codeql

mirror of https://github.com/github/codeql.git synced 2025-12-30 07:36:34 +01:00

Author	SHA1	Message	Date
github-actions[bot]	9fe993bec3	Release preparation for version 2.15.0	2023-10-04 14:15:27 +00:00
Henry Mercer	99646ba2a3	Merge pull request #14367 from github/henrymercer/rc-3.11-mergeback Merge `rc/3.11` into `main`	2023-10-04 10:05:38 +01:00
Geoffrey White	d258f69ab0	Merge pull request #14329 from geoffw0/sinks Swift: Update summary queries	2023-10-03 17:39:00 +01:00
Geoffrey White	34b33e1577	Merge pull request #14328 from geoffw0/debugdesc Swift: Model .description, .debugDescription more generally	2023-10-03 17:37:22 +01:00
Henry Mercer	da92da2204	Bump minor versions of packs we regularly release	2023-10-03 16:31:23 +01:00
Henry Mercer	f3847b3f51	Merge branch 'main' into henrymercer/rc-3.11-mergeback	2023-10-03 16:30:23 +01:00
Geoffrey White	bbd3c66d5a	Swift: Update for CollectionContent.	2023-10-02 20:32:24 +01:00
Geoffrey White	81b358a711	Swift: Replace a similar additional taint step in another query.	2023-10-02 20:19:40 +01:00
Geoffrey White	27bdee8058	Swift: Replace additional taint step with implict read. Now that we have array content, this is a more principled approach than having a special case data step.	2023-10-02 20:19:30 +01:00
Asger F	0d96ed8aee	Merge pull request #14305 from asgerf/shared/flow-state-inout-barriers Shared: add in/out barriers with flow state	2023-09-28 11:07:23 +02:00
Geoffrey White	8e9ca7bc26	Swift: Improve RegexEvals.ql and summary regex reporting.	2023-09-28 08:31:45 +01:00
Geoffrey White	e4e4c5be61	Swift: Make QL-for-QL happy.	2023-09-27 19:12:04 +01:00
Geoffrey White	98b2ef0a2f	Swift: Autoformat.	2023-09-27 19:09:23 +01:00
Geoffrey White	87696e58ab	Swift: Break the 'taint reach' metric off into its own query (it's expensive to compute).	2023-09-27 18:34:55 +01:00
Geoffrey White	ec573bdda8	Swift: Clean up and improve consistency.	2023-09-27 18:34:40 +01:00
Geoffrey White	ee83ad730b	Swift: Add a summary query for regex evals.	2023-09-27 18:34:32 +01:00
Geoffrey White	9f1332bdb2	Swift: Add a summary query for query sinks.	2023-09-27 18:34:32 +01:00
Geoffrey White	e6dc4d324f	Swift: Change note.	2023-09-27 16:58:59 +01:00
Geoffrey White	b6f0160760	Swift: Effect on recently added tests.	2023-09-27 16:52:31 +01:00
Geoffrey White	6a2911ae01	Swift: Make the tests more accurate.	2023-09-27 16:39:55 +01:00
Geoffrey White	086002f7cb	Swift: Add a general model for description, debugDescription.	2023-09-27 16:39:54 +01:00
Geoffrey White	f12e45b243	Swift: Delete the specific description, debugDescription models.	2023-09-27 16:39:54 +01:00
Geoffrey White	49d47a3da4	Merge pull request #14209 from geoffw0/regexport Swift: Port regex mode flag fix from Python to Swift	2023-09-26 15:41:10 +01:00
Geoffrey White	eb78d401da	Swift: Add to change note.	2023-09-26 14:56:32 +01:00
Geoffrey White	6b0271d4e5	Swift: Address review comment.	2023-09-26 13:40:46 +01:00
Geoffrey White	7a450c9941	Swift: Change note for mode flags.	2023-09-26 13:40:46 +01:00
Geoffrey White	33a5ba04cb	Swift: Add explanatory comments and (minimal) support for additional regex mode flags.	2023-09-26 13:40:46 +01:00
Anders Schack-Mulligen	06cb277eb0	Merge pull request #14299 from aschackmull/dataflow/more-defaults Dataflow: Make use of defaults for language-specific hooks.	2023-09-25 11:19:44 +02:00
Asger F	d501856519	Update DataFlowImpl.qll copies	2023-09-25 10:05:29 +02:00
Geoffrey White	ab6e8b9ecd	Merge pull request #14252 from geoffw0/protocol3 Swift: Improve getABaseType implementions	2023-09-22 18:13:12 +01:00
Geoffrey White	2c9433c621	Merge pull request #13946 from geoffw0/arraysteptest Swift: Models and tests for numeric conversions	2023-09-22 16:26:38 +01:00
Anders Schack-Mulligen	66da997b7b	Dataflow: Make use of defaults for language-specific hooks.	2023-09-22 14:54:22 +02:00
Geoffrey White	ab54f0cc6c	Merge pull request #14286 from geoffw0/interp Swift: Fix bug in taint flow through string interpolation	2023-09-22 08:52:56 +01:00
Geoffrey White	f2689dd515	Swift: Fix for string interpolation taint flow.	2023-09-21 19:02:16 +01:00
Geoffrey White	c7be9b42b3	Swift: Test demonstrating an issue with taint through string interpolation.	2023-09-21 19:02:06 +01:00
Geoffrey White	05309810b8	Merge pull request #14266 from geoffw0/quickfix Swift: Improve taint models for NSString	2023-09-21 13:09:01 +01:00
Anders Schack-Mulligen	13f7daf71e	Merge pull request #13982 from aschackmull/dataflow/typeflow-calledge-pruning Dataflow: Add type-based call-edge pruning.	2023-09-21 13:33:08 +02:00
Geoffrey White	fef5a49fcb	Swift: Remove now duplicate extension logic.	2023-09-20 15:36:15 +01:00
github-actions[bot]	3acf5244b0	Post-release preparation for codeql-cli-2.14.6	2023-09-20 10:25:10 +00:00
Geoffrey White	af315c5072	Swift: Change note.	2023-09-19 23:02:14 +01:00
Geoffrey White	1b74b49bb3	Swift: Improve NSString models for varargs functions.	2023-09-19 23:02:14 +01:00
Geoffrey White	f8c5a9a264	Swift: Test localizedStringWithFormat a bit better.	2023-09-19 18:43:54 +01:00
Geoffrey White	ae159924a3	Swift: Add numeric barrier to the regular expression injection query as well.	2023-09-19 16:21:43 +01:00
Geoffrey White	935b7600ca	Swift: Fix typos.	2023-09-19 15:19:00 +01:00
Geoffrey White	e011951e1f	Swift: Added change note for the new barriers.	2023-09-19 14:59:27 +01:00
Geoffrey White	32a2930c2f	Swift: Accept bad tag filter test fixes.	2023-09-19 14:47:56 +01:00
Geoffrey White	5975546098	Swift: Add numeric barrier for predicate injection query as well.	2023-09-19 14:33:24 +01:00
Geoffrey White	2983295ba3	Swift: Add numeric barrier for uncontrolled format string query.	2023-09-19 14:33:23 +01:00
Geoffrey White	f98de85e36	Swift: Add numeric barrier for command injection query.	2023-09-19 14:33:23 +01:00
Geoffrey White	903b0f5bab	Swift: Add numeric barrier for the SQL Injinjection query.	2023-09-19 14:33:23 +01:00

1 2 3 4 5 ...

2476 Commits