codeql

mirror of https://github.com/github/codeql.git synced 2026-01-09 20:50:21 +01:00

Author	SHA1	Message	Date
Kasper Svendsen	ab5e241310	Javascript: Enable implicit this warnings for remaining packs	2023-06-27 11:56:29 +02:00
Kasper Svendsen	7fcdefbe70	Java: Enable implicit this warnings for remaining packs	2023-06-27 11:54:20 +02:00
Kasper Svendsen	ab797065ab	Go: Enable implicit this warnings for remaining packs	2023-06-27 11:49:37 +02:00
Kasper Svendsen	6869f03cca	C#: Enable implicit this warnings for remaining packs	2023-06-27 11:27:16 +02:00
Tony Torralba	3c3b53001f	Merge pull request #13550 from jorgectf/jorgectf/lang2-models Java: Add models for `org.apache.commons.lang`	2023-06-27 11:20:59 +02:00
Kasper Svendsen	0f3128d18c	Merge pull request #13572 from kaspersv/kaspersv/deprecated-imports-docs Document deprecated imports	2023-06-27 10:49:35 +02:00
Mathias Vorreiter Pedersen	06bc460868	Merge pull request #13528 from rdmarsh2/rdmarsh2/cpp/range-analysis-back-edge C++: fix range analysis back edge detection for irreducible CFGs	2023-06-27 09:14:44 +01:00
Tom Hvitved	160771e673	C#: Avoid combinatorial explosions in GVN construction for types	2023-06-27 10:08:53 +02:00
Kasper Svendsen	d42f6a08be	Document deprecated imports	2023-06-27 10:08:36 +02:00
Tony Torralba	a17c812118	Merge pull request #13358 from jorgectf/jorgectf/deserialization-lookahead Java: Model `SerialKiller`	2023-06-27 09:20:50 +02:00
Tom Hvitved	56a5a576a8	Merge pull request #13536 from hvitved/ql/dead-code-fps QL: Improve dead-code query	2023-06-27 09:01:59 +02:00
Robert Marsh	dcb349434c	C++: fix comment formatting	2023-06-26 15:52:32 -04:00
Robert Marsh	aff4066020	C++: improve irreducible back edge detection	2023-06-26 15:39:09 -04:00
Robert Marsh	757f40c0cb	Merge pull request #13116 from rdmarsh2/rdmarsh2/cpp/cobo-array-vars C++: include stack-allocated arrays in off-by-one query	2023-06-26 15:26:45 -04:00
Mathias Vorreiter Pedersen	ef383a135d	C++: Prune the set of interesting pointer-arithmetic instructions by another flow.	2023-06-26 19:09:43 +01:00
Jeroen Ketema	54632cd474	C++: Replace `not exists` by `forex` in `clearsContent`	2023-06-26 20:05:35 +02:00
Joe Farebrother	c419e8d24a	Fix test	2023-06-26 18:05:11 +01:00
Joe Farebrother	1d64d1297c	Update tests to use stubs	2023-06-26 16:51:07 +01:00
Joe Farebrother	938a996322	Add test case for Authorize attribute	2023-06-26 15:57:57 +01:00
Ian Lynagh	8a43fc81ee	Java: Tweak some android tests They were all failing for me like: [autobuild] /home/ian/code/dev/target/codeql-java-integration-tests/ql/java/ql/integration-tests/all-platforms/java/android-sample-old-style-no-wrapper/project/src/main/AndroidManifest.xml:5: Error: Main must extend android.app.Activity [Instantiatable] [autobuild] <activity android:name="Main" android:exported="true"> [autobuild] ~~~~ [autobuild] Explanation for issues of type "Instantiatable": [autobuild] Activities, services, broadcast receivers etc. registered in the manifest [autobuild] file (or for custom views, in a layout file) must be "instantiatable" by [autobuild] the system, which means that the class must be public, it must have an [autobuild] empty public constructor, and if it's an inner class, it must be a static [autobuild] inner class. I'm not sure why it works on CI but not locally, but either way this works around the issue.	2023-06-26 15:52:52 +01:00
Alex Ford	9cf165ac55	Ruby: rack - update a deprecation notice	2023-06-26 15:37:34 +01:00
Alex Ford	8fdc48753c	Ruby: rack - replace RackApplication with just the rack RequestHandler	2023-06-26 15:36:37 +01:00
Asger F	f6e244995a	Update ruby/ql/lib/codeql/ruby/ApiGraphs.qll Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2023-06-26 15:32:11 +02:00
Asger F	b61e823cab	Ruby: clarify qldoc for getADescendentModule	2023-06-26 15:31:18 +02:00
Asger F	ef9d910a07	Update ruby/ql/lib/codeql/ruby/ApiGraphs.qll Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2023-06-26 15:28:30 +02:00
Rasmus Wriedt Larsen	9c5aff395a	Merge pull request #12581 from yoff/python/enable-summaries-from-models python: enable summaries from model	2023-06-26 14:39:27 +02:00
jorgectf	1e663b8889	Update `HeuristicSourceCodeInjection.expected`	2023-06-26 13:32:20 +02:00
jorgectf	bb67a9000e	Fix `WebixTemplateSink`	2023-06-26 13:32:00 +02:00
Jorge	5bd044211e	Apply suggestions from code review Co-authored-by: Asger F <asgerf@github.com>	2023-06-26 13:27:23 +02:00
Jeroen Ketema	527b537fee	Apply suggestions from code review Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>	2023-06-26 12:57:43 +02:00
Ian Lynagh	65dee80b36	Merge pull request #13547 from igfoo/igfoo/dead-code Kotlin: Build: Remove some dead code	2023-06-26 11:50:50 +01:00
Mathias Vorreiter Pedersen	d68b0605cd	C++: Use 'arrayTypeCand' in 'isSourceImpl' instead of checking for array size explicitly.	2023-06-26 11:37:35 +01:00
Mathias Vorreiter Pedersen	3b4f2b22d6	C++: Fix Code Scanning errors.	2023-06-26 11:36:56 +01:00
Mathias Vorreiter Pedersen	b87bf46c30	C++: Fix joins.	2023-06-26 11:28:32 +01:00
Jeroen Ketema	c7e5dc2e9e	C++: Fix QLDoc issues	2023-06-26 12:18:05 +02:00
Jeroen Ketema	458522a656	C++: Implement `clearsContent` for IR dataflow	2023-06-26 12:11:03 +02:00
Rasmus Wriedt Larsen	257f9912dd	Python: Remove one more unnecessary taint test	2023-06-26 12:00:55 +02:00
Rasmus Wriedt Larsen	6cb03190fa	Python: Updates from inline test being parameterized	2023-06-26 11:43:51 +02:00
Rasmus Wriedt Larsen	0121263e03	Merge branch 'main' into python/enable-summaries-from-models	2023-06-26 11:34:12 +02:00
Tony Torralba	55280e523a	Update java/ql/lib/semmle/code/java/security/UnsafeDeserializationQuery.qll	2023-06-26 11:14:31 +02:00
Tom Hvitved	3c72ac2f9b	Merge pull request #13544 from hvitved/csharp/to-string-consistency C#: Add `toString` functionality consistency queries	2023-06-26 10:50:23 +02:00
Tom Hvitved	e6ca5dff87	Merge pull request #13543 from hvitved/ruby/to-string-constincy-queries Ruby: Add `toString` functionality consistency queries	2023-06-26 09:38:53 +02:00
Tom Hvitved	c6eff8dbe9	Merge pull request #13545 from hvitved/ruby/reduce-string-pool Ruby: Reduce string pool pressure by late-inlining `locationRelativePathToString`	2023-06-26 08:57:06 +02:00
Mathias Vorreiter Pedersen	e32f7d84a5	C++: Speed up analysis on 'Samate' by avoiding the 'Variable' column in the dataflow stages of the query.	2023-06-25 00:35:43 +01:00
Mathias Vorreiter Pedersen	e0f5c584b9	C++: Fix Code Scanning error.	2023-06-24 19:38:22 +01:00
Mathias Vorreiter Pedersen	c1077fe75d	C++: Accept test changes.	2023-06-24 19:12:03 +01:00
Mathias Vorreiter Pedersen	9d5b8cff2e	C++: Add a barrier to the 'cpp/invalid-pointer-deref' query.	2023-06-24 19:12:03 +01:00
Mathias Vorreiter Pedersen	fba753ce61	C++: Add more test cases to 'cpp/invalid-pointer-deref'.	2023-06-24 18:59:25 +01:00
Jorge	08b9a5e2b2	Add missing `;`	2023-06-23 23:10:06 +02:00
Robert Marsh	69ee615119	Merge pull request #13515 from MathiasVP/dataflow-fix-for-self-iterators C++: Dataflow fix for the self-iterators issue	2023-06-23 13:50:23 -04:00

... 20 21 22 23 24 ...

57360 Commits