hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-18 07:53:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
84,550 Commits 1,693 Branches 160 Tags
codeql-cli/v2.23.9
Commit Graph

84550 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jeroen Ketema
9b19ccf884 C++: Update dbscheme stats file 2025-08-27 12:52:26 +02:00
Napalys Klicius
e0916c8750 JS: add change note 2025-08-27 10:32:45 +00:00
Napalys Klicius
32606584ea JS: add enumeration taint flow to Remote Property Injection query 2025-08-27 10:23:03 +00:00
Napalys Klicius
c39c04cb86 JS: added new test case for remote prop injection via Object.keys 2025-08-27 10:20:57 +00:00
Napalys Klicius
10c10c7d30 JS: fixed typo in folder name 2025-08-27 10:17:39 +00:00
Kasper Svendsen
9cc6e9c8a9 Overlay: Add discarding for Java classes, interfaces & fields 2025-08-27 12:07:59 +02:00
Geoffrey White
1d815b16d6 Rust: Update test expectations. 2025-08-27 10:42:45 +01:00
Geoffrey White
5d060d621b Rust: Remove leftover QL use of Resolvable. 2025-08-27 10:42:44 +01:00
Geoffrey White
152ae1d29b Rust: Codegen. 2025-08-27 10:42:42 +01:00
Geoffrey White
c7947a0afa Rust: Remove built-in methods from Addressable in the schema. 2025-08-27 10:42:11 +01:00
Tom Hvitved
f232335618 Merge pull request #20291 from hvitved/rust/type-inference-more-certain-types 
Rust: Add more cases to `inferCertainType`
 2025-08-27 11:25:24 +02:00
Asger F
4a687a1222 JS: Add deprecated alias 
The old DbLocation class was public, hence the alias
 2025-08-27 11:21:18 +02:00
Asger F
dcf63fc434 JS: Remove synthetic locations 2025-08-27 11:20:24 +02:00
Asger F
be32579cab JS: Change pruning to not rely on Import 2025-08-27 10:44:23 +02:00
Jami
b7c1e1e8ce Merge pull request #20006 from jcogs33/jcogs33/java/insecure-spring-actuator-config-promotion 
Java: Promote Insecure Spring Boot Actuator Configuration query from experimental
 2025-08-26 19:29:03 -04:00
REDMOND\brodes
7c8177de97 Crypto: Added missing ArtifactPassthrough.qll (forgot to add to merged in branch). Acronym casing fix. 2025-08-26 17:12:21 -04:00
Jeroen Ketema
896a802194 C++: Add upgrade and downgrade scripts 2025-08-26 23:12:15 +02:00
Ben Rodes
73b3398b46 Merge pull request #2 from bdrodes/signature_model_refactor_experimental 
Signature model refactor experimental
 2025-08-26 17:05:01 -04:00
Jeroen Ketema
e20ce57023 C++: Expose PCH file creation as usage in QL 2025-08-26 22:12:27 +02:00
Jeroen Ketema
e9b00f1e0d C++: Add tables that represent the creation and use of PCH files 
This allows a use to be linked to a creation.
 2025-08-26 22:12:12 +02:00
REDMOND\brodes
938b47c2ad Crypto: Debug missing hashes associated with HMAC. EVP_PKEY_get1_RSA is now just a passthrough, it is not a known implicit operation call. Some final operations generating null outputs are now removed from possible final operartions (typically used to determine buffer lenghth and not actually performing the operation). Misc. false positive/error fixes and code clean up, and added missing models. 2025-08-26 16:07:04 -04:00
Florin Coada
499e432065 Merge pull request #20268 from github/changedocs/2.22.4 
Add changelog entry for CodeQL CLI version 2.22.4
 2025-08-26 20:29:35 +01:00
Geoffrey White
3cd057fe39 Rust: Remove Resolvable from the schema. 2025-08-26 17:32:02 +01:00
REDMOND\brodes
422352c632 Crypto: Continued refactoring of operation steps and bug fixes. 2025-08-26 11:49:26 -04:00
Florin Coada
feca56582a Update codeql-cli-2.22.4.rst 2025-08-26 16:48:23 +01:00
Paolo Tranquilli
dd68d68064 Merge pull request #20288 from github/redsun82/rust-less-warnings 
Rust: downgrade uncompiled source files from warning to info
 2025-08-26 17:45:17 +02:00
Paolo Tranquilli
531955e922 Merge branch 'main' into redsun82/rust-less-warnings 2025-08-26 17:29:20 +02:00
Napalys Klicius
b3f90bbdfc Update java/ql/src/Violations of Best Practice/Undesirable Calls/CallsToSystemExit.ql 
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
 2025-08-26 13:23:24 +00:00
Napalys Klicius
6c51ba80c7 Update java/ql/src/Violations of Best Practice/Undesirable Calls/CallsToSystemExit.ql 
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
 2025-08-26 15:19:02 +02:00
Geoffrey White
a8f7f74812 Rust: Remove unused use decls. 2025-08-26 13:57:33 +01:00
Geoffrey White
70600fe6d9 Rust: Remove unused traits and things. 2025-08-26 13:55:29 +01:00
Geoffrey White
bd5f863efc Rust: Remove uncalled methods. 2025-08-26 13:55:28 +01:00
REDMOND\brodes
48dc280e6c Crypto: Fix issue with OAEP padding edges regressing. 2025-08-26 08:51:52 -04:00
Tom Hvitved
6453b71017 Rust: Add more cases to inferCertainType 2025-08-26 14:44:55 +02:00
Tom Hvitved
3527fca617 Merge pull request #20274 from hvitved/rust/type-synth-type-param 
Rust: Include synthetic type parameters in `Type.getATypeParameter`
 2025-08-26 14:42:29 +02:00
Simon Friis Vindum
87d1a14ff2 Merge pull request #20286 from github/rust/fix-examples 
Rust: Fix examples in qldoc
 2025-08-26 14:13:08 +02:00
Simon Friis Vindum
4ed0fb71f3 Merge pull request #20289 from github/rust/typo-in-bound 
Rust: Fix minor typo in bound in comment
 2025-08-26 14:12:33 +02:00
Jami
3675e4bb4f Merge branch 'main' into jcogs33/java/insecure-spring-actuator-config-promotion 2025-08-26 08:02:17 -04:00
Paolo Tranquilli
42a40c14ac Rust: reword macro expansion error 2025-08-26 13:58:47 +02:00
Geoffrey White
dd00df74dd Rust: Remove unused wiring. 2025-08-26 12:54:31 +01:00
Simon Friis Vindum
600417a767 Rust: Fix minor typo in bound in comment 2025-08-26 13:43:30 +02:00
Jeroen Ketema
d5f4a3961e Merge pull request #20287 from jketema/not-included 
Java: Update integration test after query removal
 2025-08-26 12:54:52 +02:00
Paolo Tranquilli
999920c968 Rust: accept test changes 2025-08-26 12:30:27 +02:00
Paolo Tranquilli
02b4c1fa85 Rust: downgrade uncompiled source files from warning to info 2025-08-26 11:56:53 +02:00
Jeroen Ketema
680aeea1ba Merge pull request #14331 from asgerf/cpp/use-flow-state-inout-barriers 
C++: use in/out barriers with flow state
 2025-08-26 11:47:35 +02:00
Napalys Klicius
8017fae297 Java: Simplify mock call location check using getEnclosingCallable 2025-08-26 09:44:00 +00:00
Jeroen Ketema
54f264851a Merge branch 'main' into cpp/use-flow-state-inout-barriers 2025-08-26 11:24:32 +02:00
Jeroen Ketema
704ae1a3b1 Java: Update integration test after query removal 2025-08-26 11:19:42 +02:00
Asger F
629a96c167 Merge pull request #5 from jketema/cpp/use-flow-state-inout-barriers 
C++: Revert changes to `cpp/constant-array-overflow`
 2025-08-26 11:08:56 +02:00
Tom Hvitved
80031e5c00 Merge pull request #20273 from hvitved/rust/attribute-in-macro-expansion 
Rust: Include `getAttributeMacroExpansion` in `isInMacroExpansion`
 2025-08-26 11:08:02 +02:00