54887 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Mathias Vorreiter Pedersen	11932a54e8	Merge branch 'main' into mathiasvp/replace-ast-with-ir-use-usedataflow	2023-03-15 11:13:49 +00:00
Tony Torralba	341590f9ad	org.kohsuke.stapler.framework.io tests	2023-03-15 11:43:52 +01:00
Mathias Vorreiter Pedersen	9bd3347a3c	C++: Remove import.	2023-03-15 10:33:47 +00:00
Tony Torralba	e0c852c0b8	Fix stubs and test expectations	2023-03-15 11:33:02 +01:00
erik-krogh	cc3efcd35e	also restrict allowImplicitRead in unsafe-code-construction	2023-03-15 11:11:20 +01:00
Mathias Vorreiter Pedersen	623f6ff701	C++: Move things around so that 'getAdditionalFlowIntoCallNodeTerm' is in the same stage as 'DataFlowImplCommon'.	2023-03-15 10:01:47 +00:00
Mathias Vorreiter Pedersen	deb43c21e6	C++: Use local flow instead of GVN to find parameters that are used in switch statements.	2023-03-15 10:00:47 +00:00
erik-krogh	2133d1a5ab	Merge branch 'main' into more-shell-taint	2023-03-15 10:54:30 +01:00
Anders Schack-Mulligen	6408d7cbbe	Java: Refactor RsaWithoutOaep.	2023-03-15 10:37:54 +01:00
Anders Schack-Mulligen	b3b5c2c767	Java: Refactor UnsafeContentUriResolution.	2023-03-15 10:32:58 +01:00
Anders Schack-Mulligen	4b814ec71c	Java: Refactor SensitiveCommunication.ql.	2023-03-15 10:32:35 +01:00
Anders Schack-Mulligen	ca8e013618	Java: Refactor FragmentInjection.	2023-03-15 10:23:21 +01:00
erik-krogh	a72436f6f1	recognize more express URL related sources	2023-03-15 10:14:31 +01:00
Anders Schack-Mulligen	5bd530f570	Java: Refactor IntentUriPermissionManipulation.	2023-03-15 10:13:28 +01:00
Anders Schack-Mulligen	b14b95cd79	Java: Refactor LogInjection	2023-03-15 10:10:02 +01:00
Anders Schack-Mulligen	abf3abdc65	Java: Delete DataFlowForOnActivityResult.	2023-03-15 09:47:21 +01:00
Anders Schack-Mulligen	bea7c43584	Java: Delete DataFlowForSerializability	2023-03-15 09:42:02 +01:00
Anders Schack-Mulligen	e8a7139020	Merge pull request #12476 from aschackmull/java/refactor-dataflow-queries-2 ... Java: Refactor more dataflow queries to the new API	2023-03-15 09:40:32 +01:00
dependabot[bot]	f811436cff	Bump serde from 1.0.155 to 1.0.156 in /ql ... Bumps [serde](https://github.com/serde-rs/serde) from 1.0.155 to 1.0.156. - [Release notes](https://github.com/serde-rs/serde/releases) - [Commits](https://github.com/serde-rs/serde/compare/v1.0.155...v1.0.156) --- updated-dependencies: - dependency-name: serde dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-03-15 04:05:38 +00:00
Arthur Baars	fbe9823a42	Merge branch 'main' into henrymercer/polish-diagnostics	2023-03-14 23:42:33 +01:00
Henry Mercer	1454890a58	C#: Add new paragraphs before call to action	2023-03-14 21:52:23 +00:00
Henry Mercer	1394abcf98	JS: Update diagnostics IDs for consistency with rules	2023-03-14 21:44:19 +00:00
Henry Mercer	1f63c5d5e4	JS: Update parse error diagnostic name for consistency	2023-03-14 21:43:32 +00:00
Robert Marsh	623e39031c	C++: fix ModulusAnalysis test	2023-03-14 16:46:09 -04:00
Harry Maclean	604d5f0c71	Merge pull request #12510 from hmac/merge-ruby-extractor ... Ruby: Merge extractor crates	2023-03-15 09:41:07 +13:00
Harry Maclean	fd43ba0827	Update .github/workflows/ruby-build.yml ... Co-authored-by: Arthur Baars <aibaars@github.com>	2023-03-15 09:28:53 +13:00
Harry Maclean	6dcc884fe1	Ruby: Small doc change ... This is primarily to bust the actions cache, to test a change in the ruby-build workflow.	2023-03-15 08:42:24 +13:00
Harry Maclean	eefc4866ea	Ruby: build query pack in temporary directory ... This ensures we don't clobber any existing directories in the repo.	2023-03-15 08:20:23 +13:00
Harry Maclean	aaeb8a0aa0	Merge pull request #12493 from hmac/ar-sinks	2023-03-15 07:59:07 +13:00
Geoffrey White	959f93a766	Merge pull request #12520 from geoffw0/basetypefix ... Swift: Fix result type of NominalType.getABaseType.	2023-03-14 18:23:54 +00:00
Geoffrey White	a391c01d36	Swift: Fix result type of NominalType.getABaseType.	2023-03-14 17:36:30 +00:00
Henry Mercer	bc106873c1	C#: Fix casing of "CodeQL Action"	2023-03-14 17:24:30 +00:00
Henry Mercer	7e4f77bfb3	C#: Only serialize the location if it is present	2023-03-14 17:23:00 +00:00
Tony Torralba	fe1cc405eb	org.kohsuke.stapler.framework.adjunct tests	2023-03-14 18:21:38 +01:00
Tony Torralba	44f239f4a4	Fix org.kohsuke.stapler.framework.adjunct models	2023-03-14 18:21:19 +01:00
Henry Mercer	a6509c7a37	Ruby: Use rb prefix in diagnostic IDs for consistency with queries	2023-03-14 17:13:50 +00:00
Henry Mercer	769f9051af	Ruby: Serialize severities as lowercase	2023-03-14 17:09:25 +00:00
Henry Mercer	6fbc8261f2	Java: Add a full stop	2023-03-14 17:03:42 +00:00
Henry Mercer	770924455e	Java: Use Dotcom help links	2023-03-14 17:00:48 +00:00
Henry Mercer	ce96f009b7	Java: Capitalise HTTPS	2023-03-14 16:58:24 +00:00
Henry Mercer	819e0dfbf0	Java: Use "relevant" instead of "suspicious"	2023-03-14 16:54:14 +00:00
Henry Mercer	110cb64b7a	Java: Avoid reference to other diagnostics	2023-03-14 16:52:58 +00:00
Henry Mercer	4c329b7b62	Java: Remove "please" in diagnostics ... Per review from docs team	2023-03-14 16:46:06 +00:00
Tony Torralba	cbc0ba6ac6	org.apache.tools.zip tests	2023-03-14 17:41:20 +01:00
Tony Torralba	7455c27086	org.apache.tools.ant.taskdefs tests	2023-03-14 17:28:35 +01:00
Geoffrey White	237669aab7	Merge branch 'main' into dbsinks2	2023-03-14 16:26:36 +00:00
Tony Torralba	6aa9726223	org.apache.tools.ant tests	2023-03-14 17:20:31 +01:00
Geoffrey White	725d784be8	Swift: Make the same result presentation change to swift/cleartext-storage-preferences.	2023-03-14 16:13:26 +00:00
Tony Torralba	db9e305a56	org.apache.commons.jelly tests	2023-03-14 17:04:14 +01:00
Geoffrey White	bfbd3d95f9	Swift: Clean up the result message.	2023-03-14 16:03:55 +00:00