codeql

mirror of https://github.com/github/codeql.git synced 2026-01-23 11:22:58 +01:00

Author	SHA1	Message	Date
Rasmus Lerchedahl Petersen	7f610405a0	Python: move code and harmonize comments	2022-09-26 13:39:59 +02:00
Rasmus Lerchedahl Petersen	69640f3c20	Python: refactor awaited	2022-09-26 13:39:59 +02:00
Michael Nebel	0581b91c32	Merge pull request #10554 from michaelnebel/csharp/datetime-sanitizer C#: Consider DateTime as simple type sanitizer.	2022-09-26 13:21:36 +02:00
Mathias Vorreiter Pedersen	1c55bbe2e8	C++: Add FP for CWE-193.	2022-09-26 11:53:03 +01:00
Alex Ford	b018706afd	Ruby: update rb/unsafe-deserialization tests	2022-09-26 11:28:24 +01:00
Alex Ford	06e435fd84	Ruby: remove YAML.load_file arg0 as an unsafe deserialization sink	2022-09-26 11:26:30 +01:00
erik-krogh	46b5bf32f9	update alert-messsages of java queries	2022-09-26 12:15:25 +02:00
Marcono1234	c40b6285a2	Java: Adjust `ImpossibleJavadocThrows.ql`	2022-09-26 12:08:43 +02:00
Anders Schack-Mulligen	f4ef4342c2	Merge pull request #10558 from aschackmull/java/static-init-vector-perf Java: Improve performance of StaticInitializationVector.	2022-09-26 10:50:49 +02:00
Tom Hvitved	257bcefaf9	Merge pull request #10548 from hvitved/ruby/call-graph-tests Ruby: Add call graph tests for unsupported constructs	2022-09-26 10:47:23 +02:00
Harry Maclean	fa20a476a6	Add test code	2022-09-26 20:56:11 +13:00
Harry Maclean	9f234e9f5a	Ruby: Merge duplicate tests	2022-09-26 20:56:11 +13:00
Harry Maclean	7b9519fe7c	Ruby: Fix import	2022-09-26 20:56:11 +13:00
Harry Maclean	7d3f9580ff	Ruby: QLDoc fix	2022-09-26 20:56:11 +13:00
Harry Maclean	9f99a3ca1f	Ruby: Model sanitize ActionView helper	2022-09-26 20:56:11 +13:00
Harry Maclean	9e625acd3d	Ruby: QLDoc fix	2022-09-26 20:56:11 +13:00
Harry Maclean	1d693d336f	Ruby: Model javascript_include_tag and friends	2022-09-26 20:56:09 +13:00
Harry Maclean	35a05f6dea	Ruby: Add summaries for ActiveSupport::SafeBuffer	2022-09-26 20:55:05 +13:00
Harry Maclean	ed0c85e3af	Ruby: Model ActionView helper XSS sinks	2022-09-26 20:55:04 +13:00
Chris Smowton	f9ba190812	Merge pull request #9830 from smowton/smowton/fix/kotlin-annotation-class-accessors Kotlin: annotation properties should be java.lang.Class not KClass	2022-09-26 08:34:30 +01:00
Chris Smowton	2a2b939078	Lint	2022-09-25 16:48:10 +01:00
Marcono1234	fd99ae78b3	Java: Rename predicate to `getATypeInScope`	2022-09-25 14:44:16 +02:00
Chris Smowton	f774467892	Kotlin: annotation properties should be java.lang.Class not KClass As documented at https://kotlinlang.org/docs/annotations.html#constructors, annotation properties of type KClass get rewritten when targeting the JVM.	2022-09-25 11:53:50 +01:00
Chris Smowton	a8197b27aa	Merge pull request #10561 from github/henrymercer/go-consistent-query-id Go: Use a consistent query identifier for successfully extracted files	2022-09-24 17:22:56 +01:00
Chris Smowton	9aebe87c67	Merge pull request #10523 from smowton/smowton/admin/jdk18-extractor-test-changes Java: Disable Kotlin element of test re: database inconsistency exposed by JDK18 extractor upgrade	2022-09-24 17:00:10 +01:00
Chris Smowton	8ce176f2dc	Merge pull request #10545 from github/dependabot/github_actions/actions/upload-artifact-3 Bump actions/upload-artifact from 2 to 3	2022-09-24 16:57:31 +01:00
Chris Smowton	60f6772f9e	Merge pull request #10542 from github/smowton/fix/kotlin-unit-testing-plugin-version Kotlin unit tests: use best plugin version compatible with environment kotlinc	2022-09-24 16:42:59 +01:00
Erik Krogh Kristensen	c2b5c39436	Merge pull request #10507 from erik-krogh/cpp-followMsg CPP: Make more alert-messages follow the style guide	2022-09-24 17:26:11 +02:00
Jami Cogswell	9b4201f880	update FileService	2022-09-23 22:46:55 -04:00
Jami Cogswell	1e01657577	add onBind to FileService to see if it fixes Java Language Tests failure	2022-09-23 18:59:27 -04:00
Jami Cogswell	9acda05dbd	update Service stub	2022-09-23 18:59:27 -04:00
Jami Cogswell	65f3ae9829	clean up files	2022-09-23 18:59:27 -04:00
Jami Cogswell	7e13610d24	minor qldoc update	2022-09-23 18:59:27 -04:00
Jami Cogswell	24b34cd32f	add a few more tests, and some clean-up	2022-09-23 18:59:27 -04:00
Jami Cogswell	7a96727c59	add tests	2022-09-23 18:59:27 -04:00
Jami Cogswell	367c31bf17	add change note	2022-09-23 18:59:27 -04:00
Jami Cogswell	decba39c09	add service flow sources	2022-09-23 18:59:27 -04:00
Dave Bartolomeo	3bd456e52d	Merge pull request #10565 from github/post-release-prep/codeql-cli-2.11.0 Post-release preparation for codeql-cli-2.11.0	2022-09-23 18:13:59 -04:00
Mathias Vorreiter Pedersen	79c0178a7c	Merge pull request #10564 from geoffw0/swiftregression	2022-09-23 22:05:46 +01:00
github-actions[bot]	6cef0af5df	Post-release preparation for codeql-cli-2.11.0	2022-09-23 21:01:40 +00:00
Geoffrey White	ed3d3e4ff0	Swift: fix regression.	2022-09-23 21:01:25 +01:00
Robert Marsh	b93a2b06bf	C++: prototype for off-by-one in array-typed field	2022-09-23 14:38:06 -04:00
Felicity Chapman	e96377572e	Merge pull request #10553 from github/8032-python-2-deprecation Minor updates to reflect recommendations for Python support	2022-09-23 19:09:01 +01:00
Felicity Chapman	8920d73f38	Fix typo in footnote reference	2022-09-23 18:40:01 +01:00
Felicity Chapman	a7f23b9cc7	Minor updates to reflect recommendations for Python support	2022-09-23 18:40:01 +01:00
Alex Ford	d94b196843	Ruby: fix documentation	2022-09-23 16:56:33 +01:00
Mathias Vorreiter Pedersen	73f279d6e7	Merge pull request #10555 from MathiasVP/testcase-for-php-cve C++: Fix missing bounds in range analysis	2022-09-23 16:55:51 +01:00
Robert Marsh	c2dfbd47a3	Merge pull request #10398 from MathiasVP/further-work-on-buffer-over-queries C++: Further work on buffer-overflow queries	2022-09-23 11:06:32 -04:00
Henry Mercer	8f9dafcce9	Go: Use a consistent query identifier for successfully extracted files Update the query identifier for `Diagnostics/SuccessfullyExtractedFiles.ql` to be consistent with other languages.	2022-09-23 16:02:36 +01:00
Alex Ford	364bc883ba	Ruby: add YAML.load_file as an unsafe deserialization sink	2022-09-23 15:54:15 +01:00

... 92 93 94 95 96 ...

48840 Commits