codeql

mirror of https://github.com/github/codeql.git synced 2025-12-24 12:46:34 +01:00

Author	SHA1	Message	Date
github-actions[bot]	0749af79d7	Add changed framework coverage reports	2023-06-28 00:18:40 +00:00
Robert Marsh	e90153fc47	C++: fix irreducible control flow logic	2023-06-27 16:52:45 -04:00
Alex Denisov	ea5eda0f22	Swift: adjust test expectations	2023-06-27 17:21:56 +02:00
Alex Denisov	af41dabc14	Swift: extend the frontend observer	2023-06-27 16:57:44 +02:00
Kasper Svendsen	656b4fc1aa	Merge pull request #13574 from kaspersv/kaspersv/cpp-remaining-implicit-this CPP: Enable implicit this warnings for remaining packs	2023-06-27 16:56:28 +02:00
Rasmus Wriedt Larsen	91b8ef6540	Merge pull request #13580 from kaspersv/kaspersv/python-remaining-implicit-this Python: Enable implicit this warnings for remaining packs	2023-06-27 16:42:03 +02:00
Ian Lynagh	4adecf0d15	Merge pull request #13586 from igfoo/igfoo/diag-limit Kotlin: Remove an out-of-date comment	2023-06-27 15:41:47 +01:00
Ian Lynagh	b0d2ca5df4	Merge pull request #13568 from igfoo/igfoo/android_lint Java: Tweak some android tests	2023-06-27 15:41:37 +01:00
Ian Lynagh	4415c364ac	Merge pull request #13542 from igfoo/igfoo/modality_final Kotlin: Remove an expected-no-getter exception	2023-06-27 15:41:27 +01:00
Koen Vlaswinkel	6812389fc8	C#: Fix external API name for nested types This fixes the name of reported external APIs for nested types. The `getDeclaringType().getUnboundDeclaration()`'s `toString()` method reports the name of the type, but not the name of the declaring type. This results in missing information in the `UnsupportedExternalAPIs.ql` query. For example, previously it would report: ``` GitHub.Nested#NestedClass.Test() ``` However, the `NestedClass` class does not exist in the namespace and is only a nested type within `MyFirstClass`. The correct name should be: ``` GitHub.Nested#MyFirstClass+NestedClass.Test() ``` This name also matches the format of MaD.	2023-06-27 16:31:06 +02:00
Koen Vlaswinkel	fcb2f1082c	Java: Fix external API name for nested types This fixes the name of reported external APIs for nested types. The `toString()` method of `getSourceDeclaration()` would report the name of a type, but not the name of the enclosing type. This results in missing information in the `UnsupportedExternalAPIs.ql` query. For example, previously it would report: ``` org.zapodot.junit.db.Builder#build() ``` However, the `Builder` class does not exist in the package and is only a nested type within `EmbeddedDatabaseRule`. The correct name should be: ``` org.zapodot.junit.db.EmbeddedDatabaseRule$Builder#build() ``` This name also matches the format of MaD.	2023-06-27 15:23:55 +02:00
Kasper Svendsen	085c85fe32	Merge pull request #13564 from kaspersv/kaspersv/ci-warn-on-implicit-this Add workflow to check for warnOnImplicitThis	2023-06-27 15:15:23 +02:00
Jeroen Ketema	bf771a1537	Merge pull request #13563 from jketema/clears-content C++: Implement `clearsContent` for IR dataflow	2023-06-27 15:13:47 +02:00
Kasper Svendsen	d1979197c7	CPP: Enable implicit this warnings for remaining packs	2023-06-27 14:44:24 +02:00
Ian Lynagh	d588f52262	Kotlin: Remove an out-of-date comment	2023-06-27 13:33:52 +01:00
Tony Torralba	a7c2a25cac	Merge pull request #12879 from atorralba/atorralba/java/command-injection-mad-sinks Java: Convert all command injection sinks to MaD format	2023-06-27 14:06:45 +02:00
Tony Torralba	6e20bd04e9	Merge pull request #13539 from atorralba/atorralba/java/url-to-string-model Java: Add URL.toString summary	2023-06-27 14:05:47 +02:00
Mathias Vorreiter Pedersen	51176bdff3	C++: Add Geoffrey's testcases.	2023-06-27 12:59:22 +01:00
Kasper Svendsen	62e2bea757	Merge pull request #13577 from kaspersv/kaspersv/go-remaining-implicit-this Go: Enable implicit this warnings for remaining packs	2023-06-27 13:51:05 +02:00
Kasper Svendsen	b4ef243733	Add workflow to check for warnOnImplicitThis	2023-06-27 13:48:04 +02:00
Jeroen Ketema	b1ae3a0a7b	Merge remote-tracking branch 'upstream/main' into clears-content	2023-06-27 13:45:33 +02:00
Tom Hvitved	df61eaf59f	Merge pull request #13565 from hvitved/csharp/gvn-blowup C#: Avoid combinatorial explosions in GVN construction for types	2023-06-27 13:31:36 +02:00
Erik Krogh Kristensen	e9102bbdf2	Merge pull request #13579 from kaspersv/kaspersv/javascript-remaining-implicit-this Javascript: Enable implicit this warnings for remaining packs	2023-06-27 13:09:55 +02:00
Mathias Vorreiter Pedersen	f2cbbab419	Merge branch 'main' into rdmarsh2/cpp/cobo-handle-array-casts	2023-06-27 12:03:42 +01:00
Kasper Svendsen	9202708719	Misc: Enable implicit this warnings for remaining packs	2023-06-27 13:03:11 +02:00
Mathias Vorreiter Pedersen	8cf66d22f0	Merge pull request #13583 from kaspersv/kaspersv/swift-remaining-implicit-this Swift: Enable implicit this warnings for remaining packs	2023-06-27 11:57:57 +01:00
Mathias Vorreiter Pedersen	985650cb04	Merge pull request #13559 from MathiasVP/add-barrier-to-invalid-deref-query C++: Add barriers to `cpp/invalid-pointer-deref`	2023-06-27 11:56:58 +01:00
Kasper Svendsen	29f5c78a60	Merge pull request #13581 from kaspersv/kaspersv/ql-remaining-implicit-this QL: Enable implicit this warnings for remaining packs	2023-06-27 12:35:19 +02:00
Kasper Svendsen	c77c455546	Merge pull request #13582 from kaspersv/kaspersv/ruby-remaining-implicit-this Ruby: Enable implicit this warnings for remaining packs	2023-06-27 12:33:16 +02:00
Kasper Svendsen	1aea7d0c79	Merge pull request #13575 from kaspersv/kaspersv/csharp-remaining-implicit-this C#: Enable implicit this warnings for remaining packs	2023-06-27 12:11:23 +02:00
Kasper Svendsen	8ce09438a0	Swift: Enable implicit this warnings for remaining packs	2023-06-27 12:09:27 +02:00
Kasper Svendsen	41c071ff74	Ruby: Enable implicit this warnings for remaining packs	2023-06-27 12:07:05 +02:00
Kasper Svendsen	c9cf0744c0	QL: Enable implicit this warnings for remaining packs	2023-06-27 12:04:29 +02:00
Kasper Svendsen	f41276cb7f	Python: Enable implicit this warnings for remaining packs	2023-06-27 12:00:13 +02:00
Jeroen Ketema	2628552ef4	C++: Fix join-order problem in `clearsContent`	2023-06-27 11:59:26 +02:00
Kasper Svendsen	ab5e241310	Javascript: Enable implicit this warnings for remaining packs	2023-06-27 11:56:29 +02:00
Kasper Svendsen	7fcdefbe70	Java: Enable implicit this warnings for remaining packs	2023-06-27 11:54:20 +02:00
Kasper Svendsen	ab797065ab	Go: Enable implicit this warnings for remaining packs	2023-06-27 11:49:37 +02:00
Kasper Svendsen	6869f03cca	C#: Enable implicit this warnings for remaining packs	2023-06-27 11:27:16 +02:00
Tony Torralba	3c3b53001f	Merge pull request #13550 from jorgectf/jorgectf/lang2-models Java: Add models for `org.apache.commons.lang`	2023-06-27 11:20:59 +02:00
Kasper Svendsen	0f3128d18c	Merge pull request #13572 from kaspersv/kaspersv/deprecated-imports-docs Document deprecated imports	2023-06-27 10:49:35 +02:00
Mathias Vorreiter Pedersen	06bc460868	Merge pull request #13528 from rdmarsh2/rdmarsh2/cpp/range-analysis-back-edge C++: fix range analysis back edge detection for irreducible CFGs	2023-06-27 09:14:44 +01:00
Tom Hvitved	160771e673	C#: Avoid combinatorial explosions in GVN construction for types	2023-06-27 10:08:53 +02:00
Kasper Svendsen	d42f6a08be	Document deprecated imports	2023-06-27 10:08:36 +02:00
Tony Torralba	a17c812118	Merge pull request #13358 from jorgectf/jorgectf/deserialization-lookahead Java: Model `SerialKiller`	2023-06-27 09:20:50 +02:00
Tom Hvitved	56a5a576a8	Merge pull request #13536 from hvitved/ql/dead-code-fps QL: Improve dead-code query	2023-06-27 09:01:59 +02:00
Robert Marsh	dcb349434c	C++: fix comment formatting	2023-06-26 15:52:32 -04:00
Robert Marsh	aff4066020	C++: improve irreducible back edge detection	2023-06-26 15:39:09 -04:00
Robert Marsh	757f40c0cb	Merge pull request #13116 from rdmarsh2/rdmarsh2/cpp/cobo-array-vars C++: include stack-allocated arrays in off-by-one query	2023-06-26 15:26:45 -04:00
Mathias Vorreiter Pedersen	ef383a135d	C++: Prune the set of interesting pointer-arithmetic instructions by another flow.	2023-06-26 19:09:43 +01:00

... 2 3 4 5 6 ...

56397 Commits