update precision of java/weak-cryptographic-algorithm.	2020-08-07 09:40:21 +02:00
Anders Schack-Mulligen	05e956b374	Merge pull request #4022 from aibaars/int-to-long Java: remove security tag from java/integer-multiplication-cast-to-long	2020-08-07 09:32:43 +02:00
Marcono1234	0e54b498b7	Clarify Wildcard.hasTypeBound() doc	2020-08-06 23:15:25 +02:00
Marcono1234	f477e09190	Clarify Wildcard.hasUpperBound() doc	2020-08-06 23:15:16 +02:00
Remco Vermeulen	3ae3a879d2	Fix qldoc grammar and style mistakes Co-authored-by: intrigus-lgtm <60750685+intrigus-lgtm@users.noreply.github.com>	2020-08-06 23:00:03 +02:00
Raul Garcia	3682a902de	Update csharp/ql/src/experimental/Security Features/Serialization/DataSetSerialization.qhelp Co-authored-by: James Fletcher <42464962+jf205@users.noreply.github.com>	2020-08-06 12:09:02 -07:00
Geoffrey White	6e18be43f3	C++: Change note.	2020-08-06 19:27:12 +01:00
Geoffrey White	0281456948	C++: Add a 1.26 change note file (what happened to the templates?)	2020-08-06 19:21:06 +01:00
Geoffrey White	0534c69c76	C++: Autoformat.	2020-08-06 19:11:46 +01:00
Geoffrey White	0b5b7fa095	C++: Fix another edge case.	2020-08-06 19:06:42 +01:00
Geoffrey White	b3f3f6d95a	C++: Fix edge case.	2020-08-06 19:03:43 +01:00
Geoffrey White	cbf30e37ed	C++: Fix the issue.	2020-08-06 18:50:18 +01:00
Geoffrey White	a7564c9e0e	C++: Add a test of unsigned count-down loops.	2020-08-06 18:44:22 +01:00
Arthur Baars	f16c263393	Java: remove security tag from java/integer-multiplication-cast-to-long	2020-08-06 17:42:01 +02:00

1 2 3 4 5 ...

14688 Commits