hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-22 18:03:39 +01:00
Code Issues Packages Projects Releases Wiki Activity
41,418 Commits 1,693 Branches 161 Tags
codeql-cli/v2.10.2
Commit Graph

41418 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
semmle-qlci
f81fc77e9e Merge pull request #3782 from erik-krogh/promiseSteps 
Approved by asgerf
 2020-06-26 10:11:10 +01:00
Mathias Vorreiter Pedersen
63752dddef C++/C#: Sync identical files 2020-06-26 09:08:44 +02:00
Mathias Vorreiter Pedersen
3af679e83d C++: Put unique around getEnclosingFunction, and specialize function argument, to improve join order. 2020-06-26 09:08:35 +02:00
semmle-qlci
92cc59b47b Merge pull request #3800 from esbena/js/npmlog 
Approved by erik-krogh
 2020-06-26 07:54:08 +01:00
Max Schaefer
ba82a76948 Merge pull request #229 from max-schaefer/getAPrimaryQlClass 
Rename `describeQlClass` to `getAPrimaryQlClass`.
 2020-06-26 07:51:04 +01:00
Max Schaefer
9904b9e926 Allow flow through more URL fields. 2020-06-26 07:50:08 +01:00
Max Schaefer
3bf934d64b Add change note. 2020-06-25 22:23:49 +01:00
Dave Bartolomeo
7e3f2dbe4c C++: Improve QLDoc for getElementSize() 2020-06-25 17:04:32 -04:00
Erik Krogh Kristensen
7cb6516bc4 make internal predicates within DominatingPaths smaller. 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
1ec2c549d2 autoformat 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
8b3ca73c1c autoformat 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
081b03c8f4 add tests that access-path domination can happen within a statement 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
47d52870f2 Use a ControlFlowNode based API to determine domination 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
926f2c139f require that a write must dominate the enclosing stmt of a read 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
55565a51df don't use getEnclosingStmt 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
34d6a4dcf8 use Rhs of a prop-write 
Co-authored-by: Asger F <asgerf@github.com>
 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
cc2e61531e update expected output 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
f7c42ca1b5 autoformat 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
252f805db4 performance improvement 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
21e5a522b0 give the same rank to all expressions inside a single stmt 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
e467d3ccbf use dominating write check in js/path-injection 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
6bc821b1ab add tests for dominating writes 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
2b2d691e45 don't treated a property from a tainted object as tainted when there exists a dominating write 2020-06-25 23:00:52 +02:00
Erik Krogh Kristensen
5e4acfbe19 implement predicate for finding dominating writes to an access-path 2020-06-25 23:00:52 +02:00
Owen Mansel-Chan
82361ce060 Fix modelling of Params part 2 2020-06-25 21:55:10 +01:00
Owen Mansel-Chan
cf47159a30 Change how Param and Params are modeled 
Previously any read of type Param or Params was a source. Now reading
Context.Params is a source. This should reduce the number of duplicate
paths.
 2020-06-25 21:55:10 +01:00
Owen Mansel-Chan
9fd892ab94 Fix context bind sources 
Using FunctionOutput was recommended in the first PR but not implemented.
 2020-06-25 21:55:00 +01:00
luchua-bc
65e76ab18f Add remote source of Android intent extra 2020-06-25 20:20:18 +00:00
dilanbhalla
dc58f6fa87 function/class synatax 2020-06-25 11:39:09 -07:00
Jonas Jensen
d4c5887122 Merge pull request #3807 from geoffw0/qldoc3 
C++: Even more QLDoc
 2020-06-25 19:29:35 +02:00
Geoffrey White
168f9404f0 Merge branch 'master' into models5 2020-06-25 17:42:08 +01:00
semmle-qlci
056e1a8c4b Merge pull request #3599 from asger-semmle/js/nameditem 
Approved by esbena
 2020-06-25 17:34:14 +01:00
Geoffrey White
488d41f797 C++: QLDoc Cast.qll. 2020-06-25 17:30:45 +01:00
Geoffrey White
6639d6de83 C++: QLDoc exprs\ObjectiveC.qll (deprecated). 2020-06-25 17:30:45 +01:00
Geoffrey White
1df843c8f6 C++: QLDoc multiple files in the exprs directory. 2020-06-25 17:30:44 +01:00
Geoffrey White
b7730fb1ad C++: QLDoc PrintfLike.qll. 2020-06-25 17:30:44 +01:00
Robert Marsh
9a1f909129 C++: Fix QLDoc for PrintAST.qll nodes/edges 2020-06-25 09:07:20 -07:00
Robert Marsh
b3072b9544 Apply suggestions from code review 
Co-authored-by: Dave Bartolomeo <dbartol@github.com>
 2020-06-25 08:54:17 -07:00
Calum Grant
b759856ccb Merge pull request #3792 from calumgrant/cs/qldoc-coverage1 
C#: Improve qldoc coverage
 2020-06-25 16:34:52 +01:00
Owen Mansel-Chan
93399c6348 Add tests for bind methods with pointer-typed variables 2020-06-25 16:17:57 +01:00
Erik Krogh Kristensen
690bde47aa remove a .getALocalSource() that isn't needed 2020-06-25 16:51:10 +02:00
Asger Feldthaus
e28284bd01 JS: Fix javadoc 2020-06-25 15:39:00 +01:00
Asger Feldthaus
ad48c4e54d JS: Always prepare package.json files 2020-06-25 15:38:20 +01:00
Asger Feldthaus
675c64d9d4 JS: Prefer extracting file with tsconfig that included it 2020-06-25 15:38:19 +01:00
Asger Feldthaus
4c4acd50bd JS: Factor out loading of tsconfig files 2020-06-25 15:38:19 +01:00
Asger Feldthaus
cc3e62f535 JS: Move stack trace limit to top of file 2020-06-25 15:38:19 +01:00
Asger Feldthaus
cf78475799 JS: Only extract included files with a given tsconfig 2020-06-25 15:38:19 +01:00
Asger Feldthaus
6ff81377d5 JS: Also sort files in legacy extractor 2020-06-25 15:38:18 +01:00
Asger Feldthaus
6d15397fdc JS: Ensure we never write outside the scratch dir 2020-06-25 15:38:18 +01:00
Asger Feldthaus
ba5d6bb2e9 JS: Actually set fields 2020-06-25 15:38:18 +01:00