hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-17 13:06:48 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,723 Commits 1,714 Branches 162 Tags
f0fbed76e7e648b7eee7afc5eaed010625f748b1
Commit Graph

1723 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Taus
f0fbed76e7 Merge pull request #539 from markshannon/python-path-fix-siblings 
Python: Fix parents relation for path queries.
 2018-11-23 17:59:04 +01:00
Taus
3cee874ee3 Merge pull request #536 from markshannon/python-more-shell-injection 
Python: Some additional sinks for command injection.
 2018-11-23 17:12:20 +01:00
yh-semmle
17b063f0b2 Merge pull request #473 from sb-semmle/add-properties-files-to-java-schema 
Add properties files to java schema
 2018-11-23 11:09:00 -05:00
Mark Shannon
3190b12544 Python: Fix parent relation for path-queries. 2018-11-23 15:04:01 +00:00
Mark Shannon
7f5d46b32f Python: Add change note for new sinks. 2018-11-23 14:30:57 +00:00
Mark Shannon
b94493aec3 Python: Add extra sinks for command-injection query. 2018-11-23 14:29:02 +00:00
Taus
ceb316df60 Merge pull request #527 from markshannon/python-security-change-note 
Collated python change notes
 2018-11-23 15:28:18 +01:00
Taus
61f5c2e834 Merge pull request #516 from markshannon/python-path-queries 
Python path queries
 2018-11-23 15:20:19 +01:00
Mark Shannon
4f5cfbc336 Correct change for extractor logging levels. 2018-11-23 13:03:16 +00:00
Mark Shannon
95f1935eaa Python change notes: Merge in internal change notes. 2018-11-23 12:55:04 +00:00
Mark Shannon
61bd8682df Python: Improve API and representation of taint tracking nodes. Update queries and tests accordingly. 2018-11-23 12:32:14 +00:00
Sebastian Bauersfeld
4eabca6dde Update java schema to accommodate for key-value configuration files. 2018-11-22 19:08:43 -05:00
semmle-qlci
472c0429b5 Merge pull request #526 from esben-semmle/js/flow-parsing-improvements 
Approved by xiemaisi
 2018-11-22 15:02:21 +00:00
Esben Sparre Andreasen
8c7ca38b8d JS(extractor): improve parser support for flowtype syntax 2018-11-22 14:09:09 +01:00
Mark Shannon
c01db23f58 Python: Fix up expected results of SqlInjection.ql 2018-11-22 11:05:09 +00:00
Mark Shannon
bfb7e17ebf Python: Move library to correct location. 2018-11-22 11:05:09 +00:00
Mark Shannon
f3fedcdf38 Python tests: Move security test stubs to correct location. 2018-11-22 11:05:09 +00:00
Mark Shannon
04e5b8927a Python tests: use a more accurate form os os.path.join() in test lib. 2018-11-22 11:05:09 +00:00
Mark Shannon
88d82017b3 Python: Convert stack-trace-exposure query to path-problem. 2018-11-22 11:05:08 +00:00
Mark Shannon
2a24723cc3 Python: Update test results for path queries. 2018-11-22 11:05:08 +00:00
Mark Shannon
722d89fc75 Upgrade taint-tracking security queries to path-problem queries. 2018-11-22 11:05:01 +00:00
Mark Shannon
2ac2233e69 Add change note for enhance visibility of security alerts and conversion to path-queries. 2018-11-22 11:01:35 +00:00
Max Schaefer
733acaccfa Merge pull request #506 from esben-semmle/js/optional-chaining-extractor-and-ql 
JS: Optional chaining support in extractor and ql
 2018-11-22 07:41:51 +00:00
Taus
24bf2922e0 Merge pull request #515 from markshannon/python-add-metadata 
Python tests: Add missing metadata files.
 2018-11-21 15:45:32 +01:00
Taus
13d130dad0 Merge pull request #514 from markshannon/python-remove-architect-tests 
Python tests: Remove some obsolete tests.
 2018-11-21 15:45:21 +01:00
Mark Shannon
527c95cd0b Python tests: Add missing metadata files. 2018-11-21 14:39:18 +00:00
Mark Shannon
976fed76b9 Python tests: Remove some obsolete tests. 2018-11-21 14:18:46 +00:00
ian-semmle
366934f884 Merge pull request #350 from geoffw0/cpp-205-detail 
CPP: Add detail to the CPP-205 test
 2018-11-21 13:30:53 +00:00
Esben Sparre Andreasen
72c4ef4d90 JS: fixup optional chaining on CallWithNonLocalAnalyzedReturnFlow 2018-11-21 14:18:14 +01:00
Pavel Avgustinov
5cd3a9c40d Merge pull request #500 from markshannon/python-python-security-queries-to-high 
Python: Set precision of security queries to 'high'
 2018-11-21 09:41:38 +00:00
Esben Sparre Andreasen
41b45352aa JS(ql): support optional chaining 2018-11-21 08:57:10 +01:00
Esben Sparre Andreasen
00587ba7b4 JS(extractor): support optional chaining 2018-11-21 08:57:10 +01:00
Taus
7ba4d71ffb Merge pull request #494 from markshannon/python-tests 
QL tests for Python queries and libraries.
 2018-11-20 16:00:06 +01:00
Taus
6317546cdb Merge pull request #493 from markshannon/python-queries 
Initial commit of Python queries and QL libraries.
 2018-11-20 15:59:15 +01:00
Mark Shannon
a135e4665e Update lgtm.yml file to exclude Python source in query and test folders. 2018-11-20 14:57:36 +00:00
Mark Shannon
e930b43bf3 Python security queries. Choose a precision reflecting actual precision for Security queries. 2018-11-19 17:10:40 +00:00
Mark Shannon
c2e0ee1c47 Add .qlpath and .project files for Python queries. 2018-11-19 16:28:53 +00:00
Mark Shannon
05b69a1c0f QL tests for Python queries and libraries. 2018-11-19 15:15:54 +00:00
Aditya Sharad
165bb8b6b8 Merge pull request #488 from pavgust/bump/master-next 
Mergeback master to next
 2018-11-19 15:12:37 +00:00
Mark Shannon
5f58824d1b Initial commit of Python queries and QL libraries. 2018-11-19 15:10:42 +00:00
Pavel Avgustinov
16ec9f1aa4 Merge remote-tracking branch 'origin/next' into bump/master-next 2018-11-19 10:37:07 +00:00
Geoffrey White
90c75cd362 Merge pull request #478 from felicity-semmle/cpp/SD-2777-jsf-note 
C++: Add JSF note to qhelp for sub-set of JSF queries
 2018-11-19 09:30:39 +00:00
Tom Hvitved
dd4c9654f2 Merge pull request #483 from calumgrant/cs/vulnerable-package 
C#: Remove duplicate results from cs/use-of-vulnerable-package
 2018-11-19 10:09:37 +01:00
semmle-qlci
9e4aeb36a6 Merge pull request #436 from asger-semmle/url-concat 
Approved by xiemaisi
 2018-11-19 08:57:24 +00:00
semmle-qlci
328c86c552 Merge pull request #479 from asger-semmle/typescript-extractor-perf1 
Approved by xiemaisi
 2018-11-19 08:53:41 +00:00
semmle-qlci
128118cfa7 Merge pull request #481 from asger-semmle/typescript-jsx 
Approved by xiemaisi
 2018-11-19 08:53:15 +00:00
yh-semmle
47b9218b05 Merge pull request #480 from aschackmull/java/path-problem-conversion 
Java: Convert security queries to path-problem.
 2018-11-18 20:55:52 -05:00
Felicity Chapman
d4bcc1e9d4 Add note to further file 2018-11-17 13:03:48 +00:00
Felicity Chapman
5c924307ca Remove incorrect comment from query 2018-11-17 13:03:46 +00:00
Felicity Chapman
9ce1a2a040 Add JSF note to qhelp for sub-set of JSF queries 2018-11-17 13:03:45 +00:00