8030 Commits

Author	SHA1	Message	Date
Dilan	1e1fd4566c	Merge tag 'codeql-cli/latest' ... Compatible with the latest released version of the CodeQL CLI	2024-11-07 17:59:18 +00:00
github-actions[bot]	cc7b724123	Release preparation for version 2.19.3	2024-11-04 16:37:28 +00:00
Tom Hvitved	2b37c6cd32	Merge pull request #17548 from hvitved/shared/inline-test-post-process ... Shared: Post-processing query for inline test expectations	2024-10-31 11:40:11 +01:00
Anders Schack-Mulligen	b556590ef8	Merge pull request #17663 from aschackmull/dataflow/speculative-flow ... Dataflow: Add support for speculative taint flow.	2024-10-31 08:12:43 +01:00
Tom Hvitved	495c92df38	Shared: Also take query ID into account in PathProblemSourceTestInput	2024-10-30 10:54:40 +01:00
Tom Hvitved	ff9811b488	C#: Add tests for the inline test post-processor	2024-10-30 10:09:40 +01:00
Tom Hvitved	8ba80fd022	C#: Post-processing query for inline test expectations	2024-10-29 13:35:31 +01:00
Tom Hvitved	b111194fbc	Shared: Simplify PrettyPrintModels.ql	2024-10-29 13:35:28 +01:00
Tom Hvitved	813ccb9c06	Merge pull request #17855 from hvitved/csharp/comments-mapped-locations ... C#: Take mapped locations into account in `Comments.qll`	2024-10-29 08:58:38 +01:00
Tom Hvitved	7910af159c	C#: Take mapped locations into account in Comments.qll	2024-10-28 14:21:10 +01:00
Tom Hvitved	c93e4385f2	C#: Add a test for a comment with a mapped location	2024-10-28 14:20:24 +01:00
Michael Nebel	058fcc1a51	Merge pull request #17853 from michaelnebel/csharp/madtests ... C#: Re-factor test for CWE-611/UntrustedDataInsecureXml.ql to pretty print models.	2024-10-28 13:38:26 +01:00
Michael Nebel	82ff545424	C#: Re-factor test for CWE-611/UntrustedDataInsecureXml.ql to pretty print models in test case.	2024-10-28 10:36:32 +01:00
github-actions[bot]	0e5ba2b23e	Add changed framework coverage reports	2024-10-28 00:21:56 +00:00
Michael Nebel	c1b1c62616	C#: Address review comments.	2024-10-23 15:25:52 +02:00
Michael Nebel	146c88fabb	C#: Update test expected output where the results are not affected.	2024-10-23 13:08:21 +02:00
Michael Nebel	5495a211f2	C#: Update exception information exposure expected output.	2024-10-23 13:08:19 +02:00
Michael Nebel	cad9aa21d8	C#: Update flow summaries test expected output.	2024-10-23 13:08:18 +02:00
Michael Nebel	b7b6feed04	C#: Re-generate .NET 8 Runtime models.	2024-10-23 13:08:17 +02:00
Michael Nebel	9cd9ebfda9	C#: Add manual models for StringWriter.	2024-10-23 13:08:15 +02:00
Michael Nebel	87caf3d826	C#: Add change note.	2024-10-23 13:08:14 +02:00
Michael Nebel	d3a359b498	C#: Update .NET 8 models.	2024-10-23 13:08:13 +02:00
Michael Nebel	00ccd20452	C#: Delete all .NET 8 Runtime models.	2024-10-23 13:08:11 +02:00
Michael Nebel	20b5a7b6f0	C#: Update expected test output.	2024-10-23 13:08:10 +02:00
Michael Nebel	062a2ad97d	C#: Include exception property accesses in the exception information exposure query.	2024-10-23 13:08:08 +02:00
Raul Garcia	490957ad86	Merge pull request #117 from microsoft/SqlConnFP_fix ... Fixing a false positive in cs/insecure-sql-connection	2024-10-22 10:03:14 -07:00
Raul Garcia	97bfc5dad7	Update csharp/ql/src/Security Features/CWE-327/InsecureSQLConnectionInitializerGood.cs ... Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2024-10-22 09:20:19 -07:00
Raul Garcia	8b9139f18b	Update csharp/ql/src/Security Features/CWE-327/InsecureSQLConnectionInitializerBad.cs ... Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2024-10-22 09:20:12 -07:00
Raul Garcia	0662013ef5	Update csharp/ql/src/Security Features/CWE-327/InsecureSQLConnection.ql ... Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2024-10-22 09:20:01 -07:00
Dilan	7ad49cf3ff	Merge tag 'codeql-cli/latest' ... Compatible with the latest released version of the CodeQL CLI	2024-10-21 17:59:16 +00:00
Michael Nebel	1217c55c36	C#: Add change note.	2024-10-21 12:08:03 +02:00
Michael Nebel	191658f637	C#: Update expected test output.	2024-10-21 12:04:31 +02:00
Michael Nebel	b2b1a3ea65	C#: Consider string.ReplaceLineEndings(string) as a sanitizer for log forging.	2024-10-21 12:03:59 +02:00
Michael Nebel	0b8e83dc87	C#: Add log forging false positive example using ReplaceLineEndings.	2024-10-21 11:55:09 +02:00
github-actions[bot]	ca0345324e	Release preparation for version 2.19.2	2024-10-18 15:16:21 +00:00
Arthur Baars	eb515f884b	Revert "Release preparation for version 2.19.2"	2024-10-18 17:06:20 +02:00
Anders Schack-Mulligen	c20f12fa6c	Add qldoc.	2024-10-16 14:35:23 +02:00
Anders Schack-Mulligen	7b43100af5	C#: Add support for speculative taint flow.	2024-10-16 14:35:19 +02:00
Anders Schack-Mulligen	c80627a3d3	Dataflow: add plumbing for adding provenance to state-steps.	2024-10-16 14:35:18 +02:00
github-actions[bot]	079ab77a38	Post-release preparation for codeql-cli-2.19.2	2024-10-15 12:16:59 +00:00
github-actions[bot]	255f55cf1a	Release preparation for version 2.19.2	2024-10-15 10:29:25 +00:00
REDMOND\brodes	e0ee60f3dd	Updated expected file.	2024-10-10 13:31:53 -04:00
Tom Hvitved	4df9cd88ef	Merge pull request #17658 from hvitved/shared/cfg-conditional-splitting ... Shared `ConditionalCompletionSplitting` implementation	2024-10-10 13:21:38 +02:00
Raul Garcia	c1f7422f0e	Fixing test cases	2024-10-09 16:53:33 -07:00
Raul Garcia	a179fa021f	Fixing Test cases	2024-10-09 14:44:48 -07:00
REDMOND\brodes	b95b275136	qlref's were incorrect.	2024-10-09 13:55:28 -04:00
Michael Nebel	5d4ceeebb5	Shared: Only generate df summary model in the mixed query in case no context sensitive model exist.	2024-10-09 13:04:32 +02:00
Tom Hvitved	5d925d36d3	C#: Adopt shared ConditionalCompletionSplitting implementation	2024-10-09 11:02:15 +02:00
Dilan	878bd5b098	Merge tag 'codeql-cli/latest' ... Compatible with the latest released version of the CodeQL CLI	2024-10-04 20:59:08 +00:00
Raul Garcia	64aca2632b	Fixing a false positive in cs/insecure-sql-connection, and adding a new query to remediate a false negative	2024-10-03 18:37:33 -07:00