codeql

mirror of https://github.com/github/codeql.git synced 2026-02-27 20:33:42 +01:00

Author	SHA1	Message	Date
Jonathan Leitschuh	ad99aa2d76	Fix typo in test output	2021-02-22 13:26:51 -05:00
Owen Mansel-Chan	110f4072fd	Merge pull request #5222 from owen-mc/update-go-supported-frameworks Update supported go frameworks	2021-02-22 15:49:54 +00:00
Owen Mansel-Chan	31d6dbb9da	Update supported go frameworks	2021-02-22 15:38:56 +00:00
Owen Mansel-Chan	ff317e63de	Remove `http://` in package path	2021-02-22 15:11:59 +00:00
Owen Mansel-Chan	f32b4883bf	Make use of URLs in comments more consistent	2021-02-22 15:08:20 +00:00
Owen Mansel-Chan	370afe3383	Fix incorrect calls to `package()`	2021-02-22 15:08:20 +00:00
Owen Mansel-Chan	083512acef	Add extra module path for xmlpath package	2021-02-22 15:08:20 +00:00
Rasmus Wriedt Larsen	e160c855ad	Merge pull request #5233 from yoff/python-for-tuple-iteration Python: `for`-iteration of tuples	2021-02-22 15:28:13 +01:00
luchua-bc	40df01d2cd	Update qldoc and method name	2021-02-22 14:15:41 +00:00
Rasmus Wriedt Larsen	127e778970	Merge pull request #5215 from github/RasmusWL/fix-acronym-style Style Guide: Fix two-letter acronym	2021-02-22 15:05:26 +01:00
Rasmus Wriedt Larsen	5249b54a9b	Python: Highlight missing flow from default value in functions Although it is becoming non-trivial to get an overview of what tests we have and don't have, I didn't find any that highlighted this one I used all 3 variants of parameters, just to be sure :)	2021-02-22 14:52:51 +01:00
Owen Mansel-Chan	2bcf73c9fb	Add new module path for beego Beego moved from astaxie/beego to beego/beego on 13 Dec 2020. The old location still works but is not being updated.	2021-02-22 11:38:13 +00:00
CodeQL CI	0a0bdcca4d	Merge pull request #5204 from erik-krogh/inGuard Approved by asgerf	2021-02-22 02:52:11 -08:00
Asger F	b8e1987cad	Update javascript/ql/test/query-tests/DOM/HTML/DuplicateAttributes.html Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2021-02-22 10:08:56 +00:00
Taus Brock-Nannestad	439f9f1d90	Actions: More cleanup Removes the checkout action, as this is no longer needed, and folds the `grep` into `jq`.	2021-02-22 11:05:54 +01:00
Asger Feldthaus	e964771e9c	JS: Add test	2021-02-22 09:47:21 +00:00
Mathias Vorreiter Pedersen	f908d2f1de	C++: Remove `hasTaintFlow` from poll and select functions.	2021-02-22 08:54:43 +01:00
Taus Brock-Nannestad	4680b25f23	Actions: Remove dependence on external actions	2021-02-21 15:14:33 +01:00
Rasmus Lerchedahl Petersen	d23a8ad016	Python: elide test output	2021-02-21 13:12:54 +01:00
Rasmus Lerchedahl Petersen	46faba69ff	Python: Fix for-iteration of tuples	2021-02-21 12:41:16 +01:00
Rasmus Lerchedahl Petersen	0aecf33fe6	Python: test iteration through overflow parameters These are in a tuple, so the for-step does not fire	2021-02-21 12:33:04 +01:00
Francis Alexander	45bdb22db8	Switch from sanitizer to tainttracking, formatting and qldoc changes	2021-02-21 16:45:48 +05:30
Artem Smotrakov	43a07bb13a	Better sink in SandboxedJexlFlowConfig	2021-02-20 11:17:51 +01:00
Sauyon Lee	9e45b08178	Merge pull request #484 from sauyon/change-note-action Actions: Add change note checker	2021-02-19 20:12:59 -08:00
luchua-bc	dc799019d0	Add query for Struts and Spring actions	2021-02-20 03:36:21 +00:00
luchua-bc	3d9ac0d094	Add query for enterprise beans	2021-02-20 02:00:42 +00:00
Asger Feldthaus	e9c0f170a1	JS: Restrict names of extracted HTML attributes	2021-02-19 23:28:28 +00:00
Erik Krogh Kristensen	e6009ea8e0	cache getType	2021-02-19 21:25:48 +01:00
Erik Krogh Kristensen	772e78e386	change TypeInference related join-order in module-import predicates	2021-02-19 21:25:44 +01:00
Mathias Vorreiter Pedersen	576a872316	C++: Address review comments.	2021-02-19 20:24:02 +01:00
Sauyon Lee	17cd04c6b2	Avoid attempting to build i386 darwin binaries	2021-02-19 10:20:29 -08:00
Sauyon Lee	65e6da9b0e	Actions: Add change note checker Co-authored-by: Taus <tausbn@github.com>	2021-02-19 09:40:50 -08:00
Mathias Vorreiter Pedersen	f65843a273	Merge pull request #5221 from geoffw0/cwe676 C++: Add CWE-676 tag.	2021-02-19 17:51:54 +01:00
Sauyon Lee	23103fd8e0	Add support for 'path/filepath.WalkDir'	2021-02-19 07:59:13 -08:00
Sauyon Lee	82849fe91a	Explicitly set GO111MODULE=off	2021-02-19 07:59:13 -08:00
Sauyon Lee	41cacd579f	Model moved io/ioutil functions	2021-02-19 07:59:12 -08:00
Taus Brock-Nannestad	ca48e57e30	Actions: Peg external actions to specific SHAs	2021-02-19 16:50:08 +01:00
Asger Feldthaus	5264d24f34	JS: Model vue-router	2021-02-19 15:37:24 +00:00
Tamas Vajk	e1b90912de	Limit C# codeql analysis to the csharp folder	2021-02-19 16:13:22 +01:00
Mathias Vorreiter Pedersen	299f371715	C++: Accept more test changes.	2021-02-19 16:01:31 +01:00
Geoffrey White	79338052ad	C++: Add CWE-676 tag.	2021-02-19 14:55:31 +00:00
Rasmus Wriedt Larsen	40c592ab85	Python: Introduce DataFlowOnlyInternalUse to avoid re-evaluation	2021-02-19 15:29:23 +01:00
Sauyon Lee	4056ac4ab5	os.FileInfo -> io/fs.FileInfo	2021-02-19 06:25:52 -08:00
Sauyon Lee	adc2f08b76	Add tests for go 1.16 libraries	2021-02-19 06:25:51 -08:00
Sauyon Lee	a327fb7e97	Add support for go 1.16 frameworks	2021-02-19 06:25:51 -08:00
Owen Mansel-Chan	fbbe4692d8	Re-add call to defaultTaintSanitizerGuard()	2021-02-19 14:16:19 +00:00
Mathias Vorreiter Pedersen	4f23c3546f	C++: Don't generate WriteSideEffect instructions for const parameter indirections.	2021-02-19 15:15:51 +01:00
Owen Mansel-Chan	1c1ebf817f	Rename default taint sanitizer predicate `defaultTaintSanitizer()` is referenced in one of the files that gets synced, so it is better for us to not change its name. We should also keep `defaultTaintSanitizerGuard()` consistent.	2021-02-19 14:14:12 +00:00
Rasmus Wriedt Larsen	d084261a79	Python: Ignore weak key-sizes from test-code in weak-crypto-key From looking at old results on LGTM.com, this was quite common (and those alerts doesn't really provide value).	2021-02-19 15:04:41 +01:00
Rasmus Wriedt Larsen	bfc8ead667	Python: Add example of test-code with weak crypto key	2021-02-19 15:04:14 +01:00

... 375 376 377 378 379 ...

41418 Commits