Jorge
|
bd4b189373
|
Polish documentation consistency
Co-authored-by: yoff <lerchedahl@gmail.com>
|
2021-04-29 16:26:28 +02:00 |
|
Chris Smowton
|
ad9ea40954
|
Merge pull request #5597 from intrigus-lgtm/java/jwt-insecure-parse
[Java] JWT without signature check.
|
2021-04-29 14:41:11 +01:00 |
|
Geoffrey White
|
c4069362ce
|
Merge pull request #5804 from MathiasVP/improve-detect-and-handle-memory-allocation-errors
C++: Improve qhelp and tests for cpp/detect-and-handle-memory-allocation-errors
|
2021-04-29 14:34:41 +01:00 |
|
haby0
|
e813257431
|
use hardCode
|
2021-04-29 21:23:52 +08:00 |
|
Anders Schack-Mulligen
|
404a6c1506
|
Merge pull request #5805 from smowton/smowton/admin/spring-setter-method-docs
Document `SpringProperty::getSetterMethod`.
|
2021-04-29 15:10:58 +02:00 |
|
Anders Schack-Mulligen
|
c78285e557
|
Merge pull request #5784 from Marcono1234/marcono1234/switch-expr-stmt-parent
Java: Add StmtParent as superclass of SwitchExpr
|
2021-04-29 15:02:05 +02:00 |
|
Nick Rolfe
|
59c83b7b8f
|
Add clarifying comment
|
2021-04-29 14:00:27 +01:00 |
|
Nick Rolfe
|
9540125771
|
Remove fromGeneratedInclSynth predicate
|
2021-04-29 13:58:16 +01:00 |
|
Tom Hvitved
|
c3890a9435
|
C#: Adjust CFG for instance constructors
|
2021-04-29 14:05:42 +02:00 |
|
Tom Hvitved
|
ee62522c51
|
C#: Extract implicit constructor initializer calls
|
2021-04-29 14:05:42 +02:00 |
|
Mathias Vorreiter Pedersen
|
c67ab8f1f0
|
C++: Respond to review comments.
|
2021-04-29 14:01:04 +02:00 |
|
Chris Smowton
|
2787c2f874
|
Document SpringProperty::getSetterMethod.
|
2021-04-29 12:28:26 +01:00 |
|
Arthur Baars
|
300a54384f
|
Add TypeTracker to identical-files.json
|
2021-04-29 12:20:14 +02:00 |
|
Arthur Baars
|
f07c58ee07
|
Update codeql submodule
|
2021-04-29 12:13:11 +02:00 |
|
Mathias Vorreiter Pedersen
|
e81b40978e
|
C++: Improve the description tag.
|
2021-04-29 12:10:29 +02:00 |
|
Nick Rolfe
|
96ddd55191
|
Apply suggestions from code review
Co-authored-by: Arthur Baars <aibaars@github.com>
|
2021-04-29 12:07:32 +02:00 |
|
Nick Rolfe
|
c1c437f020
|
Minimal implementation of shared type-tracking library
|
2021-04-29 12:07:32 +02:00 |
|
Arthur Baars
|
6693c5bdd0
|
Merge pull request #5395 from tausbn/python-share-typetracker
Python: Make the type tracking implementation shareable
|
2021-04-29 12:06:12 +02:00 |
|
Mathias Vorreiter Pedersen
|
9e39b08325
|
C++: Improve the qhelp for cpp/detect-and-handle-memory-allocation-errors.
|
2021-04-29 11:58:36 +02:00 |
|
Mathias Vorreiter Pedersen
|
44de127bff
|
C++: Extend and improve the testcases for cpp/detect-and-handle-memory-allocation-errors.
|
2021-04-29 11:57:43 +02:00 |
|
Rasmus Wriedt Larsen
|
af0723c185
|
Merge pull request #5656 from asgerf/js/files-diagnostics
JS: Add file diagnostics queries
|
2021-04-29 11:53:11 +02:00 |
|
CodeQL CI
|
84d43946de
|
Merge pull request #5755 from RasmusWL/non-alert-data-part1
Approved by tausbn
|
2021-04-29 02:51:34 -07:00 |
|
jorgectf
|
213d011a8c
|
Edit code example in CompiledRegex
Signed-off-by: jorgectf <jorgectf@protonmail.com>
|
2021-04-29 11:10:03 +02:00 |
|
Mathias Vorreiter Pedersen
|
39c7816ede
|
C++: Dont allow magic in getUnspecifiedType.
|
2021-04-29 10:09:46 +02:00 |
|
Tom Hvitved
|
0cb826a511
|
Merge pull request #5797 from hvitved/cpp/has-multi-scope-node-noinline
C++: Do not inline `Dominance::hasMultiScopeNode`
|
2021-04-29 09:51:05 +02:00 |
|
CodeQL CI
|
3240536d0e
|
Merge pull request #5798 from erik-krogh/trackLoc
Approved by esbena
|
2021-04-29 00:45:21 -07:00 |
|
Aditya Sharad
|
4d2db08934
|
Merge pull request #5801 from github/aeisenberg/fix-codescanning
Actions: Fix code scanning workflow
|
2021-04-28 15:21:43 -07:00 |
|
Andrew Eisenberg
|
0376a13dd8
|
Actions: Fix code scanning workflow
|
2021-04-28 15:05:13 -07:00 |
|
thank_you
|
d85b1a2d5f
|
Replace recursive getAMember*() method
|
2021-04-28 16:54:49 -04:00 |
|
intrigus
|
a8865e2fa2
|
Java: Cleanup jwt stubs.
|
2021-04-28 20:46:09 +02:00 |
|
Erik Krogh Kristensen
|
dfd63e5d5a
|
track window object to where .location is read
|
2021-04-28 18:52:00 +02:00 |
|
Shati Patel
|
d288b9216e
|
Merge pull request #5790 from github/cklin-find-the-thief-conditions-sync
Fix inconsistency in the find-the-thief exercise
|
2021-04-28 17:16:58 +01:00 |
|
CodeQL CI
|
9c5ad44e27
|
Merge pull request #5782 from erik-krogh/domFP
Approved by esbena
|
2021-04-28 09:12:00 -07:00 |
|
Nick Rolfe
|
f3852f9b56
|
Create synthetic self nodes for calls without explicit receivers
|
2021-04-28 16:43:40 +01:00 |
|
Alex Ford
|
0a6dc6f150
|
update WeakFilePermissions.expected
|
2021-04-28 16:31:07 +01:00 |
|
Rasmus Lerchedahl Petersen
|
16bde2729d
|
Python: add flow from methods to calls
|
2021-04-28 17:02:24 +02:00 |
|
Alex Ford
|
7a72d8ec2f
|
add qhelp for rb/overly-permissive-file
|
2021-04-28 15:51:08 +01:00 |
|
Tom Hvitved
|
058925cca9
|
C++: Do not inline Dominance::hasMultiScopeNode
|
2021-04-28 16:50:08 +02:00 |
|
Alex Ford
|
e3d393b7c1
|
use full dataflow for permission args in rb/overly-permissive-file
|
2021-04-28 15:40:58 +01:00 |
|
yoff
|
73521e22de
|
Merge pull request #5791 from tausbn/python-limit-absolute-imports
Python: Limit absolute imports
|
2021-04-28 16:22:08 +02:00 |
|
Tom Hvitved
|
c35a2b959a
|
Python: Update data-flow caching
|
2021-04-28 14:49:05 +02:00 |
|
Tom Hvitved
|
e8347c2c20
|
C++: Update data-flow caching
|
2021-04-28 14:49:05 +02:00 |
|
Erik Krogh Kristensen
|
902a4368a1
|
assume that all pipe elements that return something, return outputs
|
2021-04-28 12:36:07 +02:00 |
|
Erik Krogh Kristensen
|
2f14a6218a
|
generalize RxJS pipes
|
2021-04-28 12:26:02 +02:00 |
|
Rasmus Wriedt Larsen
|
baa926359e
|
Python: Minor fix to Django RawSQL QLDoc
|
2021-04-28 12:18:27 +02:00 |
|
Rasmus Wriedt Larsen
|
8b9c5f8228
|
Python/JS: Remove "Only added to aid with internal rewrite"
|
2021-04-28 11:50:06 +02:00 |
|
Erik Krogh Kristensen
|
d5450f1df6
|
use isWildcardLike in MetacharEscapeSanitizer
|
2021-04-28 11:46:50 +02:00 |
|
Erik Krogh Kristensen
|
d07c71c99d
|
unlimited repetition of a wildcard is also a wildcard
|
2021-04-28 11:46:35 +02:00 |
|
Erik Krogh Kristensen
|
160fa148f1
|
move InfiniteRepetitionQuantifier to Regexp.qll
|
2021-04-28 11:39:28 +02:00 |
|
Erik Krogh Kristensen
|
e60628d463
|
add global replacements using inverted char classes as a sanitizer for DOM based XSS
|
2021-04-28 11:29:30 +02:00 |
|