codeql

mirror of https://github.com/github/codeql.git synced 2026-02-10 12:11:07 +01:00

Author	SHA1	Message	Date
erik-krogh	f09e10f61f	delete redundant cast	2022-12-08 15:34:26 +01:00
Mathias Vorreiter Pedersen	7c6918de98	Merge pull request #11543 from MathiasVP/refactor-isdef-isuse C++: Refactor `isDef` and `isUse` in preparation for iterator flow	2022-12-08 14:31:36 +00:00
Jeroen Ketema	33fa76f911	C++: Add change note	2022-12-08 15:22:42 +01:00
Jeroen Ketema	b216c79992	C++: Accept test changes	2022-12-08 15:22:41 +01:00
Jeroen Ketema	f35b7f8fe8	C++: Model `scanf` and `fscanf` as flow sources	2022-12-08 15:22:41 +01:00
Anders Schack-Mulligen	d157e13318	Java: Switch DispatchFlow to typetracking.	2022-12-08 14:58:44 +01:00
Anders Schack-Mulligen	ae1373c2d6	Shared: Bugfix typetracking source-sink hasFlow.	2022-12-08 14:58:05 +01:00
Chris Smowton	85ee4e6ca1	Merge pull request #11578 from retanoj/MybatisSqli Java: Add MyBatis Sql Injection no @Param case	2022-12-08 13:53:44 +00:00
Chris Smowton	37b2b0a128	Use set literal instead of disjunction	2022-12-08 13:49:53 +00:00
Mathias Vorreiter Pedersen	f814ce7f10	Merge branch 'mathiasvp/replace-ast-with-ir-use-usedataflow' into refactor-isdef-isuse	2022-12-08 13:25:20 +00:00
Mathias Vorreiter Pedersen	0a1097d735	C++: Accept test changes to 'sources-and-sinks.cpp'.	2022-12-08 13:17:35 +00:00
Mathias Vorreiter Pedersen	4fd6ac5657	Merge branch 'main' into mathiasvp/replace-ast-with-ir-use-usedataflow	2022-12-08 13:10:18 +00:00
Geoffrey White	24ce1c27bc	Swift: Autoformat.	2022-12-08 13:09:37 +00:00
Henry Mercer	3036b15af2	Merge branch 'main' into henrymercer/check-query-ids	2022-12-08 13:05:46 +00:00
Henry Mercer	280bb6864f	Merge pull request #11604 from github/codeql-ci/atm/release-0.4.3 JS: Bump version numbers of ML-powered packs after 0.4.3 release	2022-12-08 13:04:16 +00:00
Henry Mercer	5674251839	Python: Disable `TarSlipImprov` qhelp	2022-12-08 13:03:31 +00:00
Geoffrey White	e288b07099	Update swift/ql/src/queries/Summary/SummaryStats.ql Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2022-12-08 13:02:58 +00:00
Mathias Vorreiter Pedersen	6897b20722	Merge pull request #11601 from MathiasVP/keep-std-string-iterator	2022-12-08 12:59:33 +00:00
Michael Nebel	670ae6c84c	Merge pull request #11593 from michaelnebel/csharp/patternmatchspan C#: Pattern match Span<char> and ReadOnlySpan<char> against a constant string.	2022-12-08 13:53:00 +01:00
Michael Nebel	5883957a67	Merge pull request #11589 from michaelnebel/csharp/numericintptr C#: nint/System.IntPtr and nuint/System.UIntPtr are indistinguishable…	2022-12-08 13:52:44 +01:00
Chris Smowton	8789dfb655	Make river-crossing example comply with the CodeQL style guide	2022-12-08 12:33:42 +00:00
Mathias Vorreiter Pedersen	36d0903733	C++: Simplify 'getSourceVariable'.	2022-12-08 12:29:15 +00:00
Chris Smowton	81110b19e7	Merge pull request #11612 from smowton/smowton/admin/merge-rc38-into-main Merge rc/3.8 into main	2022-12-08 12:25:59 +00:00
Chris Smowton	045e3a2cf3	Kotlin: extract callable modality	2022-12-08 12:22:50 +00:00
Geoffrey White	07ea006cee	Swift: Add support for CSV modelled sinks as well.	2022-12-08 11:36:55 +00:00
Geoffrey White	dba344451f	Swift: Add UncontrolledFormatStringExtensions.qll.	2022-12-08 11:32:50 +00:00
Chris Smowton	0d2474bd55	Autoformat	2022-12-08 11:30:53 +00:00
ALJI Mohamed	9336f4f1a2	Considering the use of contextlib.closing() method	2022-12-08 12:26:59 +01:00
Chris Smowton	49bc524fd0	Merge remote-tracking branch 'origin/rc/3.8' into smowton/admin/merge-rc38-into-main	2022-12-08 11:12:30 +00:00
Rasmus Wriedt Larsen	d684dbdf5c	Merge pull request #10656 from porcupineyhairs/PyPamImprove Python: Improve the PAM authentication bypass query	2022-12-08 11:59:10 +01:00
Rasmus Wriedt Larsen	a826c4f48b	Merge branch 'main' into call-graph-code	2022-12-08 11:39:30 +01:00
Jeroen Ketema	a6bc9fd10f	Merge pull request #11591 from jketema/getenv C++: Model `secure_getenv` and `_wgetenv` as local flow sources	2022-12-08 10:44:28 +01:00
Asger F	f2b99c5fff	Docs: Update README to mention Python 2 requirement	2022-12-08 09:50:01 +01:00
Jeroen Ketema	fc49ede33d	C++: Add change note	2022-12-08 09:44:23 +01:00
Jeroen Ketema	a2dac3a41e	C++: Move remote flow sink test and also handle local and remote sinks	2022-12-08 09:36:19 +01:00
Mathias Vorreiter Pedersen	ba3d50a462	Merge pull request #11566 from MathiasVP/skip-lvalue-types	2022-12-08 07:53:20 +00:00
Paolo Tranquilli	0058bf4443	Swift: add timeout to inetgration tests on macOS	2022-12-08 08:44:29 +01:00
Jami Cogswell	e9e5f92603	Java: update notModeled for negative numbers	2022-12-07 21:46:52 -05:00
retanoj	0edfc6e01e	greedy matching	2022-12-08 09:23:24 +08:00
Mathias Vorreiter Pedersen	9f85175ee1	C++: Fix blowup in 'stripPointer'.	2022-12-07 22:35:37 +00:00
Mathias Vorreiter Pedersen	5ae3228928	C++: Fix TODO.	2022-12-07 22:34:10 +00:00
Mathias Vorreiter Pedersen	68f0997d87	C++: Generalize loads and stores.	2022-12-07 22:34:10 +00:00
Mathias Vorreiter Pedersen	589f7bdbcc	C++: Introduce BaseSourceVariableInstruction.	2022-12-07 22:34:03 +00:00
Jami Cogswell	aa7e6d7811	Java: add negative numbers	2022-12-07 17:17:35 -05:00
Aditya Sharad	c7725ec37c	Merge pull request #11605 from github/smowton/admin/merge-2.11.5-into-rc38 Merge codeql-cli-2.11.5 into rc/3.8	2022-12-07 14:09:05 -08:00
Henry Mercer	78f15755d7	Merge branch 'main' into codeql-ci/atm/release-0.4.3	2022-12-07 20:49:26 +00:00
Chris Smowton	32494859cd	Merge remote-tracking branch 'origin/codeql-cli-2.11.5' into smowton/admin/merge-2.11.5-into-rc38	2022-12-07 20:06:08 +00:00
github-actions[bot]	d577eeeea8	JS: Bump version of ML-powered library and query packs to 0.4.4	2022-12-07 20:05:30 +00:00
github-actions[bot]	9702ea02fb	JS: Bump patch version of ML-powered library and query packs	2022-12-07 20:01:33 +00:00
Ian Lynagh	6267da44ae	Kotlin: Improve diagnostic limit message The message saying that the limit was exceeded is now given at the same severity as the original message.	2022-12-07 18:33:35 +00:00

... 66 67 68 69 70 ...

51820 Commits