84550 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Geoffrey White	39b6d927d6	Swift: Make QL-for-QL happy (this line will be deleted at some point anyway).	2023-07-24 09:23:07 +01:00
Geoffrey White	066a6ef7c4	Swift: Change note.	2023-07-24 09:13:56 +01:00
Geoffrey White	b8f67d7e8a	Swift: Test changes (not affecting results).	2023-07-24 09:03:01 +01:00
Geoffrey White	b62c86d89c	Swift: Autoformat.	2023-07-24 08:45:49 +01:00
Geoffrey White	dc89e0d2b0	Swift: Change note.	2023-07-24 08:28:37 +01:00
amammad	6f8ec118df	fix qlhelp and qldoc bugs	2023-07-24 17:15:43 +10:00
Tony Torralba	af8612ecd2	Merge pull request #13797 from github/workflow/coverage/update ... Update CSV framework coverage reports	2023-07-24 09:12:25 +02:00
amammad	c704158150	remove sources which are contained from environment variables, fix some bugs thanks to @yoff	2023-07-24 17:06:27 +10:00
Tony Torralba	6c0d47f122	Update java/ql/lib/semmle/code/java/frameworks/InputStream.qll ... Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>	2023-07-24 08:49:37 +02:00
Tony Torralba	4e7438ac5c	Make sure that InputStreamWrapperCapturedLocalStep is indeed local	2023-07-24 08:49:37 +02:00
Tony Torralba	d3b3af8ae6	Re-adds jump step ... Note that this causes FP flow in the call context test cases	2023-07-24 08:49:37 +02:00
Tony Torralba	36ff54b48b	Convert jump step into local step ... Note that this has FNs in the test cases where the source is used locally in the nested classes' methods	2023-07-24 08:49:37 +02:00
Tony Torralba	cc5a404149	Add more test cases	2023-07-24 08:49:36 +02:00
Tony Torralba	226103b246	Add local class test	2023-07-24 08:49:36 +02:00
Tony Torralba	f054f73836	Apply suggestions from code review ... Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>	2023-07-24 08:49:36 +02:00
Tony Torralba	1de68457ae	Move steps to InputStream.qll	2023-07-24 08:49:36 +02:00
Tony Torralba	0156fcc381	Apply suggestions from code review ... Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>	2023-07-24 08:49:36 +02:00
Tony Torralba	3a6665b0ed	Add change note	2023-07-24 08:49:36 +02:00
Tony Torralba	5330ce12cc	Use new TypeInputStream	2023-07-24 08:49:34 +02:00
Tony Torralba	00e0e5a61a	Java: Add taint step for InputStream wrappers	2023-07-24 08:48:04 +02:00
github-actions[bot]	419bbbc9ac	Add changed framework coverage reports	2023-07-24 00:17:53 +00:00
Geoffrey White	94780aabec	Swift: Effect on the taint/core test.	2023-07-21 22:34:59 +01:00
Geoffrey White	1259f8d596	Swift: Clearer syntax and a shortcut for Optional.some.	2023-07-21 22:34:59 +01:00
Geoffrey White	89e7b75ea1	Swift: Flow from optional content through "!".	2023-07-21 22:34:59 +01:00
Geoffrey White	d9187c62fe	Swift: Parse MAD enum content.	2023-07-21 22:34:59 +01:00
Geoffrey White	1cfb9bbf34	Swift: Tests for enum content in MAD.	2023-07-21 22:34:58 +01:00
Michael B. Gale	a2f4628522	C#: Add integration test for tracing config fix	2023-07-21 20:14:46 +01:00
Michael B. Gale	ac389067fe	C#: Limit detection of sub-command names	2023-07-21 19:05:22 +01:00
github-actions[bot]	f91b7a9342	Post-release preparation for codeql-cli-2.14.1	2023-07-21 16:16:25 +00:00
Mathias Vorreiter Pedersen	742f080a55	C++: This predicate is no longer used.	2023-07-21 16:54:46 +01:00
Mathias Vorreiter Pedersen	d350c0d5c8	C++: Accept test changes.	2023-07-21 16:54:46 +01:00
Mathias Vorreiter Pedersen	0859c4f926	C++: Fix swapped arguments in 'invalidPointerToDerefSource'.	2023-07-21 16:54:38 +01:00
Mathias Vorreiter Pedersen	69ea7d92cd	Merge pull request #13790 from MathiasVP/add-invalid-ptr-false-positive ... C++: Add false positive to `cpp/invalid-pointer-deref`	2023-07-21 16:42:53 +01:00
Mathias Vorreiter Pedersen	d905b1e006	C++: Add false positive.	2023-07-21 15:38:38 +01:00
Mathias Vorreiter Pedersen	83aef6fc16	C++: Write formulas instead of 'non-strictly upper bounded by'.	2023-07-21 14:56:40 +01:00
Mathias Vorreiter Pedersen	108cd7f078	C++: Use more descriptive names for identifiers in 'cpp/invalid-pointer-deref'.	2023-07-21 14:55:45 +01:00
Geoffrey White	d13170de98	Swift: Model return values.	2023-07-21 14:23:40 +01:00
Geoffrey White	52e84ba12b	Swift: Add some more test cases, including handling return propagation.	2023-07-21 13:53:14 +01:00
Geoffrey White	7c0c820684	Swift: Accept fixed spurious result.	2023-07-21 11:26:11 +01:00
Geoffrey White	6110243306	Swift: Fix .expected and autoformat after merge.	2023-07-21 11:17:19 +01:00
Mathias Vorreiter Pedersen	5270cf6c41	C++: Update documentation based on PR feedback.	2023-07-21 11:09:01 +01:00
Geoffrey White	8a314dd2cf	Merge branch 'main' into contig	2023-07-21 10:56:46 +01:00
Jeroen Ketema	4f57852ba0	Merge pull request #13787 from jketema/ssa-text-case ... C++: Add IR SSA test case for the ternary operator	2023-07-21 11:26:26 +02:00
Mathias Vorreiter Pedersen	a7ee27ec22	C++: Fix 'begin'/'base' confusion.	2023-07-21 10:20:24 +01:00
Mathias Vorreiter Pedersen	6c3c4c302e	Update cpp/ql/lib/semmle/code/cpp/security/InvalidPointerDereference/InvalidPointerToDereference.qll ... Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2023-07-21 10:19:04 +01:00
Anders Schack-Mulligen	412cf558f2	Merge pull request #13743 from aschackmull/docs/dataflow-api ... Docs: Update data flow documentation to the new API.	2023-07-21 11:07:52 +02:00
Mathias Vorreiter Pedersen	4075dacd52	Update cpp/ql/lib/semmle/code/cpp/security/InvalidPointerDereference/AllocationToInvalidPointer.qll	2023-07-21 09:55:23 +01:00
Stephan Brandauer	79da723878	Java: only assume that _manual_ MaD sinks have been fully modeled	2023-07-21 10:43:07 +02:00
Tony Torralba	3d515b18df	Merge pull request #13769 from atorralba/atorralba/java/avoid-inputstream-low-confidence-dispatch ... Java: Avoid low-confidence dispatch to InputStream methods	2023-07-21 10:42:34 +02:00
Mathias Vorreiter Pedersen	369cee9ed9	Update cpp/ql/lib/semmle/code/cpp/security/InvalidPointerDereference/InvalidPointerToDereference.qll ... Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2023-07-21 09:32:14 +01:00