codeql

mirror of https://github.com/github/codeql.git synced 2025-12-24 12:46:34 +01:00

Author	SHA1	Message	Date
Jeroen Ketema	2d0f73d7c2	Merge pull request #13881 from jketema/shared-taint-tracking Introduce shared taint tracking library	2023-08-21 12:45:49 +02:00
Rasmus Wriedt Larsen	c8c69aac9b	Merge pull request #13561 from amammad/amammad-python-WebAppsConstatntSecretKeys Python: Flask & Django Constant Secret Key initialization	2023-08-21 11:39:19 +02:00
Rasmus Wriedt Larsen	24f9f13790	Python: Fix tests	2023-08-17 10:15:36 +02:00
Jeroen Ketema	33e8310625	Merge branch 'main' into shared-taint-tracking	2023-08-17 00:14:25 +02:00
yoff	7f2f6f14e7	Merge pull request #13729 from yoff/python/model-aws-lambdas Python/JavaScript: Shared module for serverless functions	2023-08-16 15:14:08 +02:00
Rasmus Wriedt Larsen	0443057608	Merge branch 'main' into amammad-python-WebAppsConstatntSecretKeys	2023-08-16 15:06:08 +02:00
yoff	b2988e5516	Update python/ql/lib/change-notes/2023-08-07-serverless-sources.md Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2023-08-16 12:56:39 +02:00
Rasmus Wriedt Larsen	c55b0982f7	Merge pull request #13819 from yoff/python/relax-module-resolution Python: Relax module resolution	2023-08-16 12:04:49 +02:00
Rasmus Lerchedahl Petersen	6614e037ae	Python: format	2023-08-15 21:40:20 +02:00
yoff	7eb41140ab	Update python/ql/lib/semmle/python/Module.qll Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2023-08-15 15:47:00 +02:00
Rasmus Lerchedahl Petersen	e6943ce98e	Python: use standard test format	2023-08-15 15:26:18 +02:00
Rasmus Lerchedahl Petersen	8f70c9f950	Python: add comment about namespace packages	2023-08-15 12:02:02 +02:00
Erik Krogh Kristensen	6a3b9e10eb	Merge pull request #13914 from erik-krogh/escape-unicode ReDoS: escape unicode chars in the output for the ReDoS queries	2023-08-15 11:21:21 +02:00
Rasmus Wriedt Larsen	d12743d7c3	Merge pull request #13941 from yoff/python/test-nice-location Python: fix nice locations for import aliases	2023-08-14 21:37:23 +02:00
amammad	eb5529eac5	sanitize resutls exist in test/demo/example/sample directories	2023-08-14 23:48:03 +10:00
Rasmus Wriedt Larsen	1c3cc1fa29	Python: Remove flow through stdlib This means tests can pass on any machine now 👍	2023-08-14 11:55:22 +02:00
Rasmus Wriedt Larsen	794d04e4c0	Python: Model `os.getenv[b]`	2023-08-14 11:55:00 +02:00
Rasmus Wriedt Larsen	6e168ff7d8	Python: Only interested in StrConst	2023-08-14 11:46:21 +02:00
Rasmus Wriedt Larsen	0fba38c6d8	Merge branch 'main' into amammad-python-WebAppsConstatntSecretKeys	2023-08-14 11:29:56 +02:00
Rasmus Wriedt Larsen	eeefdc5dcd	Python: Fix formatting	2023-08-14 11:29:38 +02:00
yoff	d2a0b9a66c	Update python/ql/lib/change-notes/2023-08-10-fix-alias-locations.md Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2023-08-14 10:55:00 +02:00
yoff	307f44339c	Update python/ql/lib/change-notes/2023-08-08-relax-module-resolution.md Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2023-08-14 10:23:47 +02:00
Henry Mercer	1213eba630	Merge branch 'main' into post-release-prep/codeql-cli-2.14.2	2023-08-11 13:54:55 +01:00
Rasmus Lerchedahl Petersen	3457f23db5	Python: Add change note	2023-08-10 20:53:43 +02:00
Rasmus Lerchedahl Petersen	e5cd3e8f64	Python: nice locations for import aliases These were computed wrongly before.	2023-08-10 20:27:06 +02:00
Rasmus Lerchedahl Petersen	eac44e89d9	Python: test nice locations there are errors both on lines 2 and 3 due to locations being computed wrongly.	2023-08-10 14:21:16 +02:00
github-actions[bot]	432c21d4fb	Post-release preparation for codeql-cli-2.14.2	2023-08-09 18:45:18 +00:00
Rasmus Wriedt Larsen	51a05286fa	Merge pull request #13731 from pwntester/py/aiohttp_improvements Python: Aiohttp improvements	2023-08-09 16:37:20 +02:00
Rasmus Lerchedahl Petersen	e47e77c438	Python: add change note	2023-08-08 12:17:23 +02:00
Rasmus Lerchedahl Petersen	f33aff42ad	Python: missing result was fixed	2023-08-08 12:14:57 +02:00
Rasmus Lerchedahl Petersen	f865fa3050	Python: simplify using `getSubscript`	2023-08-08 11:16:35 +02:00
Rasmus Wriedt Larsen	4f47461f60	Python: Add requested test	2023-08-08 10:44:48 +02:00
erik-krogh	92db7b047c	escape unicode chars in the output for the ReDoS queries	2023-08-08 00:15:54 +02:00
github-actions[bot]	79c90fa36a	Release preparation for version 2.14.2	2023-08-07 18:08:52 +00:00
Jeroen Ketema	8b6a7985db	Refactor the traint-tracking library to follow the dataflow library refactoring	2023-08-07 15:23:15 +02:00
Jeroen Ketema	5d2984b7a5	Merge branch 'main' into shared-taint-tracking	2023-08-07 15:22:29 +02:00
Rasmus Lerchedahl Petersen	957c0d6387	Python: move change note	2023-08-07 14:28:53 +02:00
Rasmus Lerchedahl Petersen	2f9172046b	Python: change-note	2023-08-07 11:50:13 +02:00
Tom Hvitved	6c989b9c6b	Python: Adjust to data flow refactor	2023-08-07 11:35:23 +02:00
Rasmus Lerchedahl Petersen	4dbaed9ec2	Python: add qldoc	2023-08-07 11:31:22 +02:00
Jeroen Ketema	747cd1745a	Update all languages to use the shared taint-tracking library	2023-08-04 22:53:25 +02:00
Mathias Vorreiter Pedersen	abe3a816ce	Merge pull request #13851 from MathiasVP/sink-without-states DataFlow: Support stateless `isSink` in `StateConfigSig`s	2023-08-04 18:01:42 +02:00
Asger F	c38cbe859d	Merge pull request #13737 from asgerf/dynamic/fuzzy-models Dynamic: add Fuzzy token	2023-08-03 09:58:24 +02:00
Mathias Vorreiter Pedersen	3007fdab5e	Sync identical files.	2023-08-02 14:33:33 +02:00
Anders Schack-Mulligen	b27a3a81bc	Python: Adjust to use the qlpack data-flow api.	2023-08-01 14:02:33 +02:00
Owen Mansel-Chan	9b2b58a823	Sync files	2023-07-26 21:48:10 +01:00
amammad	bee8e6ff0d	remove unused saniter	2023-07-27 01:41:31 +10:00
amammad	591d81b5f9	remove saniter which was responsible for a defensive technique	2023-07-26 02:39:10 +10:00
Rasmus Lerchedahl Petersen	b2688bba7d	Python: Relax module resolution Do not require modules to reside in a package	2023-07-25 17:24:04 +02:00
amammad	1e1d42fa35	fix a mistake :(	2023-07-25 00:11:23 +10:00

1 2 3 4 5 ...

7561 Commits