Anders Schack-Mulligen
|
f977a4206a
|
C++: Accept qltest .expected file changes (interesting).
|
2024-05-22 15:35:28 +02:00 |
|
Anders Schack-Mulligen
|
bbebdfea8d
|
Merge pull request #16511 from aschackmull/dataflow/configuration-provenance
Dataflow: Add provenance for configuration-specific steps.
|
2024-05-22 14:07:10 +02:00 |
|
Anders Schack-Mulligen
|
de5c69d0a1
|
Merge pull request #16551 from aschackmull/java/model-fixes
Java: Revise some jdk time-related models
|
2024-05-22 14:05:23 +02:00 |
|
Mathias Vorreiter Pedersen
|
09357e15b4
|
Merge pull request #16533 from MathiasVP/better-negation-guards-in-c
C++: Make `IRGuardCondition` handle `p` in `if(p)` and `if(!p)` better in C programs
|
2024-05-22 13:02:06 +01:00 |
|
Tom Hvitved
|
a992b67d97
|
Merge pull request #16556 from hvitved/dataflow/simplify
Data flow: Remove two redundant conjuncts
|
2024-05-22 13:58:04 +02:00 |
|
Tamás Vajk
|
c9f468578d
|
Merge pull request #16521 from tamasvajk/impr/refactor-common-csproj-prop
C#: Refactor common msbuild properties
|
2024-05-22 13:38:31 +02:00 |
|
Mathias Vorreiter Pedersen
|
00a940fd58
|
Merge pull request #16524 from catenacyber/deref-null-result
Adds another rule for null deref
|
2024-05-22 12:37:39 +01:00 |
|
Alex Ford
|
8119a27540
|
Merge pull request #16185 from alexrford/rb/conditions-arr0
Ruby: ActiveRecord - refine `conditions` argument as an SQLi sink
|
2024-05-22 12:19:10 +01:00 |
|
Tom Hvitved
|
a006c29a00
|
Merge pull request #16481 from hvitved/treesitter/bump2
Tree-sitter: Bump to 0.22.6
|
2024-05-22 12:53:14 +02:00 |
|
Tom Hvitved
|
70cf16597b
|
Data flow: Remove two redundant conjuncts
|
2024-05-22 12:45:11 +02:00 |
|
Anders Schack-Mulligen
|
a078dcf1f2
|
Merge pull request #16550 from aschackmull/java/zipslip-number-sanitizer
Java: Improve sanitizer for java/zipslip
|
2024-05-22 12:43:44 +02:00 |
|
Mathias Vorreiter Pedersen
|
eda815789b
|
Update cpp/ql/src/experimental/Likely Bugs/DerefNullResult.ql
|
2024-05-22 11:21:04 +01:00 |
|
Anders Schack-Mulligen
|
a74cf6501a
|
Java: update qltest expected files.
|
2024-05-22 11:13:06 +02:00 |
|
Michael Nebel
|
84e412fe36
|
Merge pull request #16477 from michaelnebel/csharp/madinlinetest
C#: Inline expectation for model generator test.
|
2024-05-22 11:05:23 +02:00 |
|
Anders Schack-Mulligen
|
ba97c3623a
|
Java: Change most java.time.* df-generated taint models to neutrals.
|
2024-05-22 10:29:54 +02:00 |
|
Anders Schack-Mulligen
|
54f2316d00
|
Java: Add a neutral model.
|
2024-05-22 10:29:49 +02:00 |
|
Anders Schack-Mulligen
|
7828cb8f5a
|
Java: Add change note.
|
2024-05-22 10:27:33 +02:00 |
|
Anders Schack-Mulligen
|
d82acf5866
|
Java: Add simple type sanitization to java/zipslip.
|
2024-05-22 10:23:30 +02:00 |
|
Tamás Vajk
|
855fe12c6c
|
Merge pull request #16549 from tamasvajk/fix/tsp-diag
C#: Fix TSP diagnostic message
|
2024-05-22 10:10:26 +02:00 |
|
Anders Schack-Mulligen
|
012b861ffb
|
Ruby: Accept qltest .expected file changes.
|
2024-05-22 10:08:59 +02:00 |
|
Anders Schack-Mulligen
|
c4ae18649e
|
Ruby: Accept qltest .expected file changes (interesting).
|
2024-05-22 10:08:59 +02:00 |
|
Anders Schack-Mulligen
|
c2ec1bf561
|
Swift: Accept qltest .expected file changes.
|
2024-05-22 10:08:56 +02:00 |
|
Anders Schack-Mulligen
|
73b8314308
|
C#: Accept qltest .expected file changes.
|
2024-05-22 10:05:42 +02:00 |
|
Anders Schack-Mulligen
|
22c1d52381
|
Dataflow: Add provenance for configuration-specific steps.
|
2024-05-22 10:05:42 +02:00 |
|
Tamas Vajk
|
91aa182d53
|
C#: Fix TSP diagnostic message
|
2024-05-22 08:49:55 +02:00 |
|
Erik Krogh Kristensen
|
92df0a3d46
|
Merge pull request #16546 from erik-krogh/ts-big-file-fix
JS: fix that very large TypeScript files would crash the extractor
|
2024-05-22 07:41:58 +02:00 |
|
erik-krogh
|
a30bac14e9
|
add change-note
|
2024-05-21 22:14:39 +02:00 |
|
Philippe Antoine
|
ab4b823c2e
|
fixup unique assignment
|
2024-05-21 22:10:00 +02:00 |
|
Tom Hvitved
|
22aea47604
|
Repin
|
2024-05-21 20:59:54 +02:00 |
|
Tom Hvitved
|
a87ceed361
|
Merge pull request #16394 from hvitved/dataflow/synth-param-ret-node
Data flow: Synthesize parameter return nodes
|
2024-05-21 20:55:14 +02:00 |
|
Tom Hvitved
|
bc1283c715
|
Ruby: Reference official Tree-sitter grammar in Cargo.toml
|
2024-05-21 20:51:50 +02:00 |
|
erik-krogh
|
61c72361cd
|
move the "isFileTooLarge" earlier in the pipeline, so we're only doing it once
|
2024-05-21 20:01:24 +02:00 |
|
erik-krogh
|
241f977488
|
fix that very large TypeScript files would crash the extractor
|
2024-05-21 19:52:43 +02:00 |
|
Chuan-kai Lin
|
8a22e2283c
|
Merge pull request #16424 from github/cklin/ruby-entities-reorder
Ruby: Use entities in reorder directives
|
2024-05-21 07:32:28 -07:00 |
|
Tom Hvitved
|
bebcd679a4
|
Address review comments
|
2024-05-21 14:51:52 +02:00 |
|
Tom Hvitved
|
18f138e754
|
Add change note
|
2024-05-21 14:47:42 +02:00 |
|
Rasmus Wriedt Larsen
|
2451a6d3f6
|
Accept .expected changes
|
2024-05-21 14:47:42 +02:00 |
|
Tom Hvitved
|
454687d583
|
Data flow: Synthesize parameter return nodes
|
2024-05-21 14:47:42 +02:00 |
|
yoff
|
358c7410c8
|
Merge pull request #16490 from yoff/python/rich-type-column-MaD
Python: Rich `type` column in MaD
|
2024-05-21 11:55:41 +02:00 |
|
Tom Hvitved
|
158dafa7d0
|
Python: Dummy change to trigger CI
|
2024-05-21 11:25:21 +02:00 |
|
Tom Hvitved
|
80364e9570
|
Ruby: Repin in Cargo.toml
|
2024-05-21 11:25:21 +02:00 |
|
Jeroen Ketema
|
bddc69e409
|
Merge pull request #16537 from jketema/memcmp
C++: Fix typo in `cpp/network-to-host-function-as-array-bound`
|
2024-05-21 11:14:48 +02:00 |
|
Tom Hvitved
|
bf2ae9890f
|
Tree-sitter: Bump to 0.22.6
|
2024-05-21 11:14:06 +02:00 |
|
Jeroen Ketema
|
c8fec336ce
|
C++: Fix typo in cpp/network-to-host-function-as-array-bound
|
2024-05-21 10:29:17 +02:00 |
|
Jeroen Ketema
|
1a60c01723
|
C++: Add memcmp test for cpp/network-to-host-function-as-array-bound
|
2024-05-21 10:27:38 +02:00 |
|
Joe Farebrother
|
01a6c5e82f
|
Merge pull request #16446 from joefarebrother/shared-sensitive-heuristics
Ruby/Python/JS/Swift: Add category of Private information to shared sensitive data heuristics
|
2024-05-21 09:07:13 +01:00 |
|
Tom Hvitved
|
60ee7fb0d3
|
Merge pull request #16473 from hvitved/csharp/entity-framework-perf
C#: Fix performance issue in EntityFramework modelling
|
2024-05-21 10:03:21 +02:00 |
|
Tamás Vajk
|
1a20a624d6
|
Merge pull request #16498 from tamasvajk/buildless/use-nuget-from-path
C#: Use nuget.exe from the executing machine instead of always downlo…
|
2024-05-21 09:38:47 +02:00 |
|
Tamas Vajk
|
c9b4e83e73
|
Add empty Directory.Build.props to ql subdirectory
|
2024-05-21 09:30:25 +02:00 |
|
Paolo Tranquilli
|
9d21e2cda3
|
Merge pull request #16522 from github/redsun82/lfs
Bazel: allow LFS rules to use cached downloads without internet
|
2024-05-21 08:56:47 +02:00 |
|