hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-25 00:27:09 +02:00
Code Issues Packages Projects Releases Wiki Activity
72,110 Commits 1,758 Branches 168 Tags
f103fed6deb4e1f28b3f28542131de0fe019cd6f
Commit Graph

72110 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mathias Vorreiter Pedersen
f103fed6de PS: Use ! to mark static members/methods. 2024-11-12 20:12:52 +00:00
Mathias Vorreiter Pedersen
50c05517d2 PS: Include implicit qualifiers. 2024-11-12 20:05:20 +00:00
Mathias Vorreiter Pedersen
a382d08915 PS: Don't raise an alert on all call operator node arguments. 2024-11-11 15:25:18 +00:00
Mathias Vorreiter Pedersen
5b5f6ec3c3 Merge pull request #140 from microsoft/powershell-storestep-avoid-cp 
PS: Remove accidental CP
 2024-11-11 12:28:43 +00:00
Mathias Vorreiter Pedersen
446b3ea0e1 PS: Accept test changes. 2024-11-11 12:28:00 +00:00
Mathias Vorreiter Pedersen
7fe9cce53f PS: Avoid CP. 2024-11-11 12:19:46 +00:00
Mathias Vorreiter Pedersen
50188a2175 PS: Drive-by: Fix toString on Cmd. 2024-11-11 12:19:33 +00:00
Mathias Vorreiter Pedersen
86a40b9b0b Merge pull request #138 from microsoft/powershell-tainted-command-query 
PS: Add the first non-experimental query
 2024-11-08 20:44:15 +01:00
Mathias Vorreiter Pedersen
87cbfd191f Merge pull request #139 from microsoft/powershell-fix-multiple-cfg-successors 
PS: Fix multiple CFG successors
 2024-11-08 20:43:59 +01:00
Mathias Vorreiter Pedersen
40f50dd472 PS: Ensure the parameter has the right enclosing function. 2024-11-08 19:41:52 +00:00
Mathias Vorreiter Pedersen
b3de6a23ea PS: Add tests. 2024-11-08 16:07:12 +00:00
Mathias Vorreiter Pedersen
40cf8dd387 PS: Add test dependency on powereshell-queries. 2024-11-08 16:07:11 +00:00
Mathias Vorreiter Pedersen
e8274a66a5 PS: Add qhelp. 2024-11-08 16:07:09 +00:00
Mathias Vorreiter Pedersen
299c3e9eed PS: Add 'powershell/command-injection' query. 2024-11-08 16:07:07 +00:00
Mathias Vorreiter Pedersen
0fb75afd33 Merge pull request #137 from microsoft/powershell-taint-through-string-interpolation 
PS: Taint-flow through string interpolation
 2024-11-08 17:06:23 +01:00
Mathias Vorreiter Pedersen
f16b2cbd76 PS: Accept test changes. 2024-11-08 16:04:10 +00:00
Mathias Vorreiter Pedersen
5a715c7d11 PS: Flow through string interpolation. 2024-11-08 16:01:23 +00:00
Mathias Vorreiter Pedersen
d5d3712db4 PS: Add taint test. 2024-11-08 15:59:26 +00:00
Mathias Vorreiter Pedersen
16aacd87e0 Merge pull request #136 from microsoft/powershell-first-query-preps 
PS: Add AST and CFG classes for operator `&` and add environment variable reads as local flow sources
 2024-11-08 16:07:08 +01:00
Mathias Vorreiter Pedersen
4a2fd527ed PS: Add reads of environment variables as local flow sources. 2024-11-08 15:01:18 +00:00
Mathias Vorreiter Pedersen
9f0f0ca8a4 PS: Add placeholder for speculative flow now that this has been merged on the GitHub side. 2024-11-08 15:00:37 +00:00
Mathias Vorreiter Pedersen
aaa01820e0 PS: Add AST and CFG nodes for operator &. 2024-11-08 14:59:56 +00:00
Dilan
1e1fd4566c Merge tag 'codeql-cli/latest' 
Compatible with the latest released version of the CodeQL CLI
 2024-11-07 17:59:18 +00:00
Mathias Vorreiter Pedersen
f96a984b1f Merge pull request #135 from microsoft/api-graphs-qualified-calls 
PS: Allow `Instance` on explicit module uses
 2024-11-07 14:03:34 +01:00
Mathias Vorreiter Pedersen
2255fda9e6 PS: Accept test changes. These are all from the changes to 'toString' from the previous commit. 2024-11-07 12:59:06 +00:00
Mathias Vorreiter Pedersen
a086d63f31 PS: Drive-by fix: Better toString on Cmd. 2024-11-07 12:47:58 +00:00
Mathias Vorreiter Pedersen
7531d88f6d PS: Allow explicit module qualifiers to be selected with the 'instance' path. 2024-11-07 12:47:23 +00:00
Mathias Vorreiter Pedersen
689a34b823 PS: Add a public dataflow node class for TypeNames. 2024-11-07 12:46:08 +00:00
Mathias Vorreiter Pedersen
938069d5ba PS: Include more module IPA nodes. 2024-11-07 12:45:06 +00:00
Mathias Vorreiter Pedersen
8550178112 Merge pull request #134 from microsoft/powershell-mad 
PS: Add API graphs and models-as-data libraries
 2024-11-06 15:05:36 +01:00
Mathias Vorreiter Pedersen
18d8de1fc8 PS: Add a bunch of source models. 2024-11-06 13:43:18 +00:00
Mathias Vorreiter Pedersen
d02ad25aaa PS: Add (empty) model-related files. 2024-11-06 13:43:16 +00:00
Mathias Vorreiter Pedersen
4344e70543 PS: Include certain statements as local source nodes. 2024-11-06 13:43:14 +00:00
Mathias Vorreiter Pedersen
4f58b19217 PS: Add wrapper classes for local and remote flow sources. 2024-11-06 13:43:13 +00:00
Mathias Vorreiter Pedersen
2ffbf179d8 PS: Dataflow additions to support api graphs. 2024-11-06 13:43:10 +00:00
Mathias Vorreiter Pedersen
9a03d10eb1 PS: Add API graph files. 2024-11-06 13:43:07 +00:00
Mathias Vorreiter Pedersen
314951779d PS: Add shared files for API graphs. 2024-11-06 13:43:03 +00:00
Mathias Vorreiter Pedersen
5852fe40d8 PS: Add a concept of 'source call' vs. 'library call' to avoid non-monotonic recursion in the next commits. 2024-11-06 13:43:01 +00:00
Mathias Vorreiter Pedersen
cfde677eb2 PS: AST and control-flow additions required for MaD and Api graphs. 2024-11-06 13:42:58 +00:00
Mathias Vorreiter Pedersen
68c729f8cd PS: Models-as-data skeleton. 2024-11-06 13:41:05 +00:00
Mathias Vorreiter Pedersen
9fb5711cc6 PS: Drive-by fix: Match Ruby's implementation of 'getAMatchingContent'. 2024-11-06 13:41:04 +00:00
Mathias Vorreiter Pedersen
94220ec26b PS: Make use of static type information in dataflow dispatch. 2024-11-06 13:41:03 +00:00
Mathias Vorreiter Pedersen
92a8c84ce6 PS: Add predicates for getting the static type of a parameter. 2024-11-06 13:41:02 +00:00
Mathias Vorreiter Pedersen
ef36d6b03c Merge pull request #133 from microsoft/powershell-extract-implicit-models-followup 
PS: #132 follow-up
 2024-11-06 12:53:49 +01:00
Mathias Vorreiter Pedersen
a2158e2b68 PS: Add an extractor option to control whether to extract PSModulePath files and use that new option when running ql tests. 2024-11-06 11:52:27 +00:00
Mathias Vorreiter Pedersen
43f986c8c8 Merge pull request #132 from microsoft/powershell-extract-implicit-models 
PS: Extract source files found via `PSModulePath`
 2024-11-06 11:19:20 +01:00
Mathias Vorreiter Pedersen
a56cbfe425 PS: Upgrade and downgrade scripts. 2024-11-06 10:14:33 +00:00
Mathias Vorreiter Pedersen
28ddb9aa5b PS: Mark which files are from the PSModulePath environment variable. 2024-11-06 10:14:31 +00:00
Mathias Vorreiter Pedersen
261d7d7679 PS: Also extract .psd1 files. 2024-11-06 10:14:28 +00:00
Mathias Vorreiter Pedersen
df962d7626 PS: Also extract files from the PSModulePath environment variable. 2024-11-06 10:14:26 +00:00