codeql

mirror of https://github.com/github/codeql.git synced 2026-03-23 16:06:47 +01:00

Author	SHA1	Message	Date
Rasmus Lerchedahl Petersen	f9b1c5e4bd	Python: Fix bug pointed out by reviewer	2020-08-21 10:04:27 +02:00
yoff	bfd9c0860f	Apply suggestions from code review Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2020-08-21 09:43:29 +02:00
Rasmus Lerchedahl Petersen	bd53a711d3	Merge branch 'main' of github.com:github/codeql into SharedDataflow_SequenceFlow	2020-08-19 11:42:41 +02:00
Jonas Jensen	3e8f62fa5f	Merge pull request #4100 from nickrolfe/ssa_errors C++: fix compilation errors in ssa.cpp	2020-08-19 09:58:49 +02:00
CodeQL CI	2319c289aa	Merge pull request #4092 from erik-krogh/strictExtractor Approved by esbena	2020-08-19 08:47:07 +01:00
Rasmus Lerchedahl Petersen	176aa06fad	Python: Address review comments	2020-08-19 09:21:16 +02:00
yoff	5e84754f73	Update python/ql/src/experimental/dataflow/internal/DataFlowPrivate.qll Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2020-08-19 08:03:47 +02:00
yoff	06bd436aea	Update python/ql/src/experimental/dataflow/internal/DataFlowPrivate.qll Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2020-08-19 08:02:53 +02:00
yoff	8fbb447f4c	Update python/ql/src/experimental/dataflow/internal/DataFlowPrivate.qll Co-authored-by: Taus <tausbn@github.com>	2020-08-19 08:02:29 +02:00
yoff	1c3b945e55	Update python/ql/src/experimental/dataflow/internal/DataFlowPublic.qll Co-authored-by: Taus <tausbn@github.com>	2020-08-19 08:01:54 +02:00
yoff	43a5e74c65	Update python/ql/src/experimental/dataflow/internal/DataFlowPublic.qll Co-authored-by: Taus <tausbn@github.com>	2020-08-19 08:01:42 +02:00
Nick Rolfe	d7849bc13f	C++: fix compilation errors in ssa.cpp	2020-08-18 18:39:00 +01:00
Tom Hvitved	bc77916246	Merge pull request #4093 from tamasvajk/feature/change-notes C#: Add change notes for C# analysis	2020-08-18 14:35:01 +02:00
Jonas Jensen	ca1f5317b3	Merge pull request #4068 from geoffw0/uncontrolled-alloc-size C++: Downgrade `cpp/uncontrolled-allocation-size` query precision.	2020-08-18 13:59:53 +02:00
Tom Hvitved	f761a604f3	Merge pull request #4094 from tamasvajk/feature/comp-gen-array-size C# Compiler generated flag for length arguments of implicitly sized arrays	2020-08-18 13:43:02 +02:00
Anders Schack-Mulligen	f75f5ab125	Merge pull request #3838 from hvitved/dataflow/flow-fwd-ctx Data flow: Use precise call contexts in `flowFwd()`	2020-08-18 13:06:11 +02:00
Erik Krogh Kristensen	246d9b8c70	update expected trap files	2020-08-18 12:51:36 +02:00
Tamas Vajk	0cf4c99986	C#: Change compiler generated flag for length arguments of implicitly sized arrays	2020-08-18 12:06:01 +02:00
Tamas Vajk	99e62ceee6	C#: Add test for length argument of implicitly sized arrays	2020-08-18 11:44:24 +02:00
Erik Krogh Kristensen	03cb95c82b	bump extractor version	2020-08-18 11:20:04 +02:00
Tamas Vajk	6ae53b1865	C#: Add change notes for C# analysis	2020-08-18 11:10:04 +02:00
Erik Krogh Kristensen	d1b3963e2d	correctly treat ES2015 modules as being in strict-mode in the extractor	2020-08-18 10:13:20 +02:00
Geoffrey White	5d485859af	Merge remote-tracking branch 'upstream/main' into uncontrolled-alloc-size	2020-08-17 20:49:35 +01:00
Geoffrey White	be91cec7ad	C++: Add change note.	2020-08-17 20:45:49 +01:00
Robert Marsh	9decb47bf0	Merge pull request #4076 from jbj/SimpleRangeAnalysis-AssignOperation C++: Fix SimpleRangeAnalysis for AssignOperation	2020-08-17 12:55:26 -04:00
Geoffrey White	4b4b8a9faa	Merge pull request #4074 from jbj/SimpleRangeAnalysis-extensible C++: extensible range analysis	2020-08-17 14:46:57 +01:00
Tom Hvitved	a2fc92b9db	Data flow: Address review comments	2020-08-17 15:46:43 +02:00
CodeQL CI	c917cd02bd	Merge pull request #4054 from erik-krogh/urlIncludes Approved by esbena	2020-08-17 13:54:25 +01:00
Tom Hvitved	8876dd51c7	Merge pull request #4079 from hvitved/csharp/xml-data-flow-config C#: Use `DataFlow3` instead of `DataFlow2` in `Xml.qll` to avoid overlap	2020-08-17 10:36:56 +02:00
Tom Hvitved	28a7656813	Merge pull request #4073 from aschackmull/java/move-test Java: Temporarily move a qltest.	2020-08-17 09:08:44 +02:00
Jonas Jensen	768e5190a1	Merge pull request #4080 from geoffw0/split C++: Split test file stl.cpp	2020-08-14 15:59:46 +02:00
Geoffrey White	89c2b6dc4b	Merge remote-tracking branch 'upstream/master' into split	2020-08-14 14:03:34 +01:00
Tom Hvitved	357109a410	C#: Use `DataFlow3` instead of `DataFlow2` in `Xml.qll` to avoid overlap `semmle.code.csharp.frameworks.system.Xml` is imported in `LibraryTypeDataFlow.qll`, and therefore part of the default namespace. This means that the use of `DataFlow2` inside `Xml.qll` overlaps with some queries. Bumping to `DataFlow3` resolves the issue.	2020-08-14 14:33:12 +02:00
CodeQL CI	e9a36b2524	Merge pull request #4062 from tausbn/python-fix-unknown-import-star Approved by yoff	2020-08-14 13:17:45 +01:00
Jonas Jensen	f90d779122	C++: Fix SimpleRangeAnalysis for AssignOperation The range analysis wasn't producing useful bounds for `AssignOperation`s (`+=`, `-=`) unless their RHS involved a variable. This is because a shortcut was made in the `analyzableDef` predicate, which used to specify that an analyzable definition was one for which we'd specified the dependencies. But we can't distinguish between having _no dependencies_ and having _no specification of the dependencies_. The fix is to be more explicit about which definitions are analyzable. To avoid too much repetition I'm still calling out to `analyzableExpr` in the new code.	2020-08-14 14:15:58 +02:00
Taus	8cbd4974ae	Merge pull request #3981 from yoff/SharedDataflow_Classes Python: Dataflow, test magic methods	2020-08-14 12:45:55 +02:00
Jonas Jensen	e01e702f46	Merge pull request #4060 from bgianfo/patch-1 C++: Detect GoogleTest tests cases in FNumberOfTests.ql	2020-08-14 12:42:12 +02:00
Jonas Jensen	f7273b8665	C++: Add custom modeling to extensibility.ql	2020-08-14 12:27:30 +02:00
Jonas Jensen	ee3312503e	C++: Add test for extensible range analysis This commit demonstrates that the range is too wide before custom modeling has been added to the test.	2020-08-14 12:27:30 +02:00
Jonas Jensen	bf7732ec9d	C++: Silence QL compiler errors	2020-08-14 12:27:30 +02:00
Jonas Jensen	1deb1e6429	C++: Add SimpleRangeAnalysisExpr.dependsOnChild	2020-08-14 12:27:30 +02:00
Jonas Jensen	1b5b374a8e	C++: Move getFullyConverted{Upper,Lower}Bounds Rather than being public, these internal predicates are now exposed through a `SimpleRangeAnalysisInternal` module so it's clear that they are not for general use.	2020-08-14 12:27:30 +02:00
Jonas Jensen	18ba562c25	C++: Fix: remember to bind `e`	2020-08-14 12:27:30 +02:00
Jonas Jensen	1c0e83a374	C++: Autoformat fixup	2020-08-14 12:27:30 +02:00
Jonas Jensen	aa78c6e750	C++: Move to experimental And rename to `SimpleRangeAnalysisExpr` to clarify which of our range analysis libraries this belongs to.	2020-08-14 12:27:30 +02:00
Jonas Jensen	cdddf5fd40	Merge remote-tracking branch 'upstream/master' into SimpleRangeAnalysis-extensible-base	2020-08-14 12:26:59 +02:00
Rasmus Lerchedahl Petersen	9556937840	Python: address review comments	2020-08-14 11:29:58 +02:00
Tom Hvitved	e518cbabd6	Python: Sync data flow files	2020-08-14 11:04:45 +02:00
Tom Hvitved	9ebf8d1d58	Data flow: Sync files	2020-08-14 11:04:45 +02:00
Tom Hvitved	2d29fa1d15	Data flow: Use precise call contexts in `flowFwd()`	2020-08-14 11:04:45 +02:00

1 2 3 4 5 ...

14824 Commits