github-actions[bot]
171fe98084
JS: Bump ML model pack dependency of ML-powered model building and query packs
2022-05-24 10:34:26 +00:00
github-actions[bot]
e519304268
JS: Bump minor version of ML-powered model pack
2022-05-24 10:33:45 +00:00
Chris Smowton
71017a3b44
Alphabetically sort workflow codeowners
2022-05-24 11:20:51 +01:00
Erik Krogh Kristensen
2423c77b0c
Merge pull request #9281 from erik-krogh/jsQL
...
JS: various QL-for-QL fixes
2022-05-24 12:12:31 +02:00
Asger F
87cbf7b216
JS: Update ATM code
2022-05-24 11:57:30 +02:00
Asger F
631527fe49
JS: Rename Node.{getASource -> asSource, getASink -> asSink}
2022-05-24 11:57:30 +02:00
Asger F
bc601261ed
JS: Use 'ql' language for markdown snippets
2022-05-24 11:57:30 +02:00
Asger F
f80f8b6630
JS: Update a comment mentioning getARhs
2022-05-24 11:57:30 +02:00
Asger F
18dc39484d
Update javascript/ql/lib/semmle/javascript/ApiGraphs.qll
...
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com >
2022-05-24 11:57:30 +02:00
Asger Feldthaus
1e96b1e559
JS: Fix typo
2022-05-24 11:57:30 +02:00
Asger Feldthaus
777d344dde
JS: Fix up qldoc for getAValueReachingSink
2022-05-24 11:57:30 +02:00
Asger Feldthaus
e2858b7b64
JS: Update ATM code
2022-05-24 11:57:30 +02:00
Asger Feldthaus
8da96ed403
JS: Update doc comment
2022-05-24 11:57:30 +02:00
Asger F
1ae97d9d54
Apply suggestions from code review
...
Co-authored-by: Nick Rolfe <nickrolfe@github.com >
2022-05-24 11:57:30 +02:00
Asger Feldthaus
9fad4b883b
JS: Autoformat
2022-05-24 11:57:30 +02:00
Asger Feldthaus
76ba78294f
JS: Make API::EntryPoint overrides optional
2022-05-24 11:57:30 +02:00
Asger Feldthaus
ce9c3b3eb5
JS: Also rename predicates on API::EntryPoint
2022-05-24 11:57:30 +02:00
Asger Feldthaus
19a5db9f89
JS: Rename getARhs -> getASink
2022-05-24 11:57:30 +02:00
Asger Feldthaus
4c6192670e
JS: Rename getAnImmediateUse -> getASource
2022-05-24 11:57:30 +02:00
Asger F
a7b73f44b2
Update javascript/ql/lib/semmle/javascript/ApiGraphs.qll
...
Co-authored-by: Calum Grant <42069085+calumgrant@users.noreply.github.com >
2022-05-24 11:57:30 +02:00
Asger F
73baa49c5d
Update javascript/ql/lib/semmle/javascript/ApiGraphs.qll
...
Co-authored-by: yoff <lerchedahl@gmail.com >
2022-05-24 11:57:30 +02:00
Asger Feldthaus
82c35e6f65
Mention that the interaction and be with any external codebase
2022-05-24 11:57:29 +02:00
Asger Feldthaus
6a12864dab
JS: Document how API graphs should be interpreted
2022-05-24 11:57:29 +02:00
Ian Lynagh
07e450d513
Merge pull request #9269 from igfoo/igfoo/cfg
...
Kotlin: Fix CFG
2022-05-24 10:53:00 +01:00
Alex Denisov
fa09078976
Swift: do not keep trap files for tests
2022-05-24 11:48:45 +02:00
Alex Denisov
8e8da66325
Swift: share .gitignore across all tests
2022-05-24 11:48:06 +02:00
Chris Smowton
fd60ab420d
Merge pull request #9278 from github/dependabot/github_actions/actions/setup-go-3
...
Bump actions/setup-go from 1 to 3
2022-05-24 10:24:31 +01:00
Mathias Vorreiter Pedersen
3e1a6a777e
Swift: Accept test changes.
2022-05-24 10:22:06 +01:00
Mathias Vorreiter Pedersen
dda60abfef
Swift: Add CFG for a couple more expressions.
2022-05-24 10:21:04 +01:00
Erik Krogh Kristensen
b2d3a7dca5
add change-note for the public renamed predicate
2022-05-24 11:20:08 +02:00
Alex Denisov
528f6f73c5
Swift: add integration tests
2022-05-24 11:12:35 +02:00
Mathias Vorreiter Pedersen
7752a38ee5
Merge pull request #9274 from MathiasVP/swift-extract-semantics-and-accessor-kinds
...
Swift: Extract semantics and accessor kinds
2022-05-24 10:12:30 +01:00
Chris Smowton
bd06a071c4
Change owner of Go-related workflows
2022-05-24 10:11:36 +01:00
Erik Krogh Kristensen
a404a8c61a
use more set literals instead of big disjunctions
2022-05-24 11:09:10 +02:00
Erik Krogh Kristensen
b48806968c
delete redundant import
2022-05-24 11:02:41 +02:00
Erik Krogh Kristensen
395ec106b9
remove unused field
2022-05-24 11:02:18 +02:00
Mathias Vorreiter Pedersen
21641eb1cd
Swift: Make the 'semantics.ql' test plantform-independent.
2022-05-24 10:00:14 +01:00
Erik Krogh Kristensen
d58fe8e193
add explicit this
2022-05-24 10:59:13 +02:00
Erik Krogh Kristensen
d1ad08ecb5
fix misspellings in predicate names
2022-05-24 10:57:13 +02:00
Harry Maclean
334c43a2b7
Ruby: Add tests for ActiveSupport modelling
2022-05-24 09:35:26 +01:00
Harry Maclean
deff24e8e0
Fix singleton set literal
2022-05-24 09:35:26 +01:00
Harry Maclean
1fd54ed8c3
Ruby: Recognised ActiveSupport::TaggedLogging as a logger
2022-05-24 09:35:26 +01:00
Harry Maclean
dc4ddf6899
Ruby: Recognise ActiveSupport::Logger as a logger
2022-05-24 09:35:26 +01:00
Harry Maclean
14d2ff6528
Ruby: Model ActiveSupport extensions to Enumerable
2022-05-24 09:35:26 +01:00
Harry Maclean
ad2eaf0835
Ruby: Flow for ActiveSupport String extensions
...
Add taint flow summaries for ActiveSupport String extensions which
transform the string in various ways, for example `camelcase` and
`underscore`.
DCA suggests this increases the sensitivity of rb/code-injection,
catching cases such as
params[:foo].camelcase.constantize
2022-05-24 09:35:26 +01:00
Tom Hvitved
6345816acf
Rework ContentDataFlow implementation
2022-05-24 10:34:06 +02:00
Mathias Vorreiter Pedersen
be453142b8
Merge pull request #8730 from geoffw0/reachesperf
...
C++: Better join order for reachesWithoutAssignment.
2022-05-24 09:22:21 +01:00
Jeroen Ketema
05f09919b0
Merge pull request #9276 from jketema/upgrade-script-script
...
Support Go and Swift in the `prepare-db-upgrade` script
2022-05-24 10:09:31 +02:00
Tamas Vajk
5a54218ac7
Kotlin: Fix missing kotlin to java property mapping
2022-05-24 10:03:17 +02:00
Tamas Vajk
19400249a9
Kotlin: Add test for missing kotlin to java property mapping
2022-05-24 10:02:32 +02:00
