Rasmus Wriedt Larsen
|
fa1d4e6de7
|
Python: Extract poor mans function resolution (from django)
Since I also want to use this for aiohttp.web modeling
|
2021-06-03 10:55:33 +02:00 |
|
Rasmus Wriedt Larsen
|
85d9483c7b
|
Python: Add basic aiohttp tests
|
2021-06-03 10:55:33 +02:00 |
|
CodeQL CI
|
ffad65be40
|
Merge pull request #5993 from erik-krogh/lib-debug
Approved by esbena
|
2021-06-03 01:38:57 -07:00 |
|
CodeQL CI
|
60fb1a3b59
|
Merge pull request #5995 from erik-krogh/webpack-merge
Approved by esbena
|
2021-06-03 01:38:08 -07:00 |
|
CodeQL CI
|
7663095b57
|
Merge pull request #5948 from erik-krogh/fixRandom
Approved by esbena
|
2021-06-03 01:37:23 -07:00 |
|
CodeQL CI
|
40b6c85341
|
Merge pull request #5972 from erik-krogh/ts43
Approved by esbena
|
2021-06-03 01:35:58 -07:00 |
|
CodeQL CI
|
87268d57b8
|
Merge pull request #5994 from erik-krogh/abstractMongooseFunction
Approved by esbena
|
2021-06-03 01:34:44 -07:00 |
|
Anders Schack-Mulligen
|
c86d433e2d
|
Merge pull request #5996 from tamasvajk/feature/csv-coverage-2
Temporarily disable CSV coverage PR file comparison step
|
2021-06-03 08:51:44 +02:00 |
|
Anders Schack-Mulligen
|
acca26f1d6
|
Merge pull request #5992 from hvitved/java/is-unreachable-perf
Java: Improve performance of `isUnreachableInCall()`
|
2021-06-03 08:49:51 +02:00 |
|
Tamas Vajk
|
374adc8819
|
Temporarily disable CSV coverage PR file comparison step
|
2021-06-03 08:17:28 +02:00 |
|
Erik Krogh Kristensen
|
3bda1f2e26
|
update expected test output
|
2021-06-03 00:43:54 +02:00 |
|
Erik Krogh Kristensen
|
143bf9de14
|
add change note
|
2021-06-02 23:48:29 +02:00 |
|
Erik Krogh Kristensen
|
48ab630559
|
model webpack-merge as an extend call
|
2021-06-02 23:43:53 +02:00 |
|
Erik Krogh Kristensen
|
185811ee22
|
make MongooseFunction abstract
|
2021-06-02 23:23:30 +02:00 |
|
Erik Krogh Kristensen
|
431c995131
|
add support for the debug library
|
2021-06-02 23:11:15 +02:00 |
|
Erik Krogh Kristensen
|
69d6c74e7e
|
fix typescript version
|
2021-06-02 21:56:47 +02:00 |
|
Tom Hvitved
|
daf2cc3d53
|
Java: Improve performance of isUnreachableInCall()
|
2021-06-02 20:39:05 +02:00 |
|
Anders Schack-Mulligen
|
8e6dd51f50
|
Merge pull request #5868 from Marcono1234/marcono1234/ignore-not-closing-char-array-closeable
Java: Ignore char array based closeables for CloseReader.ql and CloseWriter.ql
|
2021-06-02 15:00:59 +02:00 |
|
Chris Smowton
|
7382b349c2
|
Merge pull request #5987 from aschackmull/java/query-metadata
Java: Add missing metadata.
|
2021-06-02 12:40:34 +01:00 |
|
Anders Schack-Mulligen
|
8a20395857
|
Merge pull request #5940 from pwntester/main
Remove XSS sink for Java
|
2021-06-02 12:30:20 +02:00 |
|
Anders Schack-Mulligen
|
c0e562de21
|
Merge pull request #5979 from hvitved/java/shared-external-summaries
Java: Move some CSV flow summary code into shared library
|
2021-06-02 12:28:45 +02:00 |
|
Alvaro Muñoz
|
a3a215afea
|
HTTP -> Http
|
2021-06-02 11:12:39 +02:00 |
|
Anders Schack-Mulligen
|
5e96e28792
|
Java: Add missing metadata.
|
2021-06-02 10:24:46 +02:00 |
|
Tamás Vajk
|
348fab82fd
|
Merge pull request #5970 from tamasvajk/feature/csv-coverage-impr
Improve error reporting in CI check for CSV coverage report comparison
|
2021-06-02 09:03:35 +02:00 |
|
Alvaro Muñoz
|
9aba92397d
|
lift XssSink check to InformationLeakSink
|
2021-06-01 17:16:41 +02:00 |
|
Jonas Jensen
|
7282ad90d0
|
Merge pull request #5854 from dbartol/dbartol/smart-pointers/side-effects
C++: Generate side effect instructions for smart pointer indirections
|
2021-06-01 16:57:05 +02:00 |
|
Dave Bartolomeo
|
da14647e5a
|
Merge pull request #5522 from github/rdmarsh2/cpp/ssa-reuse
C++: reuse unaliased SSA results when computing aliased SSA
|
2021-06-01 10:17:54 -04:00 |
|
Alvaro Muñoz
|
970b4e7d6a
|
update java library coverage documentation
|
2021-06-01 14:54:31 +02:00 |
|
Alvaro Muñoz
|
0fb692400c
|
fix failing test
|
2021-06-01 13:57:13 +02:00 |
|
Tom Hvitved
|
ecf7f24cde
|
C#: Sync latest FlowSummaryImpl.qll changes
|
2021-06-01 13:22:14 +02:00 |
|
Tom Hvitved
|
14f9a5c280
|
Java: Move some CSV flow summary code into shared library
|
2021-06-01 13:22:14 +02:00 |
|
Henning Makholm
|
534e771309
|
Merge pull request #5934 from github/hmakholm/pr/monotonic-agg
QL language reference: add monotonic aggregate example
|
2021-06-01 13:10:50 +02:00 |
|
Tamás Vajk
|
e7a349be2d
|
Merge pull request #5978 from tamasvajk/fix/change-note-workflow
Fix change note workflow to handle paginated results
|
2021-06-01 12:50:32 +02:00 |
|
Anders Schack-Mulligen
|
ce509eb7e1
|
Merge pull request #5927 from aschackmull/dataflow/flowthrough-dispatch-perf
Dataflow: Improve performance in flow-through pruning
|
2021-06-01 11:46:22 +02:00 |
|
Anders Schack-Mulligen
|
a4661e1aca
|
Merge pull request #5704 from edvraa/regexj
Java: Regex injection
|
2021-06-01 11:45:59 +02:00 |
|
Erik Krogh Kristensen
|
0b225419a3
|
Merge pull request #5977 from security-prince/patch-1
Adding reference link for csurf
|
2021-06-01 11:07:36 +02:00 |
|
Tom Hvitved
|
5771b0420f
|
Merge pull request #5936 from hvitved/csharp/cfg/perf-tweaks
C#: Various CFG related performance tweaks
|
2021-06-01 11:06:01 +02:00 |
|
Anders Schack-Mulligen
|
5d21c64247
|
Dataflow: qldoc fix.
|
2021-06-01 10:49:47 +02:00 |
|
Tamas Vajk
|
bc02f28ddd
|
Fix change note workflow to handle paginated results
|
2021-06-01 10:44:44 +02:00 |
|
Jonas Jensen
|
2261085cfe
|
Merge pull request #5973 from MathiasVP/more-uncontrolled-arith-improvements
C++: More `cpp/uncontrolled-arithmetic` improvements
|
2021-06-01 10:44:29 +02:00 |
|
Anders Schack-Mulligen
|
4f9a6c151b
|
Dataflow: Code review fixes.
|
2021-06-01 10:29:17 +02:00 |
|
Mathias Vorreiter Pedersen
|
8765c33847
|
C++: Also check the number of parameters to keep the tests happy.
|
2021-06-01 10:17:57 +02:00 |
|
Ishaq Mohammed
|
96150a455d
|
Update javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.qhelp
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
|
2021-06-01 13:47:43 +05:30 |
|
Ishaq Mohammed
|
975355de4a
|
Adding reference link for csurf
|
2021-06-01 13:41:25 +05:30 |
|
Mathias Vorreiter Pedersen
|
615c805b2c
|
C++: Only use std::rand as a source of randomness.
|
2021-06-01 09:28:06 +02:00 |
|
Henning Makholm
|
70b9739d2d
|
QL language reference: add monotonic aggregate example
It's easier to understand what's going on if we start with a
(contrived) example that _doesn't_ involve recursion.
|
2021-05-31 21:23:08 +02:00 |
|
Mathias Vorreiter Pedersen
|
41c93d92d7
|
C++: Remove FPs from right shifts and explicitly bounded random functions.
|
2021-05-31 15:40:02 +02:00 |
|
Mathias Vorreiter Pedersen
|
10755ece88
|
C++: Add testcase with bounded randomness source.
|
2021-05-31 15:33:39 +02:00 |
|
Anders Schack-Mulligen
|
683f853fa5
|
Dataflow: Fix another bad join order.
|
2021-05-31 15:14:13 +02:00 |
|
Erik Krogh Kristensen
|
85bd8f1020
|
add change-note for TypeScript 4.3
|
2021-05-31 13:08:52 +02:00 |
|