hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-10 04:01:11 +01:00
Code Issues Packages Projects Releases Wiki Activity
50,816 Commits 1,689 Branches 160 Tags
codeql-cli/v2.12.4
Commit Graph

50816 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tom Hvitved
c2d843f96b CI: Change --ram value from 52G to 50G in codeql tests 2022-12-05 09:35:56 +01:00
Tony Torralba
9d2b04928d Fix qhelp after suggestions 2022-12-05 09:16:27 +01:00
Tony Torralba
6e7c7c245b Update swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp 
Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
 2022-12-05 08:47:18 +01:00
Paolo Tranquilli
a0d7043615 Swift: always upload integration test logs 
This way we can get logs also in case we cancelled the job due to a test
hanging indefinitely (which is happening from time to time to the Xcode
test).
 2022-12-05 08:32:36 +01:00
Alvaro Muñoz
7fe4108a0b add change note 2022-12-03 16:37:14 +01:00
Alvaro Muñoz
fc56843c04 improve predicate QLdoc 2022-12-03 16:34:14 +01:00
Felicity Chapman
dea9adbad4 Merge branch 'codeql-cli-2.11.5' into felicitymay-8441-detective 2022-12-02 23:48:23 +00:00
Felicity Chapman
2b24870a3d Merge pull request #11468 from github/felicitymay-8441-basic-query-2 
LGTM deprecation: Update basic queries to use VS Code
 2022-12-02 23:47:51 +00:00
Porcupiney Hairs
15c58dee5f Golang : Add SQL sinks for gorqlite and GoFrame frameworks 2022-12-03 03:34:07 +05:30
Alvaro Muñoz
7e0e56dadc Added two new CMDi sinks fot python's stdlib 2022-12-02 22:16:40 +01:00
Tiferet Gazit
79d8444b94 Merge pull request #11532 from github/tiferet/endpoint-filter-test 
ATM: Test for endpoints scored at inference time
 2022-12-02 13:13:52 -08:00
SiaraMist
a1b6bfb270 Initial updates for CodeQL template 2022-12-02 13:07:25 -08:00
Chris Smowton
ff4baf096f Don't add name mangling to top-level internal functions 
Turns out kotlinc only adds this sort of name mangling to class member functions
 2022-12-02 20:16:19 +00:00
Chris Smowton
1c0494ec53 Extract a no-arg constuctor whenever a Kotlin class has default values for all parameters 2022-12-02 20:07:43 +00:00
Ed Minnix
7c4bd509a7 Java: add AssetLoader example to WebView file access documentation 2022-12-02 14:43:52 -05:00
tiferet
93e3c72c6a Test for contradictory endpoint characteristics 2022-12-02 10:29:39 -08:00
Jami
edfcc0cd6d Merge pull request #11487 from jcogs33/jcogs33/supportedexternalapis-telemetry-query 
Java/C#: add SupportedExternalApis telemetry query
 2022-12-02 13:27:51 -05:00
Felicity Chapman
5a57844dab Merge pull request #11503 from github/felicitymay-8441-next-batch 
LGTM deprecation: a few more references missed in earlier PRs
 2022-12-02 18:13:00 +00:00
tiferet
d211decfb4 Fix error in last commit 2022-12-02 09:03:44 -08:00
Mauro Baluda
04f1fe523a Update Test.java 2022-12-02 18:01:10 +01:00
Tiferet Gazit
c0aae3d68e Apply suggestions from code review 
Co-authored-by: Stephan Brandauer <kaeluka@github.com>
 2022-12-02 09:00:45 -08:00
Mauro Baluda
f3f8f35069 Update InsecureCookie.ql 
Support interprocedural setting of cookie security
 2022-12-02 17:37:23 +01:00
Paolo Tranquilli
a11756bad1 Merge pull request #11542 from github/alexdenisov/canonical-case 
Swift: add a test case showing case canonicalization
 2022-12-02 17:12:03 +01:00
Chris Smowton
50c85f6e5b Merge pull request #11545 from github/post-release-prep/codeql-cli-2.11.5 
Post-release preparation for codeql-cli-2.11.5
 2022-12-02 15:27:47 +00:00
Erik Krogh Kristensen
c4cb410970 Merge pull request #11472 from erik-krogh/exit-code 
JS: make the JS autobuilder consistent with Ruby when no JS code was detected
 2022-12-02 16:01:02 +01:00
Erik Krogh Kristensen
1c7cae4620 Merge pull request #11547 from mattrothenberg/main 
fix: use WHATWG URL for JS examples
 2022-12-02 16:00:13 +01:00
tiferet
d17383d98c Add XssThroughDom 2022-12-02 06:59:32 -08:00
tiferet
2e20abca90 Undo error from previous commit 
Oops, now I see why that wasn't private
 2022-12-02 06:59:31 -08:00
tiferet
294f34bf07 Small improvement 
Not strictly needed, but better to keep things private when possible
 2022-12-02 06:59:31 -08:00
tiferet
a317f2bfe2 Test for endpoints scored at inference time 
Adds a test to detect changes in the endpoints that get scored at inference time.
 2022-12-02 06:59:31 -08:00
Mathias Vorreiter Pedersen
2653458a39 Merge pull request #11537 from MathiasVP/iterator-model-changes 
C++: Change iterator models
 2022-12-02 14:57:21 +00:00
Paolo Tranquilli
f8386e753a Merge pull request #11522 from github/redsun82/swift-integration-test-dbs 
Swift: upload test logs as artifacts for integration tests
 2022-12-02 15:35:59 +01:00
Edward Minnix III
55090ecb65 Java: Typos and minor fixes 
Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
 2022-12-02 09:17:41 -05:00
Michael Nebel
bb716ddb80 Merge pull request #11499 from michaelnebel/java/kotlinstd 
Kotlin: Migrate standard library models to data extensions.
 2022-12-02 14:44:50 +01:00
Matt Rothenberg
95f994a82b Update RequestForgeryBad.js 2022-12-02 14:17:37 +01:00
Matt Rothenberg
7d674e7cdc set base URL 2022-12-02 14:17:17 +01:00
Felicity Chapman
7aca35d52b Apply suggestions from code review 2022-12-02 13:09:38 +00:00
Matt Rothenberg
c49e9e8503 fix: use let for subdomain assignment 2022-12-02 14:07:39 +01:00
Felicity Chapman
42a438cdcb Apply suggestions from code review 
Co-authored-by: Michael B. Gale <mbg@github.com>
 2022-12-02 13:06:32 +00:00
Alex Denisov
f5ddbd6abb Swift: add a test case showing case canonicalization 2022-12-02 14:06:21 +01:00
AlexDenisov
691188bc48 Merge pull request #11523 from github/alexdenisov/preserve-symlinks 
Swift: resolve symlinks conditionally
 2022-12-02 14:05:13 +01:00
Matt Rothenberg
a453405365 Update RequestForgeryBad.js 2022-12-02 14:03:37 +01:00
Matt Rothenberg
2ae0c7e115 Update RequestForgeryGood.js 2022-12-02 14:02:54 +01:00
Owen Mansel-Chan
d3e06ee290 Merge pull request #11431 from owen-mc/go/update-qldoc 
Make qldoc clearer about behaviour of override
 2022-12-02 12:19:16 +00:00
Geoffrey White
cf3345ee8f Swift: Revert security-severity on CWE-321, for now. 2022-12-02 12:01:43 +00:00
Chris Smowton
fef03a0806 Merge pull request #11540 from github/smowton/fix/path-injection-example-syntax-error 
Java: fix syntax error in path-injection example fix
 2022-12-02 11:47:53 +00:00
Chris Smowton
194b754880 Merge pull request #11525 from github/mbg/add/go.work 
Add go.work file
 2022-12-02 11:47:31 +00:00
github-actions[bot]
5e35785fd0 Post-release preparation for codeql-cli-2.11.5 2022-12-02 11:37:44 +00:00
Michael Nebel
309807796c Java: Deprecate ModelCsv classes. 2022-12-02 12:20:22 +01:00
Michael Nebel
b80829a3a0 Java/Kotlin: Cleanup files needed for inline models. 2022-12-02 12:20:22 +01:00