codeql

mirror of https://github.com/github/codeql.git synced 2026-02-13 05:31:22 +01:00

Author	SHA1	Message	Date
Mauro Baluda	89f0e79ea1	Fix `SqlTainted` test	2026-01-13 13:55:14 +01:00
Ian Lynagh	63f78e7609	Merge pull request #21156 from igfoo/igfoo/mb Merge rc/3.20 into main	2026-01-13 12:11:37 +00:00
Mauro Baluda	dda042f7df	rename change notes	2026-01-13 13:07:14 +01:00
Taus	5fc9b2de44	Merge pull request #21154 from github/tausbn/misc-add-cli-mode-for-change-note-script Misc: Add CLI interface to `create-change-note.py`	2026-01-13 12:38:55 +01:00
Anders Schack-Mulligen	9c1351c3fe	Merge pull request #21149 from aschackmull/java/typeflow-partially-unbound Java: Add TypeFlow base case for partially unbound types.	2026-01-13 12:31:38 +01:00
Asger F	9fa856f974	JS: Change note	2026-01-13 11:49:33 +01:00
Asger F	7cd820ea86	JS: Add support for props callbacks in router configs	2026-01-13 11:46:12 +01:00
Geoffrey White	69de17ecf2	Merge pull request #21153 from geoffw0/splitoff Rust: Add barrier for split_off	2026-01-13 10:44:31 +00:00
Asger F	40c35341d1	JS: Add props to Vue router test case	2026-01-13 11:44:07 +01:00
Owen Mansel-Chan	130f8f148b	Convert barrier to MaD I confirmed that without the model a test fails.	2026-01-13 10:29:16 +00:00
Owen Mansel-Chan	68b618176e	Convert barrier guard to MaD I checked that without the model a test fails.	2026-01-13 10:29:15 +00:00
Owen Mansel-Chan	b30bc5ea44	Allow MaD barriers relating to ExternalLocationSink	2026-01-13 10:29:13 +00:00
Owen Mansel-Chan	004d40ee93	Allow MaD barriers using sink kinds	2026-01-13 10:29:12 +00:00
Anders Schack-Mulligen	8b555ca514	Java: Add test.	2026-01-13 11:20:13 +01:00
Anders Schack-Mulligen	8257475ffb	Merge pull request #21132 from aschackmull/csharp/mad-barriers C#: Add support for MaD barriers and barrier guards.	2026-01-13 11:00:02 +01:00
Owen Mansel-Chan	a96cd399b1	Merge pull request #21157 from github/dependabot/go_modules/go/extractor/extractor-dependencies-0d17b202ee Bump golang.org/x/tools from 0.40.0 to 0.41.0 in /go/extractor in the extractor-dependencies group	2026-01-13 09:56:37 +00:00
Asger F	da9aafc3b0	JS: Also track additional use-steps crossing the overlay boundary	2026-01-13 10:54:16 +01:00
Simon Friis Vindum	7f092e418e	Merge pull request #21152 from paldepind/rust/typeinference-dir Rust: Move everything type inference related into the typeinference directory	2026-01-13 10:41:13 +01:00
Asger F	ca52fe59e8	Merge pull request #20918 from asgerf/js/response-default-content-type JS: Handle default 'content-type' header in Response() objects	2026-01-13 10:34:40 +01:00
Asger F	d2e6ae5e14	Update javascript/ql/lib/semmle/javascript/frameworks/Next.qll Co-authored-by: Napalys Klicius <napalys@github.com>	2026-01-13 10:34:25 +01:00
Owen Mansel-Chan	f5b13db4ea	Merge pull request #21015 from aschackmull/go/mad-barriers Go: Support for MaD barriers and barrier guards.	2026-01-13 09:31:09 +00:00
Tom Hvitved	31b4f88824	Rust: Add DB downgrade script	2026-01-13 10:24:40 +01:00
Tom Hvitved	4cc4717381	Rust: Add DB upgrade script	2026-01-13 10:24:39 +01:00
Tom Hvitved	5d5bad6cd4	Rust: Update expected test output	2026-01-13 10:24:10 +01:00
Tom Hvitved	5fb425fd67	Rust: Update extractor and QL code after removing `MacroBlockExpr`	2026-01-13 10:24:04 +01:00
Tom Hvitved	3eafca0550	Rust: Run codegen	2026-01-13 10:22:16 +01:00
Tom Hvitved	d6ec174e0c	Rust: Remove `MacroBlockExpr` class	2026-01-13 10:20:47 +01:00
Geoffrey White	b2d19b610e	Rust: US spelling.	2026-01-13 09:01:12 +00:00
Anders Schack-Mulligen	1151fc3be2	Update csharp/ql/lib/semmle/code/csharp/dataflow/internal/ExternalFlow.qll Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>	2026-01-13 09:14:33 +01:00
Simon Friis Vindum	e7791120fa	Rust: Address review comments	2026-01-13 07:53:39 +01:00
dependabot[bot]	37bb9d77d3	Bump golang.org/x/tools Bumps the extractor-dependencies group in /go/extractor with 1 update: [golang.org/x/tools](https://github.com/golang/tools). Updates `golang.org/x/tools` from 0.40.0 to 0.41.0 - [Release notes](https://github.com/golang/tools/releases) - [Commits](https://github.com/golang/tools/compare/v0.40.0...v0.41.0) --- updated-dependencies: - dependency-name: golang.org/x/tools dependency-version: 0.41.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: extractor-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2026-01-13 05:38:36 +00:00
Ian Lynagh	dcd0a69759	Merge remote-tracking branch 'upstream/main' into igfoo/mb	2026-01-13 01:01:35 +00:00
Taus	de1d183ca6	Misc: Add CLI interface to `create-change-note.py` This may be useful when working in "the other place", where the VSCode task may not be easily accessible. (Also, some people may just prefer to use a CLI interface.)	2026-01-12 15:32:03 +00:00
Simon Friis Vindum	9e74a7869a	Rust: Move everything type inference related into the typeinference directory	2026-01-12 16:31:34 +01:00
Taus	8c90c113c2	Update change note to reflect Python 2 changes	2026-01-12 15:27:38 +00:00
Taus	659ec3999b	Mark generated files as generated	2026-01-12 15:24:01 +00:00
Tom Hvitved	c666fc71ca	Merge pull request #21147 from hvitved/rust/fix-more-models Rust: Add missing `.Reference` in various models	2026-01-12 15:27:51 +01:00
Geoffrey White	a78756ff8b	Merge branch 'main' into splitoff	2026-01-12 14:21:01 +00:00
Geoffrey White	479c58bef5	Rust: Add a barrier.	2026-01-12 13:52:54 +00:00
Geoffrey White	7658ebb449	Rust: Add spurious test case for rust/uncontrolled-allocation-size.	2026-01-12 13:52:53 +00:00
Tom Hvitved	17441a5462	Rust: Add missing `.Reference` in various models	2026-01-12 14:21:45 +01:00
Anders Schack-Mulligen	c28062aff5	Merge pull request #21127 from aschackmull/ssa/phi-input-perf SSA: Improve performance of finding relevant phi input nodes.	2026-01-12 13:29:58 +01:00
Anders Schack-Mulligen	8e2d74a7b1	Java: Add TypeFlow base case for partially unbound types.	2026-01-12 12:45:06 +01:00
Tom Hvitved	6b34d0d250	Merge pull request #21123 from hvitved/rust/fix-path-models Rust: Improve/add various models	2026-01-12 12:20:56 +01:00
Simon Friis Vindum	e4db3b17b4	Merge pull request #20584 from paldepind/cpp/range-analysis-fix C++: Range analysis guard improvement	2026-01-12 11:23:48 +01:00
Simon Friis Vindum	c9e6d4235f	Merge pull request #21139 from paldepind/rust/fn-syntax-return Rust: Make function trait syntax without return type default to unit	2026-01-12 11:22:50 +01:00
Owen Mansel-Chan	57ec850397	Merge pull request #21146 from github/dependabot/go_modules/go/extractor/extractor-dependencies-555680b348 Bump golang.org/x/mod from 0.31.0 to 0.32.0 in /go/extractor in the extractor-dependencies group	2026-01-12 09:44:33 +00:00
Anders Schack-Mulligen	aae8ec2240	SSA: Use fastTC for even better performance.	2026-01-12 09:39:15 +01:00
dependabot[bot]	4318c285cb	Bump golang.org/x/mod Bumps the extractor-dependencies group in /go/extractor with 1 update: [golang.org/x/mod](https://github.com/golang/mod). Updates `golang.org/x/mod` from 0.31.0 to 0.32.0 - [Commits](https://github.com/golang/mod/compare/v0.31.0...v0.32.0) --- updated-dependencies: - dependency-name: golang.org/x/mod dependency-version: 0.32.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: extractor-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2026-01-12 03:07:33 +00:00
Mauro Baluda	0464e64469	Merge branch 'github:main' into couchdb	2026-01-09 17:24:01 +01:00

1 2 3 4 5 ...

85368 Commits