41418 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Robert Marsh	28fb3d606a	C++: add fread and printf alias models	2019-12-05 12:14:33 -08:00
Robert Marsh	52a74718da	C++: Move sources into DefaultTaintTracking	2019-12-05 12:14:25 -08:00
Robert Marsh	39b400ca69	C++: Add DefinitionByReferenceNode to IR dataflow	2019-12-05 11:56:57 -08:00
Max Schaefer	8364ba3d38	Make Expr.getType() robust against incomplete type_of table.	2019-12-05 17:05:02 +00:00
Calum Grant	59ce8842bb	Merge branch 'master' of git.semmle.com:Semmle/ql into ASPNetPagesValidateRequest ... # Conflicts: # change-notes/1.24/analysis-csharp.md	2019-12-05 15:58:47 +00:00
Felicity Chapman	fa8e5e6793	Merge pull request #2489 from jf205/deprecate-cobol-master ... Supported languages: update COBOL info	2019-12-05 15:08:53 +00:00
Robert Marsh	055c1d0efa	Merge pull request #2488 from geoffw0/speedup2 ... CPP: Speed up SensitiveExprs.qll	2019-12-04 14:09:32 -08:00
Robert Marsh	420a0bb74c	C++: handle namespace vars in DefautlTaintTracking	2019-12-04 13:16:12 -08:00
Robert Marsh	ec95197d6d	Merge pull request #2451 from dbartol/dbartol/May-Must ... C++/C#: Consistent handling of "may" vs. "must" memory accesses	2019-12-04 12:32:53 -08:00
Dave Bartolomeo	cbb6797ca8	Merge from master and resolve conflicts	2019-12-04 10:14:52 -07:00
Calum Grant	73c8888361	Merge pull request #2356 from cldrn/ASPNetRequestValidationMode ... Adds CodeQL query to check for insecure RequestValidationMode in ASP.NET	2019-12-04 17:02:08 +00:00
shati-patel	ad2da41af8	Merge pull request #2493 from jf205/deprecate-cobol ... Learning CodeQL docs: add COBOL notes and remove links (rc/1.23)	2019-12-04 16:46:51 +00:00
shati-patel	343385bd2e	Merge pull request #2492 from Semmle/revert-2487-deprecate-cobol ... Revert "Learning CodeQL docs: add COBOL notes and remove links"	2019-12-04 16:41:00 +00:00
james	40920b162c	docs: delete link to query console	2019-12-04 16:36:44 +00:00
james	ad32d9140b	docs: increase trainig project version number	2019-12-04 16:36:44 +00:00
james	fe3a908317	docs: add cobol notes	2019-12-04 16:36:44 +00:00
James Fletcher	d47f08488f	Revert "Learning CodeQL docs: add COBOL notes and remove links"	2019-12-04 16:34:00 +00:00
Dave Bartolomeo	50dc5e2ba3	Merge pull request #2438 from rdmarsh2/rdmarsh/ir-line-number-ids ... C++/C#: use line numbers for instruction IDs	2019-12-03 18:48:28 -08:00
Robert Marsh	d99a90bfea	C++: handle global vars in DefaultTaintTracking	2019-12-03 16:08:43 -08:00
Robert Marsh	722cc91eae	C++: make getLineRank private	2019-12-03 10:53:08 -08:00
Jonas Jensen	57917bec17	Merge pull request #2480 from hvitved/dataflow/performance-tweaks ... Data flow: Various performance tweaks	2019-12-03 18:44:11 +01:00
Calum Grant	db30947e54	Merge pull request #2490 from felicitymay/1.23/SD-4095-finalize-change-notes-csharp ... 1.23/sd 4095 finalize change notes csharp	2019-12-03 17:38:09 +00:00
Felicity Chapman	37e9ff1197	Merge pull request #2487 from jf205/deprecate-cobol ... Learning CodeQL docs: add COBOL notes and remove links	2019-12-03 17:31:44 +00:00
Calum Grant	8018db3f66	Merge pull request #2474 from hvitved/csharp/dispatch-perf ... C#: Improve performance of dispatch library	2019-12-03 15:47:43 +00:00
james	971db7126b	docs: delete link to query console	2019-12-03 14:37:33 +00:00
Geoffrey White	8ddf877756	CPP: Autoformat.	2019-12-03 12:17:37 +00:00
james	f602c78242	docs: update cobol info	2019-12-03 11:58:30 +00:00
james	a560b6caa5	docs: increase trainig project version number	2019-12-03 10:57:12 +00:00
Geoffrey White	cc43e1116b	CPP: Do the logic at the target, rather than the access, as there are likely fewer.	2019-12-03 10:52:40 +00:00
james	25e779913f	docs: add cobol notes	2019-12-03 10:52:06 +00:00
Geoffrey White	20eb39d37e	CPP: Bypass some of the complexity in 'toString'.	2019-12-03 10:44:59 +00:00
Geoffrey White	6e6c1693f4	CPP: Speed up SensitiveExprs.qll 'suspicious' and 'nonSuspicious' mechanism.	2019-12-03 10:43:36 +00:00
Geoffrey White	b752a6c8ed	Merge pull request #2381 from jbj/StackVariable ... C++: Add StackVariable class, preferred over LocalScopeVariable	2019-12-03 10:35:16 +00:00
Geoffrey White	2faae4dcb1	CPP: Autoformat.	2019-12-03 09:00:43 +00:00
semmle-qlci	cfcd18b411	Merge pull request #2429 from erik-krogh/typeAheadSink ... Approved by esbena	2019-12-03 08:07:25 +00:00
Robert Marsh	1b802c7e18	C#: accept test change	2019-12-02 13:59:19 -08:00
Paulino Calderon	5fd0662264	Update csharp/ql/src/Security Features/CWE-016/ASPNetPagesValidateRequest.qhelp ... Fixes typo Co-Authored-By: James Fletcher <42464962+jf205@users.noreply.github.com>	2019-12-02 16:44:39 -05:00
Paulino Calderon	24b2471533	Update change-notes/1.24/analysis-csharp.md ... tag update Co-Authored-By: James Fletcher <42464962+jf205@users.noreply.github.com>	2019-12-02 16:44:25 -05:00
Paulino Calderon	9576e2a698	Update csharp/ql/src/Security Features/CWE-016/ASPNetPagesValidateRequest.qhelp ... Adds missing code tags Co-Authored-By: James Fletcher <42464962+jf205@users.noreply.github.com>	2019-12-02 16:43:51 -05:00
Dave Bartolomeo	acc3d23877	Clarify comment	2019-12-02 11:53:43 -08:00
Sauyon Lee	94ed3ef979	Merge pull request #13 from github/fix-dead-store ... Fix a dead assignment.	2019-12-02 10:48:55 -08:00
Dave Bartolomeo	48e92e2399	Merge pull request #2481 from calumgrant/cs/fix-ir-types ... C#: Fix some IR types that didn't compile.	2019-12-02 09:42:33 -08:00
Henning Makholm	e441e432ff	Merge pull request #2484 from asger-semmle/typescript-codeql-env-var ... JS: Make extractor aware of CodeQL env vars	2019-12-02 18:36:45 +01:00
Asger F	f162749044	Merge pull request #2418 from max-schaefer/js/file-locatable ... JavaScript: Make `File` not extend `Locatable` anymore.	2019-12-02 16:15:14 +00:00
Asger F	f988e9004f	JS: Autoformat FileExtractor.java	2019-12-02 16:06:37 +00:00
Asger F	c931beb853	TS: Make AutoBuild aware of CodeQL env vars	2019-12-02 16:06:27 +00:00
Anders Schack-Mulligen	2f8e92571a	Merge pull request #2483 from hmakholm/pr/move-test ... remove java test EmptyInterface	2019-12-02 16:18:08 +01:00
Henning Makholm	95c26a51af	remove java test EmptyInterface ... This is a test of an internal query for the Semmle repository. It cannot run against the public QL repository alone, and therefore should not be tested here. https://git.semmle.com/Semmle/code/pull/35690 adds the test back to the internal repo.	2019-12-02 15:29:42 +01:00
Rasmus Wriedt Larsen	387ab52855	Python: Add zope web tests from internal repo	2019-12-02 14:38:03 +01:00
Calum Grant	c05263ca98	C#: Fix some IR types that didn't compile.	2019-12-02 13:27:58 +00:00