codeql

mirror of https://github.com/github/codeql.git synced 2026-02-01 15:52:59 +01:00

Author	SHA1	Message	Date
Ahmed Farid	0fac4f195d	Update Concepts.qll	2022-03-28 00:47:27 +00:00
Ahmed Farid	413f1945ce	Update Zip.qll	2022-03-28 00:44:56 +00:00
Marcono1234	f19ade3446	Java: Add `StmtExpr`	2022-03-27 01:42:34 +01:00
4B5F5F4B	2d7b9c0c4f	modify a little cute typo	2022-03-26 22:55:27 +08:00
4B5F5F4B	7a091f808b	Create NoCheckBeforeUnsafePutUser.ql	2022-03-26 22:45:03 +08:00
4B5F5F4B	64863d493b	Delete cve-2017-5123.ql	2022-03-26 22:42:59 +08:00
Edoardo Pirovano	8faabb837a	Merge pull request #8561 from erik-krogh/latestTools QL: use latest tools in codeql-action/init	2022-03-25 15:12:58 -04:00
Erik Krogh Kristensen	21192b7593	use latest tools in codeql-action/init	2022-03-25 19:26:10 +01:00
Andrew Eisenberg	5fb84a774b	Merge pull request #8553 from github/aeisenberg/cpp-suites Suites: Remove self-referential `from` directives	2022-03-25 09:15:53 -07:00
Michael Nebel	79f3da8af1	Merge pull request #8506 from michaelnebel/java/generalize-generate-flow-model Java/C#: Generalize script for generating flow models.	2022-03-25 16:20:53 +01:00
Geoffrey White	2014599f88	Merge pull request #8318 from geoffw0/cwe497b C++: New query cpp/potential-system-data-exposure	2022-03-25 14:55:00 +00:00
Taus	b75ac4e827	Merge pull request #8540 from tausbn/python-add-points-to-call-graph-meta-query Python: Add call graph meta-query	2022-03-25 15:36:33 +01:00
Erik Krogh Kristensen	9e71d9bada	Merge pull request #8556 from erik-krogh/bumpAction QL: update codeql-action version in QL-for-QL	2022-03-25 14:46:31 +01:00
Erik Krogh Kristensen	68c07fe1c0	pin the commit of `codeql-action` in the remaining steps/workflows	2022-03-25 14:35:44 +01:00
Erik Krogh Kristensen	8f377f4101	pin the commit Co-authored-by: Esben Sparre Andreasen <esbena@github.com>	2022-03-25 14:19:29 +01:00
Erik Krogh Kristensen	cf57eb825c	update codeql-action version in QL-for-QL	2022-03-25 13:37:27 +01:00
Taus	d56caa2398	Merge pull request #8547 from RasmusWL/regexstring-imports Python: Import framework-modeling in `regex.qll`	2022-03-25 13:26:04 +01:00
Geoffrey White	9f3fd57534	Merge branch 'main' into cwe497b	2022-03-25 11:57:30 +00:00
Mathias Vorreiter Pedersen	c115c68247	Merge pull request #8542 from MathiasVP/public-iterated-dominance-frontier C++: Use `iterated (post)dominance frontier` algorithm in `IRBlock`	2022-03-25 11:51:15 +00:00
Jeroen Ketema	b91914bd89	Merge pull request #8534 from jketema/bitwise-ctor-field-init C++: Handle bitwise copies in copy constructors	2022-03-25 12:47:57 +01:00
Geoffrey White	e377eebdbc	C++: More 'adversary' -> 'malicious user' and related doc changes.	2022-03-25 11:34:37 +00:00
Rasmus Lerchedahl Petersen	1e9840d779	python: broaden local protection concept	2022-03-25 12:28:33 +01:00
Geoffrey White	11074b6d77	Update cpp/ql/src/Security/CWE/CWE-497/PotentiallyExposedSystemData.ql Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>	2022-03-25 11:08:07 +00:00
Nick Rolfe	c7ba7fd389	Ruby: add changenotes for regexp constant value changes	2022-03-25 11:08:01 +00:00
Geoffrey White	6b6ee61d3f	Apply suggestions from code review Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>	2022-03-25 11:06:46 +00:00
Rasmus Lerchedahl Petersen	179f77b123	python: clearer comment	2022-03-25 11:51:24 +01:00
Rasmus Lerchedahl Petersen	778a88f32c	python: update qhelp removing custom middleware stack will _not_ enable CSRF protection	2022-03-25 11:49:06 +01:00
Jeroen Ketema	94f014d948	C++: Update tests for handling of bitwise copies in copy constructors	2022-03-25 11:43:01 +01:00
Jeroen Ketema	b18b86b2e2	C++: Remove check for value-less literals in constructors	2022-03-25 11:43:01 +01:00
yoff	85f1d92a0d	Apply suggestions from code review Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2022-03-25 11:42:32 +01:00
Chris Smowton	f0168d00d1	Merge pull request #8529 from github/smowton/admin/commons-lang3-test-typo Java: Fix harmless search-replace mistake	2022-03-25 10:36:00 +00:00
Asger Feldthaus	8e2ffc2508	Ruby: add the inline test expectations	2022-03-25 11:31:22 +01:00
Asger Feldthaus	5703f63afa	Ruby: use InlineFlowTest in Summaries.ql test	2022-03-25 11:18:52 +01:00
Erik Krogh Kristensen	cf94c93b1a	Merge pull request #8481 from erik-krogh/schemeChain JS: recognize string replacement chains as scheme checks in js/incomplete-url-scheme-check	2022-03-25 11:13:10 +01:00
Nick Rolfe	034fce0682	Ruby: show constant value type in tests	2022-03-25 08:25:07 +00:00
Andrew Eisenberg	99f14af56a	Suites: Remove self-referential `from` directives Fixes https://github.com/github/codeql/issues/8412 See https://github.com/github/codeql/issues/8412#issuecomment-1078281668 for more detail.	2022-03-24 14:19:20 -07:00
Nick Rolfe	0613fda57f	Ruby: separate constant propagation of regexps from strings	2022-03-24 17:46:58 +00:00
Erik Krogh Kristensen	47a9376e81	fix bad join in js/unreachable-method-overloads	2022-03-24 16:09:10 +01:00
Tom Hvitved	e12b6df118	Merge pull request #8484 from hvitved/ruby/constant-value-rework Ruby: Rework `getConstantValue` implementation	2022-03-24 14:32:31 +01:00
Rasmus Wriedt Larsen	d51aaf2f91	Python: Import framework-modeling in `regex.qll`	2022-03-24 14:28:44 +01:00
Mathias Vorreiter Pedersen	80630972b1	Merge branch 'main' into public-iterated-dominance-frontier	2022-03-24 12:50:29 +00:00
Rasmus Wriedt Larsen	98c0d73ffe	Merge pull request #8524 from RasmusWL/ruby-update-ssrf-concept Ruby: Minor change of SSRF concept	2022-03-24 13:48:06 +01:00
Stephan Brandauer	a28e9c5b6e	documentation for handlebars.js flow step	2022-03-24 13:08:52 +01:00
Rasmus Lerchedahl Petersen	ce017394e6	python: fix change note (hepofully)	2022-03-24 12:01:46 +01:00
Stephan Brandauer	0bd9e9f298	add handlebars taint step	2022-03-24 11:46:16 +01:00
Rasmus Lerchedahl Petersen	aecf4e48f8	python: add change note	2022-03-24 11:43:07 +01:00
Chris Smowton	005a020f04	Merge pull request #8508 from igfoo/igfoo/error_elements Java: Add ErrorExpr, ErrorStmt	2022-03-24 10:39:14 +00:00
Arthur Baars	15801fcc85	Apply suggestions from code review Co-authored-by: Nick Rolfe <nickrolfe@github.com>	2022-03-24 11:37:03 +01:00
Arthur Baars	eef0da09bb	Ruby: move RegExpTreeView.qll out of 'internal'	2022-03-24 11:37:03 +01:00
Arthur Baars	1a9aaf4543	Apply suggestions from code review Co-authored-by: yoff <lerchedahl@gmail.com>	2022-03-24 11:37:03 +01:00

... 76 77 78 79 80 ...

40697 Commits