hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-22 09:53:41 +01:00
Code Issues Packages Projects Releases Wiki Activity
41,418 Commits 1,692 Branches 161 Tags
codeql-cli/v2.10.2
Commit Graph

41418 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mathias Vorreiter Pedersen
d7a9d3d8bc C++: Introduce operand dataflow node 2020-06-24 18:26:17 +02:00
luchua-bc
0779aab28f Clean up the QL code 2020-06-24 15:02:16 +00:00
Anders Schack-Mulligen
791f31fa65 Merge pull request #3595 from luchua-bc/j2ee-server-directory-listing 
Java: Add check for J2EE server directory listing
 2020-06-24 16:45:34 +02:00
semmle-qlci
daeb13d9fd Merge pull request #3779 from asger-semmle/js/metric-queries 
Approved by esbena
 2020-06-24 15:37:03 +01:00
Asger Feldthaus
42f32bf76c JS: Recognize calls to .item and .namedItem 2020-06-24 15:11:18 +01:00
Geoffrey White
ff0a9bfc48 C++: QLDoc Stmt.qll, Block.qll. 2020-06-24 13:57:29 +01:00
Geoffrey White
ed32250636 C++: Deprecate Member.qll. 2020-06-24 13:57:28 +01:00
Geoffrey White
f1aac04bdf C++: Deprecate overly specific parts of Type.qll. 2020-06-24 13:57:28 +01:00
Geoffrey White
e43ddd3f78 C++: QLDoc Type.qll. 2020-06-24 13:57:28 +01:00
Geoffrey White
6bcc1a0220 C++: QLDoc NameQualifiers.qll, Namespace.qll, NestedFields.qll. 2020-06-24 13:57:27 +01:00
Slavomir
4dc1399385 Update comments on the lines that have incorrect flagging 2020-06-24 15:11:33 +03:00
semmle-qlci
696d19cb14 Merge pull request #3773 from erik-krogh/guardedCrypto 
Approved by asgerf
 2020-06-24 13:04:04 +01:00
Jonas Jensen
3982da5c47 Merge pull request #3771 from hvitved/qldoc-style-tripleticks 
Suggest using target language syntax highlighting in QLDoc
 2020-06-24 11:36:39 +02:00
Asger Feldthaus
e2a300e811 JS: Add change note 2020-06-24 10:33:45 +01:00
Rasmus Lerchedahl Petersen
f6c59abcd9 Merge branch 'master' of github.com:github/codeql into UnmatchableDollar 
to make CodeScan happy
 2020-06-24 11:04:07 +02:00
Rasmus Lerchedahl Petersen
6e9c48bba7 Python: test zero iterations 2020-06-24 11:01:27 +02:00
Rasmus Lerchedahl Petersen
226c295b4c Python: format 2020-06-24 10:48:51 +02:00
Anders Schack-Mulligen
941177ee25 Merge pull request #3762 from hvitved/dataflow/clear-contents 
Data flow: Model field clearing
 2020-06-24 10:19:50 +02:00
Anders Schack-Mulligen
3b62bd254c Merge pull request #3723 from JLLeitschuh/fix/JLL/gitignore_vs_code_generated_files 
Add .gitignore for VS Code Generated maven project files
 2020-06-24 09:35:01 +02:00
Erik Krogh Kristensen
76ed03f75b update change-note 
Co-authored-by: Asger F <asgerf@github.com>
 2020-06-24 09:30:43 +02:00
Sauyon Lee
6883a97628 Merge pull request #223 from max-schaefer/update-data-flow 
Data flow: Track precise types during field flow
 2020-06-24 00:10:54 -07:00
semmle-qlci
a723ac0d8e Merge pull request #3767 from esbena/js/console-member-calls 
Approved by erik-krogh
 2020-06-24 08:03:49 +01:00
Asger Feldthaus
d15c98d18c JS: Add more metrics 2020-06-24 08:03:24 +01:00
Max Schaefer
8c27e16190 Merge pull request #226 from smowton/smowton/fix/remove-spurious-cfg-edge-from-expressionless-switch 
Remove spurious control-flow edge around switch block without a test
 2020-06-24 07:47:37 +01:00
Geoffrey White
afcc6ac712 Merge pull request #3766 from rdmarsh2/rdmarsh/cpp/add-qldoc-3 
C++: Add QLDocs for Initializer.qll-Macro.qll and model classes
 2020-06-24 07:31:48 +01:00
Robert Marsh
e24566e313 C#/C++: Use CODEQL_EXTRACTOR_CPP_ROOT in autobuild 
Left this out earlier because I thought it needed to point to the C#
extractor root even in C++ mode, but it looks like it isn't yet used in
C++ mode.
 2020-06-23 15:53:25 -07:00
Robert Marsh
c37c282861 C#/C++: Fix tests with new environment variables 2020-06-23 15:35:22 -07:00
Robert Marsh
da9aa546de C#/C++: Use CODEQL_EXTRACTOR_CPP_* in autobuilder 2020-06-23 14:47:07 -07:00
Mathias Vorreiter Pedersen
30d9c6b9e4 Merge pull request #3776 from geoffw0/qldoc 
C++: QLDoc ObjectiveC.qll, BufferWrite.qll, FileWrite.qll, OutputWrite.qll
 2020-06-23 22:23:03 +02:00
Slavomir
3aa9b25673 Fix comment 2020-06-23 22:40:25 +03:00
Robert Marsh
b402352321 Merge pull request #3775 from hvitved/dataflow/tripleticks 
Data flow: Enable syntax highlighting in QLDoc snippets
 2020-06-23 09:53:10 -07:00
Chris Smowton
4882f277f5 Remove spurious control-flow edge around switch block without a test-expression 
Previously we thought it possible to get from top to bottom of a block like "switch { case f(): ... }", when in fact this is only possible if there are no case blocks to execute.

I also add tests for two possible corner cases of a switch without a test-expression: a completely empty switch (the 'true' is indeed the last node) and switch with an empty default block (a single 'skip' is generated for the default block and the 'true' is not the last node)
 2020-06-23 17:46:08 +01:00
Chris Smowton
1dc427a2c5 Cleanup: use TypeSwitchStmt.getAssign, not a raw child accessor 2020-06-23 17:46:08 +01:00
Robert Marsh
edaa43ab0b C++: respond to PR comments on qldoc 2020-06-23 09:23:08 -07:00
Asger Feldthaus
63d48bfe5c JS: Move IgnoredFile to MetaMetrics 2020-06-23 17:08:09 +01:00
Asger Feldthaus
35bdb4127e JS: Add TypedExprs metric 2020-06-23 17:05:58 +01:00
Geoffrey White
fbaf398e7a C++: QLDoc FileWrite and OutputWrite. 2020-06-23 16:57:22 +01:00
Geoffrey White
e01f050db8 C++: QLDoc BufferWrite.qll. 2020-06-23 16:29:00 +01:00
Geoffrey White
dea9a13e44 C++: QLDoc ObjectiveC.qll (deprecated). 2020-06-23 16:28:51 +01:00
Rasmus Lerchedahl Petersen
c70cf6d780 Python: better (if imperfect) handling of phi node 2020-06-23 17:25:33 +02:00
Tom Hvitved
652de80fa5 C#: Enable syntax highlighting in QLDoc snippets 2020-06-23 16:56:56 +02:00
Tom Hvitved
a3e7fd60f2 Data flow: Enable syntax highlighting in QLDoc snippets 2020-06-23 16:54:34 +02:00
Bt2018
fffc88ea5b Metadata update 2020-06-23 10:34:28 -04:00
Max Schaefer
4e6d9b3811 Teach OpenUrlRedirect to propagate out of URL.Path and a few other fields. 2020-06-23 15:29:18 +01:00
Taus
a2677f8df0 Merge pull request #3758 from RasmusWL/python-methods-overrides-as-recommendation 
Python: Changing signature in overriden method is not an error
 2020-06-23 16:16:44 +02:00
Erik Krogh Kristensen
79599b6cc0 add change-note 2020-06-23 15:57:55 +02:00
Erik Krogh Kristensen
3f8881a334 don't report insecure randomness when the insecure random is just a fallback 2020-06-23 15:53:19 +02:00
Slavomir
561c5b91d2 Implement code review feedback 2020-06-23 16:07:05 +03:00
luchua-bc
f8c494716f Fix ending line error 2020-06-23 12:48:07 +00:00
Tom Hvitved
8d5077ae83 Suggest using target language syntax highlighting in QLDoc 2020-06-23 14:48:04 +02:00