85368 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Joe Farebrother	a73d675e6e	Remove experimental query versions	2024-07-23 10:14:55 +01:00
Joe Farebrother	226e4eb8a5	Use a 3-valued newtype for hasSameSiteAttribute	2024-07-23 10:14:45 +01:00
Joe Farebrother	df5569fda9	Add documentation	2024-07-23 10:14:40 +01:00
Joe Farebrother	32fbe52f0f	Model cookie attributes for Django and Flask	2024-07-23 10:14:33 +01:00
Joe Farebrother	6a7bdaf284	Fix experimental query compilation	2024-07-23 10:14:29 +01:00
Joe Farebrother	033dd9f8a6	Promote insecure cookie query	2024-07-23 10:14:22 +01:00
Joe Farebrother	9ad6c8c5eb	Implement cookie attributes for cases in which a raw header is set	2024-07-23 10:14:16 +01:00
Joe Farebrother	2df09f6194	Change flag predicates to boolean parameters rather than boolean results	2024-07-23 10:14:08 +01:00
Joe Farebrother	6f7b2a2d20	Add cookie flags to cookie write concept, and alter experimental queries to use them	2024-07-23 10:14:00 +01:00
Owen Mansel-Chan	ff8bb2b1f8	Merge pull request #16760 from owen-mc/java/reverse-dns-separate-threat-model-kind ... Java: make a separate threat model kind for reverse DNS sources	2024-07-23 10:08:52 +01:00
Jeroen Ketema	d2573310c6	Merge pull request #17006 from github/sashabu/using-enum ... C++: Support `using enum` declarations.	2024-07-23 10:25:06 +02:00
Anders Schack-Mulligen	b5b9c4d931	Update java/ql/lib/semmle/code/java/security/SensitiveLoggingQuery.qll ... Java: Make class private	2024-07-23 10:07:51 +02:00
Anders Schack-Mulligen	bb86a07a93	Update java/ql/lib/semmle/code/java/security/SensitiveLoggingQuery.qll ... fix typo	2024-07-23 10:03:07 +02:00
Anders Schack-Mulligen	5912a17ab4	Update java/ql/lib/semmle/code/java/security/SensitiveLoggingQuery.qll ... Autoformat	2024-07-23 10:01:49 +02:00
github-actions[bot]	49cc8f8ff8	Post-release preparation for codeql-cli-2.18.1	2024-07-22 22:00:48 +00:00
Chuan-kai Lin	54ac18092d	Merge pull request #17040 from github/release-prep/2.18.1 ... Release preparation for version 2.18.1 codeql-cli/v2.18.1	2024-07-22 14:36:26 -07:00
Chuan-kai Lin	a5fe3f4d9c	Minor changelog improvements	2024-07-22 14:34:56 -07:00
github-actions[bot]	368bcb684a	Release preparation for version 2.18.1	2024-07-22 21:30:50 +00:00
Chuan-kai Lin	09f5e19c71	Merge pull request #17039 from github/revert-17032-release-prep/2.18.1 ... Revert "Release preparation for version 2.18.1"	2024-07-22 13:51:37 -07:00
Edward Minnix III	8038796207	Merge pull request #16993 from egregius313/egregius313/java/model-lastaflute-framework ... Add models for the `lastaflute` framework	2024-07-22 16:40:16 -04:00
Chuan-kai Lin	23320b6e5e	Revert "Release preparation for version 2.18.1"	2024-07-22 13:22:49 -07:00
Alexandre Boulgakov	3defc8b5de	C++: Fix typo - remove unbound and unused variable in downgrade script.	2024-07-22 18:27:39 +01:00
Geoffrey White	437c679266	C++: Switch to using the Buffer.qll implementation directly.	2024-07-22 18:09:08 +01:00
Alexandre Boulgakov	af562f15f3	C++: Handle using_container in using-enum downgrade script.	2024-07-22 18:02:14 +01:00
Geoffrey White	e8718f9d2f	C++: Change note.	2024-07-22 18:01:47 +01:00
Geoffrey White	7b03f3268f	C++: Fix false positives.	2024-07-22 18:00:15 +01:00
Chuan-kai Lin	81ab2025a1	Merge pull request #17032 from github/release-prep/2.18.1 ... Release preparation for version 2.18.1	2024-07-22 09:46:06 -07:00
Alexandre Boulgakov	06a9599906	C++: Update stats for using enum.	2024-07-22 17:42:31 +01:00
Chuan-kai Lin	cda4339056	Minor changelog improvements	2024-07-22 09:42:31 -07:00
Alexandre Boulgakov	11f5663afc	C++: Add using enum upgrade and downgrade scripts.	2024-07-22 17:42:28 +01:00
Alexandre Boulgakov	a0954f15c0	C++: Support using enum declarations.	2024-07-22 17:42:25 +01:00
Geoffrey White	45e92cec6a	C++: Extend tests for cpp/suspicious-allocation-size.	2024-07-22 17:34:49 +01:00
Salah Baddou	2ad70cbee2	Move SensitiveLoggerConfig source to extensible format	2024-07-22 17:34:00 +01:00
Mathias Vorreiter Pedersen	db9cd1f612	C++: Fix QLDoc copy-paste fails.	2024-07-22 17:08:01 +01:00
Geoffrey White	b1608d815b	C++: Change note.	2024-07-22 16:34:41 +01:00
Geoffrey White	b4fa23d731	C++: Address false positive results in template instantiations.	2024-07-22 16:34:39 +01:00
Mathias Vorreiter Pedersen	c256c87a7e	Update cpp/ql/lib/semmle/code/cpp/models/implementations/Iterator.qll	2024-07-22 16:34:23 +01:00
Mathias Vorreiter Pedersen	281212a22c	C++: Accept test changes.	2024-07-22 16:23:26 +01:00
Mathias Vorreiter Pedersen	999fb07931	C++: Add more alias models.	2024-07-22 16:19:19 +01:00
Rasmus Lerchedahl Petersen	3434c38da7	Python: update test expectations ... This is MaD...	2024-07-22 17:03:29 +02:00
github-actions[bot]	55935fc123	Release preparation for version 2.18.1	2024-07-22 14:56:15 +00:00
Rasmus Lerchedahl Petersen	e30f725e71	Python: Remove questionable model for multiprocessing.connection.Listener	2024-07-22 15:43:06 +02:00
Anders Schack-Mulligen	272e523323	Dataflow: Add provenance to StagePathGraph.	2024-07-22 15:02:13 +02:00
Geoffrey White	8262330e4d	C++: Extend the placement new test cases for cpp/incorrect-allocation-error-handling.	2024-07-22 12:38:19 +01:00
Alvaro Muñoz	2dffb865d0	Bump qlpack versions	2024-07-22 12:45:34 +02:00
Alvaro Muñoz	15649afd5c	feat(queries): Improve envvar injection queries ... Consider those cases where the contents of a file are written to a var and that var assigned to GITHUB_ENV	2024-07-22 12:44:27 +02:00
Geoffrey White	b00e312569	C++: Replace placeholder key in the example for cpp/cleartext-storage-database.	2024-07-22 11:17:34 +01:00
Geoffrey White	f931dab14a	C++: Improve the cpp/cleartext-* query examples by using libsodium rather than pseudocode.	2024-07-22 11:17:33 +01:00
Geoffrey White	ffc61ae1bb	C++: Make memset_s a clearer recommendation in the .qhelp for cpp/memset-may-be-deleted.	2024-07-22 09:51:22 +01:00
Marcono1234	6d468c1bae	Java: Update Annotation predicate examples in language guide	2024-07-21 19:31:55 +02:00