codeql

mirror of https://github.com/github/codeql.git synced 2026-02-06 18:21:07 +01:00

Author	SHA1	Message	Date
erik-krogh	a6c9af4182	add the html argument to the jQuery functions as an XSS sink	2023-03-03 11:09:53 +01:00
erik-krogh	94870b838f	add failing test	2023-03-03 11:08:33 +01:00
Nick Fyson	5869c36366	Merge branch 'main' into codeql-ci/atm/update-model-pack/ecb17d40286d14132b481c065a43459a7f0ba9059015b7a49c909c9f9ce5fec5	2023-03-03 10:03:22 +00:00
Alex Denisov	ae7a0c517c	Swift: do not allocate mangler statically	2023-03-03 10:28:08 +01:00
Alex Denisov	60c1505097	Swift: address review comments	2023-03-03 10:26:44 +01:00
erik-krogh	a928f4c9ef	add change-notes	2023-03-03 09:23:10 +01:00
erik-krogh	f96d6accbb	delete old deprecations	2023-03-03 09:23:02 +01:00
Paolo Tranquilli	1a19909abf	Merge pull request #12373 from github/redsun82/swift-qldoc Swift: turn on QLdoc check	2023-03-03 08:26:39 +01:00
Mathias Vorreiter Pedersen	959237e8d2	C++: Fix missing type for Phi nodes.	2023-03-02 22:48:10 +00:00
Mathias Vorreiter Pedersen	2963dc1cb1	C++: Include phi read nodes in SSA. There's a small fix to the mapping from 'global def -> use'. Finally, this commit also accepts a test failure related to new missing types for phi nodes. The fix for that is in the next commit.	2023-03-02 22:48:06 +00:00
Mathias Vorreiter Pedersen	b3f92fcf0f	C++: Add FN caused by missing static local initialization in SSA.	2023-03-02 22:37:52 +00:00
erik-krogh	fc9e63275f	only print a constant when catching an OOM	2023-03-02 22:14:29 +01:00
Erik Krogh Kristensen	094a2b0c46	Apply suggestions from code review Co-authored-by: Asger F <asgerf@github.com>	2023-03-02 22:14:17 +01:00
Alex Denisov	ffcb382705	Swift: only consider Builting and __ObjC declarations as lazy	2023-03-02 20:00:23 +01:00
github-actions[bot]	50c90bbc5c	ATM: Update model pack dependency of ML-powered model building and query packs	2023-03-02 17:31:03 +00:00
Geoffrey White	764a52354e	Merge pull request #12367 from geoffw0/nsstring2 Swift: Additional NSString taint test cases	2023-03-02 15:56:15 +00:00
Michael B. Gale	75b4a0e8ea	Add diagnostic checks to all integration tests	2023-03-02 15:25:49 +00:00
Paolo Tranquilli	162b995428	Swift: turn on QLdoc check	2023-03-02 16:16:12 +01:00
Anders Schack-Mulligen	b34f99f716	Dataflow: Add change notes.	2023-03-02 16:01:29 +01:00
Michael B. Gale	6c501d15b6	Make diagnostics visible everywhere	2023-03-02 14:53:53 +00:00
erik-krogh	88810420b1	add location to the parse-error diagnostics	2023-03-02 14:54:58 +01:00
erik-krogh	c460eae2e1	implement diagnostics	2023-03-02 14:54:54 +01:00
Jeroen Ketema	f6ce27075c	C++: Address review comments	2023-03-02 14:32:49 +01:00
Anders Schack-Mulligen	a498ab241b	Go: Fix query.	2023-03-02 13:53:37 +01:00
Mathias Vorreiter Pedersen	a1a2d7c469	Merge pull request #12355 from geoffw0/splittest Swift: Split the taint flow test.	2023-03-02 12:53:07 +00:00
Geoffrey White	27ec36298f	Swift: Understand binary pointwise operations.	2023-03-02 12:42:34 +00:00
Geoffrey White	ec2c58b416	Swift: Understand overflow binary bitwise operations.	2023-03-02 12:11:25 +00:00
Geoffrey White	1206b73d87	Swift: Understand overflow binary arithmetic operations.	2023-03-02 12:11:15 +00:00
Michael B. Gale	fd9b279ef9	Merge pull request #12217 from github/mbg/csharp/tsp-support	2023-03-02 11:47:30 +00:00
Geoffrey White	53f52df809	Swift: Add taint test cases for overflow, bitwise and pointwise arithmetic operations.	2023-03-02 11:41:31 +00:00
Geoffrey White	c42add2191	Swift: Add test cases for overflow and pointwise binary arithmetic operations.	2023-03-02 11:28:59 +00:00
Jeroen Ketema	7ce230af77	Update docs/codeql/codeql-language-guides/analyzing-data-flow-in-cpp-new.rst Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2023-03-02 11:58:29 +01:00
Geoffrey White	730532f96a	Swift: Add some (limited) test coverage for NSString <-> Data conversion.	2023-03-02 10:33:57 +00:00
Geoffrey White	1332309f59	Swift: Add some (limited) test coverage for String <-> NSString conversions.	2023-03-02 10:33:57 +00:00
Mathias Vorreiter Pedersen	c2efb4d232	Merge pull request #12350 from MathiasVP/no-standard-order-for-convertsIntoArgumentRev C++: Disable a bad standard order	2023-03-02 10:27:20 +00:00
Arthur Baars	9e5ef9cf9d	Merge pull request #12216 from aibaars/diagnostics-2 Ruby: improve diagnostic messages	2023-03-02 10:30:58 +01:00
Kasper Svendsen	9cac4bbe0f	ActionController: Prevent bad join	2023-03-02 10:02:08 +01:00
Tony Torralba	7705d5f513	Merge pull request #12357 from github/workflow/coverage/update Update CSV framework coverage reports	2023-03-02 09:30:38 +01:00
Michael Nebel	2525ac3dd2	C#: Use dependency injection in the auto builder for Diagnostic classifier.	2023-03-02 09:18:56 +01:00
Jeroen Ketema	87f0f1fb33	C++: Fix description of `asIndirectExpr` and `asParameter\1` in docs	2023-03-02 09:08:38 +01:00
github-actions[bot]	3b9de22af9	Add changed framework coverage reports	2023-03-02 00:18:47 +00:00
Geoffrey White	8e069b7686	Swift: Split the taint flow test.	2023-03-01 20:45:46 +00:00
yoff	65acf16ecc	Merge pull request #12320 from yoff/python/document-api-call-node Python: Document `API::CallNode`	2023-03-01 20:19:30 +01:00
Jeroen Ketema	c6dc55ef9b	C++: Update use-use dataflow docs to reflect what is going on in the library	2023-03-01 19:00:33 +01:00
Geoffrey White	bf6f6eec34	Merge pull request #12225 from geoffw0/nsstring Swift: Taint models for NSString	2023-03-01 16:30:06 +00:00
Tony Torralba	59bd1e5ab1	Merge pull request #12228 from github/java/mad-decls-triage-request-2276 Java: Update MaD sink decls after triage	2023-03-01 17:08:38 +01:00
Geoffrey White	f8079056ec	Swift: Fix test on Linux.	2023-03-01 15:47:30 +00:00
erik-krogh	6cd4cd332d	remove redundant imports	2023-03-01 16:25:01 +01:00
Mathias Vorreiter Pedersen	2f8d71762c	C++: Disable standard order for 'convertsIntoArgumentRev'.	2023-03-01 15:16:49 +00:00
Michael B. Gale	93a45fce5e	Simplify DiagnosticClassifier in CSharpAutobuilder	2023-03-01 14:58:49 +00:00

... 67 68 69 70 71 ...

54887 Commits