codeql

mirror of https://github.com/github/codeql.git synced 2025-12-24 20:56:33 +01:00

Author	SHA1	Message	Date
dependabot[bot]	5e2f9e1568	build(deps): bump serde_json from 1.0.92 to 1.0.93 in /ql Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.92 to 1.0.93. - [Release notes](https://github.com/serde-rs/json/releases) - [Commits](https://github.com/serde-rs/json/compare/v1.0.92...v1.0.93) --- updated-dependencies: - dependency-name: serde_json dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-02-09 03:09:08 +00:00
dependabot[bot]	33e8414fc4	build(deps): bump serde_json from 1.0.91 to 1.0.92 in /ql Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.91 to 1.0.92. - [Release notes](https://github.com/serde-rs/json/releases) - [Commits](https://github.com/serde-rs/json/compare/v1.0.91...v1.0.92) --- updated-dependencies: - dependency-name: serde_json dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-02-06 03:29:59 +00:00
dependabot[bot]	373148decd	Bump tracing from 0.1.35 to 0.1.37 in /ql Bumps [tracing](https://github.com/tokio-rs/tracing) from 0.1.35 to 0.1.37. - [Release notes](https://github.com/tokio-rs/tracing/releases) - [Commits](https://github.com/tokio-rs/tracing/compare/tracing-0.1.35...tracing-0.1.37) --- updated-dependencies: - dependency-name: tracing dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-02-01 03:11:28 +00:00
dependabot[bot]	597c71011e	Bump tracing-subscriber from 0.3.15 to 0.3.16 in /ql Bumps [tracing-subscriber](https://github.com/tokio-rs/tracing) from 0.3.15 to 0.3.16. - [Release notes](https://github.com/tokio-rs/tracing/releases) - [Commits](https://github.com/tokio-rs/tracing/compare/tracing-subscriber-0.3.15...tracing-subscriber-0.3.16) --- updated-dependencies: - dependency-name: tracing-subscriber dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-01-31 13:09:13 +00:00
dependabot[bot]	8410e46067	Bump flate2 from 1.0.24 to 1.0.25 in /ql Bumps [flate2](https://github.com/rust-lang/flate2-rs) from 1.0.24 to 1.0.25. - [Release notes](https://github.com/rust-lang/flate2-rs/releases) - [Commits](https://github.com/rust-lang/flate2-rs/compare/1.0.24...1.0.25) --- updated-dependencies: - dependency-name: flate2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-01-31 12:48:10 +00:00
dependabot[bot]	423bab54d3	Bump num_cpus from 1.13.1 to 1.14.0 in /ql Bumps [num_cpus](https://github.com/seanmonstar/num_cpus) from 1.13.1 to 1.14.0. - [Release notes](https://github.com/seanmonstar/num_cpus/releases) - [Changelog](https://github.com/seanmonstar/num_cpus/blob/master/CHANGELOG.md) - [Commits](https://github.com/seanmonstar/num_cpus/compare/v1.13.1...v1.14.0) --- updated-dependencies: - dependency-name: num_cpus dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-01-31 12:05:11 +00:00
dependabot[bot]	198b97ca8d	Bump serde from 1.0.140 to 1.0.152 in /ql Bumps [serde](https://github.com/serde-rs/serde) from 1.0.140 to 1.0.152. - [Release notes](https://github.com/serde-rs/serde/releases) - [Commits](https://github.com/serde-rs/serde/compare/v1.0.140...v1.0.152) --- updated-dependencies: - dependency-name: serde dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-01-31 11:48:44 +00:00
dependabot[bot]	807b715320	Bump tree-sitter from 0.20.8 to 0.20.9 in /ql Bumps [tree-sitter](https://github.com/tree-sitter/tree-sitter) from 0.20.8 to 0.20.9. - [Release notes](https://github.com/tree-sitter/tree-sitter/releases) - [Commits](https://github.com/tree-sitter/tree-sitter/commits) --- updated-dependencies: - dependency-name: tree-sitter dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-01-31 11:27:40 +00:00
dependabot[bot]	e3afb1640a	Bump regex from 1.6.0 to 1.7.1 in /ql Bumps [regex](https://github.com/rust-lang/regex) from 1.6.0 to 1.7.1. - [Release notes](https://github.com/rust-lang/regex/releases) - [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md) - [Commits](https://github.com/rust-lang/regex/compare/1.6.0...1.7.1) --- updated-dependencies: - dependency-name: regex dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-01-30 11:19:30 +00:00
dependabot[bot]	f430e83fca	Bump serde_json from 1.0.82 to 1.0.91 in /ql Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.82 to 1.0.91. - [Release notes](https://github.com/serde-rs/json/releases) - [Commits](https://github.com/serde-rs/json/compare/v1.0.82...v1.0.91) --- updated-dependencies: - dependency-name: serde_json dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-01-30 10:36:14 +00:00
erik-krogh	54c4c23b46	support the NewEntity module in QL-for-QL	2023-01-30 10:34:06 +01:00
erik-krogh	5a4fe71529	Revert "update clap to 3.0 in QL-for-QL" This reverts commit `d072ed969e`.	2023-01-17 12:38:30 +01:00
Erik Krogh Kristensen	50b9f5bba0	Merge pull request #11892 from erik-krogh/clap QL: update clap to 3.0 in QL-for-QL	2023-01-17 12:33:18 +01:00
erik-krogh	587adea809	QL: add --working-dir to qltest.cmd to fix qltest	2023-01-16 15:37:14 +01:00
erik-krogh	1d62751e15	test QL-for-QL on mac/win	2023-01-16 15:36:55 +01:00
erik-krogh	d072ed969e	update clap to 3.0 in QL-for-QL	2023-01-16 12:34:56 +01:00
erik-krogh	6914e9a17a	Merge branch 'main' into atorralba/ql/omittable-exists	2023-01-11 13:09:38 +01:00
Tony Torralba	ecf568629b	Add ExprAggregate as a negative edge in getConjunctionParentRec	2023-01-11 09:41:16 +01:00
Tony Torralba	ae8c75ac97	Generalize ConjunctionParent	2023-01-10 16:08:42 +01:00
Tony Torralba	f6c3f77602	QL: Remove omittable exists variables	2023-01-10 13:37:58 +01:00
yoff	c01ce955ba	Merge pull request #11778 from yoff/shared/inline-tests Shared: Inline test expectations	2023-01-09 13:21:18 +01:00
Rasmus Lerchedahl Petersen	c3b3c05cf3	Revert "Merge pull request #37 from erik-krogh/shared/inline-tests" This reverts commit `65fe9abcfe`, reversing changes made to `08e9d3391f`.	2023-01-05 09:19:43 +01:00
Henry Mercer	b96160f0f3	Merge pull request #11783 from github/henrymercer/specify-baseline-languages Specify language names in extractor packs	2023-01-04 10:42:18 +00:00
Erik Krogh Kristensen	cedc9c0bff	Merge pull request #11582 from erik-krogh/heuristics JS: Add experimental variants of common security queries with more sources	2023-01-04 10:46:19 +01:00
erik-krogh	9e63390c78	fix that ql/cand-missing-nomagic had a catastrophic join-order	2022-12-23 21:20:30 +01:00
Erik Krogh Kristensen	393a8c2bd8	Merge pull request #11630 from erik-krogh/useInstanceOf QL4QL: enable medium precision queries, and make the "suggest instanceof" query louder	2022-12-23 14:22:23 +01:00
Henry Mercer	6be790929d	Specify language names in extractor packs	2022-12-23 13:15:04 +00:00
Tony Torralba	36ca97e4f6	Add exclusions to reduce FP Predicate parameters that have a database type are excluded. Also, uses of the exists variable in an agreggation or another quantifier are excluded.	2022-12-22 11:15:07 +01:00
erik-krogh	b3dd50bc36	inline Location into the shared implementation of InlineExpectationsTest	2022-12-22 11:09:43 +01:00
Rasmus Lerchedahl Petersen	f28eb6bf31	ql4ql: use shared inline tests - add util shared pack to ql - remove from identical-files	2022-12-22 10:20:07 +01:00
erik-krogh	38bd4d9b12	update expected output to have more copies of "T"	2022-12-21 21:45:59 +01:00
erik-krogh	dbdc7275fc	have unique parents, also for mock AST nodes	2022-12-21 21:38:52 +01:00
erik-krogh	5728e3ee8f	Merge branch 'main' into equiv	2022-12-21 21:28:32 +01:00
Tony Torralba	7d0018c897	Update ql/ql/src/queries/style/OmittableExists.ql	2022-12-21 17:16:34 +01:00
Tony Torralba	ac0c42c5c6	Apply suggestions from code review Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2022-12-21 16:16:58 +01:00
Tony Torralba	227e099854	Apply code review suggestions Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2022-12-21 12:40:29 +01:00
Tony Torralba	aa1d49cb95	Add OmittableExists QL-for-QL query	2022-12-21 12:26:58 +01:00
erik-krogh	ab9855e196	fix `getAnnotation()` for new-type branches with parameters	2022-12-20 15:55:54 +01:00
erik-krogh	57f429ec5d	change this = this to any()	2022-12-20 13:56:25 +01:00
Erik Krogh Kristensen	0cc3232c10	fix typo Co-authored-by: Arthur Baars <aibaars@github.com>	2022-12-20 13:56:25 +01:00
erik-krogh	0e426090f2	update expected output	2022-12-20 13:56:23 +01:00
erik-krogh	605bfd6e93	move the "I don't care about parent relation on mocks" hack into the predicate, so the tests dont fail	2022-12-20 13:55:49 +01:00
erik-krogh	54072d29f1	add explicit this	2022-12-20 13:55:49 +01:00
erik-krogh	49277f553f	model the last parts of the EquivalenceRelation module	2022-12-20 13:55:49 +01:00
erik-krogh	a11e618cfc	mock parameters	2022-12-20 13:55:49 +01:00
erik-krogh	4feb48ce5f	classless predicate, used to model the edgeSig predicate	2022-12-20 13:55:49 +01:00
erik-krogh	4dc52379ad	add a mock TypeExpr, and use it	2022-12-20 13:55:49 +01:00
erik-krogh	5db2f0aba0	mock classes, and add a Mock T class to QlBuiltins	2022-12-20 13:55:49 +01:00
erik-krogh	b7e0d1f8b3	don't include mock Ast nodes in PrintAst.ql	2022-12-20 13:55:49 +01:00
erik-krogh	51d5e881de	add an Ast mocking library, and use it to create mocks of the QlBuiltins and EquivalenceRelation modules	2022-12-20 13:55:48 +01:00

1 2 3 4 5 ...

732 Commits