codeql

mirror of https://github.com/github/codeql.git synced 2026-02-10 04:01:11 +01:00

Author	SHA1	Message	Date
Sauyon Lee	459f4d18a8	Fix sync-dataflow-libraries	2021-12-02 10:31:01 -05:00
Michael Nebel	19c34be1ea	Merge pull request #7297 from michaelnebel/csharp-accessor-flow C#: Make it possible to define flow for property backing methods.	2021-12-02 16:24:19 +01:00
Michael Nebel	102b5e05e1	Merge pull request #7290 from michaelnebel/csharp-modify-flow-summaries-test C#: Modify printing of flow summaries in test.	2021-12-02 16:22:47 +01:00
Geoffrey White	2b349b3024	Merge pull request #7295 from geoffw0/cwe260 C++: Add CWE tags to some queries.	2021-12-02 14:41:34 +00:00
intrigus	2c4ccb79a1	Fix QL Doc typos.	2021-12-02 15:30:29 +01:00
Geoffrey White	3043ac850c	C++: Update security-severity tags.	2021-12-02 14:04:49 +00:00
Michael Nebel	f6c36b469a	C#: Include test case for override of property.	2021-12-02 15:04:01 +01:00
Michael Nebel	f190d60912	C#: Make it possible to describe flow for properties using their backing methods.	2021-12-02 15:02:22 +01:00
Geoffrey White	eccba57536	C++: Add CWE-327 tag to cpp/boost/use-of-deprecated-hardcoded-security-protocol.	2021-12-02 12:32:14 +00:00
Geoffrey White	7aa6c62050	C++: Add CWE-326 tag to cpp/boost/tls-settings-misconfiguration.	2021-12-02 12:29:42 +00:00
Nick Rolfe	05415768c9	Merge remote-tracking branch 'origin/main' into nickrolfe/regexp_g_anchor	2021-12-02 12:07:13 +00:00
yoff	f10f053c36	Merge pull request #7228 from RasmusWL/fastapi-improvements Python: FastAPI improvements	2021-12-02 12:58:53 +01:00
Geoffrey White	913d8361ba	C++: Add CWE-260 tag to cpp/cleartext-storage-file.	2021-12-02 11:54:51 +00:00
yoff	4609b2060a	Merge pull request #7217 from RasmusWL/more-path-injection-fps Python: Add `x in <var>` test for StringConstCompare	2021-12-02 12:35:33 +01:00
Michael Nebel	8f3be9fbfd	C#: Update flow summaries test according to new printing format.	2021-12-02 11:28:06 +01:00
Michael Nebel	edf7724579	C#: Remove trailing whitespace after comma, when priting callable in CSV format.	2021-12-02 11:24:42 +01:00
Michael Nebel	37644d30d2	Merge pull request #7281 from michaelnebel/csharp-flowsummaries-filtered C#: Filtered flow summaries	2021-12-02 11:23:36 +01:00
Erik Krogh Kristensen	6327fced6f	remove paths without unmatched returns from polynomial-redos	2021-12-02 10:03:28 +01:00
Michael Nebel	ad281c0365	C#: Sync FlowSummaryImpl files.	2021-12-02 09:03:00 +01:00
Michael Nebel	a8f673ffa4	C#: Add a test that only prints 'base' flow summaries.	2021-12-02 09:03:00 +01:00
Michael Nebel	e08c734c40	C#: Refactoring to allow override of the flow summaries reported by a test.	2021-12-02 08:54:59 +01:00
Michael Nebel	55c17f453f	Merge pull request #7280 from michaelnebel/csharp-newtonsoft-flowsummary C#: Include the NewtonSoft.JSon stubs in the flow summaries test.	2021-12-02 08:47:58 +01:00
luchua-bc	8bcffc2886	Query to detect unsafe request dispatcher usage	2021-12-02 04:00:29 +00:00
github-actions[bot]	87b968f337	Post-release preparation 2.7.3	2021-12-02 00:46:55 +00:00
Andrew Eisenberg	b714988d7c	Post release 2.7.3	2021-12-01 14:34:07 -08:00
Andrew Eisenberg	e9864c5506	Add version policies This controls how the qlpacks' versions will change after a release.	2021-12-01 09:37:11 -08:00
Dave Bartolomeo	b2ca04ce1b	Temporarily vendor `codeql/suite-helpers`	2021-12-01 11:40:10 -05:00
Chris Smowton	894102defd	Merge pull request #621 from owen-mc/extractor-add-variadic-to-type-label Update extractor to distinguish variadic and non-variadic signature types	2021-12-01 15:44:09 +00:00
Mathias Vorreiter Pedersen	9f8326a3fa	Merge pull request #7243 from geoffw0/sslquery2 C++: New query for SSL certificates not checked	2021-12-01 15:02:19 +00:00
Owen Mansel-Chan	d0c9aacd54	Distinguish variadic and non-variadic signature types in extractor	2021-12-01 09:33:44 -05:00
Erik Krogh Kristensen	a077345227	Merge pull request #7180 from erik-krogh/apiLabel2 JS: Make the edges of API-graphs into IPA types	2021-12-01 15:33:04 +01:00
Owen Mansel-Chan	628835d3b3	Add failing tests for isVariadic `nonvariadicDeclaredFunction` has the same signature as `variadicDeclaredFunction`, so it is being erroneously reported as variadic.	2021-12-01 09:32:12 -05:00
Erik Krogh Kristensen	73f2f52ed8	use the `TYPE_ONLY_IMPORT` context	2021-12-01 14:54:16 +01:00
Erik Krogh Kristensen	739906b60c	rename @import_or_export_declaration to @type_keyword_operand	2021-12-01 14:47:11 +01:00
Michael Nebel	9e10aee8a1	C#: Update the flow summaries test.	2021-12-01 14:34:32 +01:00
Michael Nebel	cc2914be3c	C#: Include NewtonSoft.Json stubs into the flow summaries test.	2021-12-01 14:34:04 +01:00
Erik Krogh Kristensen	de53727ab3	remove spurious whitespace Co-authored-by: Asger F <asgerf@github.com>	2021-12-01 14:29:57 +01:00
Erik Krogh Kristensen	0a3d62c92a	rename `mod` -> `module`	2021-12-01 13:48:16 +01:00
Erik Krogh Kristensen	148da611c6	make the ApiLabel class non-abstract	2021-12-01 13:45:52 +01:00
Tom Hvitved	aad55ffbd6	Merge pull request #7279 from hvitved/csharp/json-net-fix-summaries C#: Fix `Newtonsoft.Json.JsonSerializer.{Deserialize,Serialize}` summaries	2021-12-01 13:15:10 +01:00
Michael Nebel	75f9a947b3	Merge pull request #7257 from michaelnebel/csharp-nuget-packages C#: Use .NET Core Nuget package stub i test	2021-12-01 13:04:24 +01:00
Michael Nebel	ed706d9bc1	Merge pull request #7269 from michaelnebel/chspar-nuget-stub-script C#: Update the make_stubs_nuget script	2021-12-01 13:04:02 +01:00
Arthur Baars	e41cd810d3	Merge pull request #7154 from aibaars/ruby-pattern-matching Ruby: pattern matching	2021-12-01 12:47:22 +01:00
Tom Hvitved	93e291cb3e	C#: Fix `Newtonsoft.Json.JsonSerializer.{Deserialize,Serialize}` summaries	2021-12-01 11:41:16 +01:00
Anders Schack-Mulligen	cde853c095	Merge pull request #7270 from aschackmull/dataflow/stage2-refactor Dataflow: Stage 2 refactor	2021-12-01 11:09:08 +01:00
Chris Smowton	e07958d64c	Merge pull request #619 from owen-mc/update-is-variadic Update `isVariadic`	2021-12-01 08:48:16 +00:00
haby0	6742beae1b	use <code> tags	2021-12-01 16:24:46 +08:00
Tom Hvitved	31374b485c	Data flow: Update documentation	2021-12-01 09:01:06 +01:00
Tom Hvitved	e410244fe0	Python: Implement `ParameterPosition` et al	2021-12-01 08:51:22 +01:00
Tom Hvitved	bb8f4bb7c1	Ruby: Implement `ParameterPosition` et al	2021-12-01 08:51:22 +01:00

... 190 191 192 193 194 ...

42524 Commits