hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-11 18:14:01 +02:00
Code Issues Packages Projects Releases Wiki Activity
77,317 Commits 1,740 Branches 164 Tags
f17e7266cfeb2bb0fe89ed96de5b5353dbab1922
Commit Graph

77317 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jami Cogswell
f17e7266cf Java: refactor QL 2025-03-23 19:48:15 -04:00
Jami Cogswell
ccbe77eb09 Java: move original files 2025-03-23 19:48:13 -04:00
Nick Rolfe
631ccdf380 Merge pull request #19092 from github/nickrolfe/comma-splice 
Java: fix comma splice in alert message
 2025-03-21 16:04:28 +00:00
Nick Rolfe
361fbba39b Java: fix comma splice in alert message 2025-03-21 14:23:32 +00:00
Napalys Klicius
7bd1c4d2ae Merge pull request #19060 from Napalys/js/apollo-server 
JS: model `ApolloServer`
 2025-03-21 10:00:31 +01:00
Napalys Klicius
803aacf9f0 Merge pull request #19068 from Napalys/js/superagent 
JS: `superagent` modeling
 2025-03-21 09:15:31 +01:00
Napalys Klicius
57f6225140 Update javascript/ql/lib/change-notes/2025-03-20-apollo-server.md 
Co-authored-by: Asger F <asgerf@github.com>
 2025-03-21 09:11:25 +01:00
Aditya Sharad
b4524798b8 Merge pull request #19082 from smowton/smowton/admin/fix-codeql-alert 
Avoid CodeQL alert against integration test
 2025-03-21 02:33:54 +05:30
Napalys Klicius
730580a59b Merge pull request #19049 from Napalys/js/underscore-string 
JS: Modeling of `underscore.string` package
 2025-03-20 19:11:24 +01:00
Napalys
7d40e449db Added change note. 2025-03-20 19:08:24 +01:00
Napalys
d61d038b9b Refactored SuperAgentUrlRequest to use API graph. 2025-03-20 18:17:28 +01:00
Napalys
401c6ea0f6 Added test case which is not detected by dataflow. 2025-03-20 18:17:27 +01:00
Chris Smowton
5892cdf456 Avoid CodeQL alert against integration test 
This doesn't really matter since it's a dummy test server, but it's simpler to fix than to dismiss.
 2025-03-20 15:49:21 +00:00
Asger F
d9c158923a Merge pull request #19069 from asgerf/js/jsdoc-parser 
JS: Use StringBuilder when building up type name in JSDoc
 2025-03-20 16:17:58 +01:00
Paolo Tranquilli
cd15fb3611 Merge pull request #19071 from github/redsun82/codegen-rust-ancestor-order 
Rust: preserve ordering in rust generated code
 2025-03-20 15:50:48 +01:00
Simon Friis Vindum
659077769b Merge pull request #19062 from paldepind/rust-ti-1 
Rust: Improve handling of trait bounds
 2025-03-20 14:38:03 +01:00
Napalys Klicius
13e90c1606 Update javascript/ql/lib/change-notes/2025-03-20-superagent.md 
Co-authored-by: Asger F <asgerf@github.com>
 2025-03-20 13:48:40 +01:00
Paolo Tranquilli
e2d6643600 Merge pull request #19072 from github/redsun82/rust-fix-canonical-paths-after-rename 
Rust: fix canonical paths broken on `StructExpr` and `StructPath`
 2025-03-20 13:40:24 +01:00
Napalys
9e787555df Fixed typo in the test cases. 2025-03-20 13:25:36 +01:00
Paolo Tranquilli
022785aa40 Merge pull request #19048 from github/redsun82/swift-count-nodes 
Swift: add summary about total extracted nodes
 2025-03-20 13:15:02 +01:00
Paolo Tranquilli
8757d2f0e4 Merge pull request #19013 from github/redsun82/rules_rust 
Bazel: upgrade `rules_rust` to `0.58.0`
 2025-03-20 13:14:24 +01:00
Paolo Tranquilli
e9b931e2aa Merge branch 'main' into redsun82/codegen-rust-ancestor-order 2025-03-20 13:13:10 +01:00
Napalys
3a243d221d Added aliases for @apollo/server. 2025-03-20 13:09:42 +01:00
Napalys
056bf4fde7 Added test case with inheretence. 2025-03-20 13:08:56 +01:00
Tom Hvitved
9b58da7e84 Merge pull request #19057 from hvitved/rust/dependency-renaming 
Rust: Take dependency renaming into account when extracting the crate graph
 2025-03-20 12:51:24 +01:00
Napalys
ca53e97de4 Adressed comments. 2025-03-20 12:37:06 +01:00
Paolo Tranquilli
f06aa38746 Merge branch 'main' into redsun82/swift-count-nodes 2025-03-20 12:32:49 +01:00
Chris Smowton
d362c030b7 Merge pull request #19065 from smowton/smowton/admin/merge-rc317-into-main 
Merge rc/3.17 into main
 2025-03-20 11:31:03 +00:00
Paolo Tranquilli
15bc6fc496 Merge branch 'main' into redsun82/rules_rust 2025-03-20 12:28:52 +01:00
Napalys Klicius
221cc1977d Merge branch 'main' into js/underscore-string 2025-03-20 12:26:00 +01:00
Napalys
f4ca2dc1f3 Restricted taint to array elements. 2025-03-20 12:24:49 +01:00
Napalys
752f02f04d Fixed map modeling and added test cases. 2025-03-20 12:18:28 +01:00
Paolo Tranquilli
b77c13802b Rust: fix canonical paths broken on StructExpr and StructPath 
After the rename done in https://github.com/github/codeql/pull/19059,
canonical path extraction was lost on `StructExpr` and `StructPath` as
the identifiers used for the type in the `emit_detached!` macro were not
updated. This fixes that.
 2025-03-20 12:16:47 +01:00
Napalys
38624a0d78 Added change note 2025-03-20 12:13:32 +01:00
Paolo Tranquilli
4110636032 Rust: preserve ordering in rust generated code 
This is a small devex improvement to the rust code generator.

Usage of `sorted` in `rustgen.py` was causing the generated code to be
completely reshuffled on renames, which made diffs hard to follow. As an
example see [this generated file diff](https://github.com/github/codeql/pull/19059/files#diff-c938ba77a3398dd4c633ada5702a03477705c24740a2f7d1e40d4b270d8c3f86).

This will make the order deterministically based on the order of
definitions in the schema file. This means that renames will find the
same place in the generated file, and the place in the generated file
will generally be more predictable with respect to the schema.

However, that does mean this change is heavily reshuffling the generated
code.
 2025-03-20 12:12:52 +01:00
Napalys
af567b49fb Simplified SuperAgentUrlRequest. 2025-03-20 12:10:37 +01:00
Napalys
539e2ef558 Added support for superagent.agent(). 2025-03-20 12:09:31 +01:00
Napalys
cdf4f5395f Enhance SuperAgent URL request handling for both method calls and direct calls 2025-03-20 12:09:26 +01:00
Napalys
2e1734eeba Added support for del function in superagent 2025-03-20 12:01:18 +01:00
Simon Friis Vindum
b02a249fbd Merge branch 'main' into rust-ti-1 2025-03-20 11:49:58 +01:00
Tom Hvitved
cbb9987a20 Merge remote-tracking branch 'upstream/main' into rust/dependency-renaming 2025-03-20 11:45:03 +01:00
Tom Hvitved
d19188db8f Address review comment 2025-03-20 11:39:52 +01:00
Simon Friis Vindum
b09669646d Merge pull request #19059 from paldepind/rust-record-to-struct 
Rust: Rename classes with `Record` to `Struct`
 2025-03-20 11:34:06 +01:00
Asger F
bf9d7484e4 JS: Use StringBuilder when building up type name 
This code was a bit of a performance cringe. It copied every character
into a temporary array, copied that into a String, and slow-appended
that onto another String.

Note that the call to Characters.toChars is redundant here as advance()
doesn't return a code point; it returns -1 or a UTF-16 char. The -1 case
is checked for before reaching the call, so we can just cast it to
a char and use it directly.

We use a StringBuilder to accumulate the string. Normally it's faster
to track the start/end indices and do a substring(), but that won't
work in the JSDoc extractor because of the star-skipping logic in
advance().
 2025-03-20 09:43:10 +01:00
Napalys
e5c179d5a4 Added test cases for superagent 2025-03-19 17:44:22 +01:00
Chris Smowton
9a2a13ed55 Merge remote-tracking branch 'origin/main' into smowton/admin/merge-rc317-into-main 2025-03-19 16:01:29 +00:00
Simon Friis Vindum
0d770c8c91 Rust: Improve handling of type parameters with trait bounds 2025-03-19 16:34:23 +01:00
Napalys
cb18408502 Added data as model for ApolloServer. 2025-03-19 13:36:06 +01:00
Napalys
23fdc3534f Added test case @apollo/server with SSRF. 2025-03-19 13:34:27 +01:00
Simon Friis Vindum
aa97bf932a Rust: Add type inference tests 2025-03-19 13:26:06 +01:00