Anders Schack-Mulligen
|
f3e2bd0fd9
|
Merge pull request #3141 from pwntester/InsecureBeanValidation
Insecure Bean Validation query
|
2020-10-28 12:04:12 +01:00 |
|
Tamás Vajk
|
7c3964a388
|
Merge pull request #4543 from tamasvajk/feature/configureawait
C#: Add flow summary for 'Task.ConfigureAwait()'
|
2020-10-28 10:42:44 +01:00 |
|
Anders Schack-Mulligen
|
34ae6e0576
|
Apply suggestions from code review
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-28 09:15:08 +01:00 |
|
Tom Hvitved
|
02ca8fe3b7
|
Merge pull request #4556 from hvitved/csharp/dataflow/tuple-perf
C#: Fix bad join-order in `System.Tuple` flow-summaries
|
2020-10-28 08:50:37 +01:00 |
|
Tamas Vajk
|
7a1e1996e4
|
C#: Remove unneded class from CompilerServices.qll
|
2020-10-28 08:42:20 +01:00 |
|
Dave Bartolomeo
|
27ad7bc297
|
Merge pull request #4560 from MathiasVP/instruction-tag-for-this-addr-and-load
C++: Make sure getInstructionTagId has a result for `this` related IPA branches
|
2020-10-27 21:01:09 -04:00 |
|
Mathias Vorreiter Pedersen
|
ad9e7b7343
|
C++: Give getInstructionTagId a result when tag is ThisAddressTag or ThisLoadTag
|
2020-10-27 22:16:01 +01:00 |
|
Alvaro Muñoz
|
77b551b693
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:12:17 +01:00 |
|
Alvaro Muñoz
|
b9c75ea462
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:12:00 +01:00 |
|
Alvaro Muñoz
|
ac116da0dc
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:11:48 +01:00 |
|
Alvaro Muñoz
|
d5b470ea0c
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:11:27 +01:00 |
|
Alvaro Muñoz
|
9785013c29
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:11:15 +01:00 |
|
Alvaro Muñoz
|
d221930c81
|
Update java/ql/src/Security/CWE/CWE-094/InsecureBeanValidation.qhelp
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:10:56 +01:00 |
|
Alvaro Muñoz
|
a9ea63b976
|
Update java/change-notes/2020-10-27-insecure-bean-validation.md
Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>
|
2020-10-27 21:10:46 +01:00 |
|
Alvaro Muñoz
|
1fdf0556d2
|
more fixes to make qlhelp linter happy
|
2020-10-27 17:05:00 +01:00 |
|
Alvaro Muñoz
|
aa981caea5
|
more fixes to make qlhelp linter happy
|
2020-10-27 16:32:13 +01:00 |
|
Alvaro Muñoz
|
8974f252ac
|
fix format and qlhelp errors blocking the merge
|
2020-10-27 16:19:39 +01:00 |
|
Alvaro Muñoz
|
11e57bd2f8
|
add change note for new Insecure Bean Validation query
|
2020-10-27 16:11:51 +01:00 |
|
Alvaro Muñoz
|
3378dd526e
|
remove compiled classes from stubs
|
2020-10-27 15:56:26 +01:00 |
|
Alvaro Muñoz
|
99044fc6ab
|
remove experimental query forr bean validation
|
2020-10-27 15:55:19 +01:00 |
|
Alvaro Muñoz
|
40a2007497
|
Apply suggestions from code review
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
|
2020-10-27 15:52:25 +01:00 |
|
Alvaro Muñoz
|
8b5aed2fe1
|
move md links to <a>
|
2020-10-27 15:52:25 +01:00 |
|
Alvaro Muñoz
|
8904411fe6
|
address review comments
|
2020-10-27 15:52:24 +01:00 |
|
Alvaro Muñoz
|
debfc686d1
|
Insecure Bean Validation query
|
2020-10-27 15:52:24 +01:00 |
|
Alvaro Muñoz
|
7d7933a054
|
move query out of experimental
|
2020-10-27 15:52:20 +01:00 |
|
Alvaro Muñoz
|
d990f7a470
|
move md links to <a>
|
2020-10-27 15:51:40 +01:00 |
|
Alvaro Muñoz
|
65d01f5c9e
|
address review comments
|
2020-10-27 15:51:36 +01:00 |
|
Alvaro Muñoz
|
f85778e9c7
|
Apply suggestions from code review
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
6ca28a8bc6
|
move md links to <a>
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
27bd9044e7
|
address review comments
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
73fc9fda77
|
Insecure Bean Validation query
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
a36970f306
|
Add beanValidation remote source
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
3dcd8acf97
|
add expected results
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
671ea2f6c6
|
add test and stubs
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
a274a1516a
|
move source to FlowSources.qll
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
2bab9d22e9
|
move query out of experimental
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
df4164f2c0
|
Apply suggestions from code review
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
c1decf4d0d
|
move md links to <a>
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
0bf3895327
|
address review comments
|
2020-10-27 15:47:54 +01:00 |
|
Alvaro Muñoz
|
3b23cd5be3
|
Insecure Bean Validation query
|
2020-10-27 15:47:54 +01:00 |
|
Tom Hvitved
|
090ea01249
|
C#: Fix bad join-order in System.Tuple flow-summaries
|
2020-10-27 14:51:11 +01:00 |
|
Tom Hvitved
|
03a36760b8
|
C#: Add data-flow test for ConfigureAwait()
|
2020-10-27 10:23:39 +01:00 |
|
Tamas Vajk
|
342a711296
|
C#: Add flow summary for 'Task.ConfigureAwait()'
|
2020-10-27 10:23:39 +01:00 |
|
Jonas Jensen
|
8f6dbe982e
|
Merge pull request #4468 from github/rdmarsh2/cpp/output-iterators-2
C++: flow through output iterators with user-defined operator= and operator*
|
2020-10-27 08:36:14 +01:00 |
|
Jonas Jensen
|
45cd47ea77
|
Merge pull request #4535 from criemen/jump-to-def
C++: Extend jump-to-def support to template instantiations.
|
2020-10-27 08:16:57 +01:00 |
|
Geoffrey White
|
12233e5874
|
Merge pull request #4533 from MathiasVP/mathiasvp/fix-broken-qhelp
C++: Fix broken qhelp links
|
2020-10-26 14:40:52 +00:00 |
|
Mathias Vorreiter Pedersen
|
9db66a1b94
|
Delete the msdn reference in NestedLoopSameVar
It was a Visual Basic reference anyway, and it doesn't seem to provide more information than the link we have already.
|
2020-10-26 15:27:24 +01:00 |
|
Tom Hvitved
|
212b49f3dc
|
Merge pull request #4416 from hvitved/csharp/dataflow/tuples
C#: Add flow summaries for `System.[Value]Tuple`
|
2020-10-26 13:48:24 +01:00 |
|
CodeQL CI
|
e825af2791
|
Merge pull request #4548 from asgerf/js/handle-empty-package-json
Approved by erik-krogh
|
2020-10-26 11:51:12 +00:00 |
|
Chris Smowton
|
68876b02fe
|
Merge pull request #4519 from smowton/smowton/cleanup/loggertype-dead-code
C#: Remove dead LoggerType class
|
2020-10-26 11:19:27 +00:00 |
|