codeql

mirror of https://github.com/github/codeql.git synced 2026-01-25 20:32:58 +01:00

Author	SHA1	Message	Date
Geoffrey White	873c62ef78	Swift: Apply another code review suggestion.	2022-08-03 18:16:01 +01:00
Geoffrey White	e4dab17318	Apply suggestions from code review Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2022-08-03 18:14:14 +01:00
Geoffrey White	9d49986345	Swift: Make QL-for-QL happy.	2022-08-03 17:18:57 +01:00
Mathias Vorreiter Pedersen	9355f9132e	Merge pull request #9961 from MathiasVP/swift-cache-lastRefRedef Swift: Cache `lastRefRedef`	2022-08-03 15:43:35 +01:00
Alex Ford	33fbec1174	Merge pull request #9917 from github/post-release-prep/codeql-cli-2.10.2 Post-release preparation for codeql-cli-2.10.2	2022-08-03 15:17:00 +01:00
Mathias Vorreiter Pedersen	97bd007592	Merge pull request #9962 from intrigus-lgtm/patch-7 C: Add additional reference to CERT C coding standard	2022-08-03 15:00:33 +01:00
Geoffrey White	39f1352847	Swift: Complete the rename.	2022-08-03 14:45:20 +01:00
Geoffrey White	81bd61288c	Swift: I think CWE-079 is the more accurate CWE for this query.	2022-08-03 14:45:19 +01:00
Geoffrey White	c635895644	Swift: Documentation.	2022-08-03 14:45:18 +01:00
Alex Ford	440547c958	Merge branch 'main' into post-release-prep/codeql-cli-2.10.2	2022-08-03 13:44:37 +01:00
Arthur Baars	912dce3ea7	Merge branch 'main' into gh-codeql-nightly	2022-08-03 14:43:07 +02:00
Arthur Baars	e23a45d02c	Merge pull request #9959 from aibaars/order-order Ruby: PrintAST: more stable order for synthesized nodes	2022-08-03 14:42:42 +02:00
intrigus-lgtm	c59e6586f7	Add additional reference to CERT C coding standard	2022-08-03 14:19:53 +02:00
Mathias Vorreiter Pedersen	be7ba925f9	Swift: Cache 'lastRefRedef'.	2022-08-03 11:14:55 +01:00
Arthur Baars	35f7fdf24b	Update ruby/ql/lib/codeql/ruby/printAst.qll Co-authored-by: Tom Hvitved <hvitved@github.com>	2022-08-03 12:06:47 +02:00
Chris Smowton	977823bd76	Create 2022-08-03-tainted-path-mad.md	2022-08-03 10:54:35 +01:00
Chris Smowton	84a4b6a866	Make reporting locations consistent with PathCreation; add test	2022-08-03 10:42:09 +01:00
Geoffrey White	8d9653a999	Swift: Generated security-severity tag.	2022-08-03 09:54:54 +01:00
Geoffrey White	ea17b852b4	Swift: Explain ExternalRemoteFlowSource.	2022-08-03 09:42:51 +01:00
Geoffrey White	651b73e21e	Swift: Check for tainted baseURL.	2022-08-03 09:42:48 +01:00
Rasmus Wriedt Larsen	8fb85a98d8	Merge branch 'main' into post-release-prep/codeql-cli-2.10.2	2022-08-03 10:42:02 +02:00
Mathias Vorreiter Pedersen	c582d17350	Merge pull request #9952 from MathiasVP/speedup-return-stack-allocated-memory C++: Speedup `cpp/return-stack-allocated-memory`	2022-08-03 09:41:38 +01:00
Geoffrey White	53ea65b045	Swift: Implement query.	2022-08-03 09:41:28 +01:00
Chris Smowton	e04c77ce15	Rename sanitizer	2022-08-03 09:37:20 +01:00
Geoffrey White	2d76d6d51a	Swift: Tests for CWE-95.	2022-08-03 09:36:22 +01:00
Chris Smowton	03fa5d8ed0	Merge pull request #9960 from RasmusWL/fix-qltest Python: Accept `.expected` for TarSlip	2022-08-03 09:28:47 +01:00
Chris Smowton	83498f58db	Add missing import	2022-08-03 08:53:43 +01:00
Rasmus Wriedt Larsen	3d0c23e441	Python: Accept `.expected` for TarSlip Changed after merging https://github.com/github/codeql/pull/9579, which improved our handling of `not` for guards.	2022-08-03 09:52:11 +02:00
Arthur Baars	d8592a2b05	Ruby: PrintAST: more stable order for synthesized nodes	2022-08-03 09:02:38 +02:00
Anders Schack-Mulligen	d9ae4605c1	Merge pull request #9948 from aschackmull/java/samenameassuper-perf Java: Fix join-order in SameNameAsSuper.	2022-08-03 08:04:30 +02:00
Chris Smowton	81f3bcd802	Don't require a PathCreation for every tainted-path sink	2022-08-02 21:30:06 +01:00
Chris Smowton	c95f17fdf2	Make java/path-injection recognise create-file MaD sinks	2022-08-02 21:28:00 +01:00
Alex Ford	8e3548efb3	Merge branch 'main' into post-release-prep/codeql-cli-2.10.2	2022-08-02 20:29:26 +01:00
Arthur Baars	759fd6cc0b	Use 'gh codeql' with the nightly release for CI jobs	2022-08-02 17:01:20 +02:00
Arthur Baars	0be625f396	Merge pull request #9954 from aibaars/fix-triggers CI: fix path triggers	2022-08-02 17:00:23 +02:00
Jeroen Ketema	a63df8fee9	Merge pull request #9930 from jketema/templ-var C++: Update test for indexing of static template variable template arguments	2022-08-02 16:59:56 +02:00
Keith Hoodlet	b21fa0e2b0	Update Other section with example exit code Add troubleshooting steps to remediate issues with the kernel killing a process.	2022-08-02 10:49:45 -04:00
Arthur Baars	64704057cb	CI: fix path triggers	2022-08-02 16:33:21 +02:00
Arthur Baars	55e15540f6	Merge pull request #9943 from aibaars/gh-codeql-follow-up CI: remove unneeded PATH definitions	2022-08-02 16:22:18 +02:00
Mathias Vorreiter Pedersen	f385041ab3	C++: Add change note.	2022-08-02 14:07:22 +01:00
Mathias Vorreiter Pedersen	5181cc1295	C++: Add a 'allowInterproceduralFlow' predicate to the 'MustFlow' library to and use it instead of checking the enclosing callables after computing the dataflow graph.	2022-08-02 13:43:01 +01:00
Anders Schack-Mulligen	aabdf84300	Java: Improve join-order for `not haveIntersection`.	2022-08-02 14:29:03 +02:00
Anders Schack-Mulligen	80bba605e3	Java: Fix join-order in SameNameAsSuper.	2022-08-02 12:49:21 +02:00
Chris Smowton	e04a9b5805	Add change note	2022-08-02 11:37:27 +01:00
Chris Smowton	13b2b7674d	Go: note that numeric-typed nodes can't cause path traversal	2022-08-02 11:28:28 +01:00
Geoffrey White	bada5bf7c1	Swift: Placeholder query + docs for CWE-95.	2022-08-02 10:47:06 +01:00
Jeroen Ketema	34de4000ac	Merge pull request #9941 from MathiasVP/swift-taint-tracking Swift: Add 'TaintTracking.qll'	2022-08-02 10:15:21 +02:00
Anders Schack-Mulligen	cd356a5ac1	Java: Improve join-order.	2022-08-02 08:49:58 +02:00
Robert Marsh	3007c96c72	C++: fix a nit	2022-08-01 15:34:03 -04:00
Robert Marsh	f0697ff28b	C++: fix QL4QL warnings	2022-08-01 15:23:59 -04:00

... 3 4 5 6 7 ...

41812 Commits