codeql

mirror of https://github.com/github/codeql.git synced 2026-02-20 08:53:49 +01:00

Author	SHA1	Message	Date
Asger Feldthaus	5249e84359	JS: Type track spanner model	2020-05-15 17:27:30 +01:00
Asger Feldthaus	d225715828	JS: Type track mssql model	2020-05-15 17:27:30 +01:00
Asger Feldthaus	6dcee5a0ef	JS: Type track sqlite model	2020-05-15 17:27:30 +01:00
Asger Feldthaus	84cd02cf01	JS: Type track pg model	2020-05-15 17:27:27 +01:00
Asger Feldthaus	f7771f17d1	JS: Type track mysql model	2020-05-15 17:27:27 +01:00
Asger Feldthaus	3e9849b7c4	JS: Type track sequelize model	2020-05-15 17:27:24 +01:00
Hector Cuesta	ef53e443b7	Fix typo in comment	2020-05-15 17:17:42 +01:00
luchua-bc	4117cd73a7	Add JBoss logging	2020-05-15 16:14:41 +00:00
Max Schaefer	8a8082f6ad	Merge pull request #144 from max-schaefer/interface-method-implements Refine `Method.implements` so that interface methods only implement themselves.	2020-05-15 17:01:28 +01:00
Geoffrey White	edd09f09cd	C++: Add test cases where several specific values are permitted.	2020-05-15 17:01:23 +01:00
Hector Cuesta	a022086498	Add experimental query for Tainted WebClient	2020-05-15 16:30:10 +01:00
Max Schaefer	27cb92fb86	Use `.pp()` in a few tests selecting types.	2020-05-15 15:54:23 +01:00
Calum Grant	da6c37d7dc	C#: Update test output.	2020-05-15 15:40:49 +01:00
Henning Makholm	a57b060a0c	docs/language/ql-handbook/language.rst: apply suggestion from review Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>	2020-05-15 15:55:16 +02:00
Jonas Jensen	b08de6c051	Merge pull request #3482 from MathiasVP/getlim-taint-source C++: Add GetDelim as taint step	2020-05-15 15:54:29 +02:00
Tom Hvitved	cd9538d0d9	Merge remote-tracking branch 'upstream/master' into dataflow/precise-field-types	2020-05-15 15:24:05 +02:00
Calum Grant	5787871734	Merge pull request #3351 from hvitved/csharp/unification-nested-types C#: Teach unification library about nested types	2020-05-15 14:11:00 +01:00
Calum Grant	cc844648ff	Merge pull request #3365 from hvitved/csharp/format-queries-path-problem C#: Convert `string.format()` queries to path queries	2020-05-15 14:08:54 +01:00
Rasmus Wriedt Larsen	061f318576	Merge pull request #3460 from yoff/boolDefault Python: __bool__ does not raise TypeError by default	2020-05-15 15:07:45 +02:00
Dave Bartolomeo	89ec60c948	C++/C#: Add missing QLDoc	2020-05-15 09:01:16 -04:00
Dave Bartolomeo	bcddaf4c29	C++/C#: Fix formatting	2020-05-15 08:56:32 -04:00
Mathias Vorreiter Pedersen	7502c6f821	Set `mustWrite` to `false` in response to PR feedback Co-authored-by: Jonas Jensen <jbj@github.com>	2020-05-15 14:32:46 +02:00
Asger Feldthaus	e311cc7689	JS: Change note	2020-05-15 13:06:37 +01:00
Calum Grant	53ca3ccf53	C#: Update changenotes	2020-05-15 13:06:17 +01:00
Rasmus Lerchedahl Petersen	60d5ba23b3	Python: Move test into appropriate class. Also update test expectations with changed line numbers.	2020-05-15 13:51:51 +02:00
Calum Grant	84bce9f742	C#: Extract indexed initializers correctly.	2020-05-15 12:50:53 +01:00
Rasmus Lerchedahl Petersen	1b0687e2f2	Python: update expectations correctly	2020-05-15 13:25:20 +02:00
Esben Sparre Andreasen	1c5bffc095	JS: fix some FNs in the qhelp examples	2020-05-15 12:40:38 +02:00
Jonas Jensen	8a0af0bcac	Merge pull request #3465 from MathiasVP/remove-abstract-from-access-and-cast C++: Remove abstract keyword from `Access` and `Cast` classes	2020-05-15 12:25:34 +02:00
Max Schaefer	9c7e46386f	Simplify logic in AllocationSizeOverflow query.	2020-05-15 11:20:11 +01:00
Max Schaefer	d300ec6324	Refine `Method.implements` so that interface methods only implement themselves. Without this restriction, the two `m`s in the following example are considered to implement each other, even though they aren't logically related: ```go type I interface { m() } type J interface { m() } type K struct { I J } ``` Previously, interface methods would sometimes implement themselves and sometimes not (see changes to test output for examples).	2020-05-15 11:09:17 +01:00
Erik Krogh Kristensen	3138918f1d	add test for promise inside Promise.all	2020-05-15 11:49:29 +02:00
Mathias Vorreiter Pedersen	866b1361ec	C++: Accept tests	2020-05-15 11:12:47 +02:00
Mathias Vorreiter Pedersen	e70f22c753	C++: Model getdelim and friends	2020-05-15 11:05:57 +02:00
Mathias Vorreiter Pedersen	90d473d886	C++: Demonstrate lack of taint through getdelim	2020-05-15 11:01:27 +02:00
Asger Feldthaus	d84f1b47c2	JS: Refactor RequestInputAccess to use source nodes	2020-05-15 09:59:28 +01:00
Asger Feldthaus	da974f1527	JS: Add test with dynamic access to req.query	2020-05-15 09:59:28 +01:00
Asger Feldthaus	659e2ff709	JS: Tweak evaluation of route handler params	2020-05-15 09:59:27 +01:00
Asger F	b9995b784d	Update javascript/ql/src/semmle/javascript/frameworks/ConnectExpressShared.qll Co-authored-by: Esben Sparre Andreasen <esbena@github.com>	2020-05-15 09:59:27 +01:00
Asger Feldthaus	a982cdc39c	JS: Autoformat	2020-05-15 09:59:27 +01:00
Asger Feldthaus	bfbe70a7a9	JS: Fixes	2020-05-15 09:59:27 +01:00
Asger Feldthaus	82d3a7eb23	JS: Go back to disjunction 😭	2020-05-15 09:59:27 +01:00
Asger Feldthaus	c45d84f8f3	JS: Update getRouteHandlerParameter and router tracking	2020-05-15 09:59:27 +01:00
Asger Feldthaus	9cacfab7c6	JS: Recognize Express param value callback as RemoteFlowSource	2020-05-15 09:59:26 +01:00
Geoffrey White	48f3db3fbe	Merge branch 'master' into fp2762	2020-05-15 09:55:30 +01:00
Erik Krogh Kristensen	6d79bab7e4	rename Fs to FS	2020-05-15 10:54:08 +02:00
Erik Krogh Kristensen	dd3342ba6f	restrict the number of stored array elements	2020-05-15 10:01:27 +02:00
Erik Krogh Kristensen	4eb96848a6	add change note for bluebird and "Promise"	2020-05-15 09:58:33 +02:00
Erik Krogh Kristensen	cb96ee8def	remove redundant instanceof check Co-authored-by: Esben Sparre Andreasen <esbena@github.com>	2020-05-15 09:58:18 +02:00
Erik Krogh Kristensen	7df35a6bab	update change note	2020-05-15 09:52:59 +02:00

... 558 559 560 561 562 ...

41418 Commits