codeql

mirror of https://github.com/github/codeql.git synced 2026-04-13 11:04:07 +02:00

Author	SHA1	Message	Date
Anders Schack-Mulligen	2288eab0fd	Java: Refactor BrokenCryptoAlgorithm, MaybeBrokenCryptoAlgorithm	2023-03-07 13:53:36 +01:00
Paolo Tranquilli	c4fd39ec3f	C++: fix example code for `FilePermissions.qll`	2023-03-07 13:50:20 +01:00
Arthur Baars	78a802359e	Remove references to 'ruby' in generic extractor code	2023-03-07 13:38:48 +01:00
Anders Schack-Mulligen	50935899fa	Java: Refactor XSS.ql	2023-03-07 13:33:00 +01:00
Paolo Tranquilli	bdad847584	Merge pull request #12422 from github/redsun82/cpp-scanf-fp C++: add false positives to `MissingCheckScanf` test	2023-03-07 13:29:22 +01:00
Rasmus Wriedt Larsen	dda29e99b2	Python: Add test of keyword argument with same name as positional-only parameter This is a bit of an edge case, but allowed. Since we currently don't provide information on positional only arguments, we can't do much to solve it right now.	2023-03-07 13:28:48 +01:00
Asger F	05b5aea477	JS: Changenote	2023-03-07 13:15:44 +01:00
Michael B. Gale	7627a53c49	Merge pull request #12371 from github/mbg/csharp/increase-diagnostic-visibility C#: Make diagnostics visible everywhere	2023-03-07 12:13:09 +00:00
Michael B. Gale	974fdd305e	Merge pull request #12372 from github/mbg/csharp/check-integration-test-diagnostics C#: Add diagnostic checks to all remaining integration tests	2023-03-07 12:11:47 +00:00
Michael B. Gale	b75f138507	Merge pull request #12385 from github/mbg/csharp/readd-tsp-support C#: Add support for the tool status page	2023-03-07 12:10:52 +00:00
Asger F	856b50735d	JS: Expand test case	2023-03-07 13:04:26 +01:00
Paolo Tranquilli	429518bcea	C++: add further FP to test	2023-03-07 12:03:34 +01:00
Paolo Tranquilli	311cf4e7fd	C++: add false positives to `MissingCheckScanf` test See https://github.com/github/codeql/issues/12412 for the initial report.	2023-03-07 11:56:05 +01:00
Anders Schack-Mulligen	d839b4038e	Java: Refactor TaintedPath.ql	2023-03-07 11:53:03 +01:00
Anders Schack-Mulligen	cc75a1a97e	Java: Refactor RequestForgery.ql	2023-03-07 11:39:03 +01:00
Anders Schack-Mulligen	35beadc3bb	Java: Refactor SensitiveInfoLog.ql	2023-03-07 11:31:49 +01:00
Michael Nebel	40d31120d9	Merge pull request #12264 from michaelnebel/csharp/nugetnet7 C#: Stub generator improvements.	2023-03-07 11:30:57 +01:00
Jeroen Ketema	3a4c0a2aae	Merge pull request #12389 from jketema/more-deprecated C++: Add `deprecated` to predicates that are deprecated according to the QLDoc	2023-03-07 11:21:43 +01:00
Anders Schack-Mulligen	4408482699	Java: Refactor NumericCastTainted, NumericCastTaintedLocal	2023-03-07 10:42:00 +01:00
Anders Schack-Mulligen	d4e6e77200	Java: Refactor StackTraceExposure, XSS.qll	2023-03-07 10:38:00 +01:00
Anders Schack-Mulligen	c4cf2febfb	Java: Refactor ResponseSplitting, ResponseSplittingLocal	2023-03-07 10:37:45 +01:00
Michael Nebel	af12affc36	C#: Re-generate stubs to update comments.	2023-03-07 10:35:13 +01:00
Asger F	0affd898de	JS: Track trusted type policy callbacks	2023-03-07 10:22:26 +01:00
Michael Nebel	676c352819	C#: Update expected test output.	2023-03-07 10:19:26 +01:00
Michael Nebel	e85b2ebd20	C#: Replace stub member comment with file level comment.	2023-03-07 10:19:26 +01:00
Michael Nebel	c8f7304d9b	C#: Address review comments.	2023-03-07 10:19:25 +01:00
Michael Nebel	e797b5c226	C#: Narrow the set of declarations where we make explicit interface implementations.	2023-03-07 10:19:25 +01:00
Michael Nebel	d8acc7cd17	C#: Stub generator support for explicit interface implementations of explicit conversion operators including test cases.	2023-03-07 10:19:25 +01:00
Michael Nebel	59349ed7c7	C#: Add test cases for static and virtual operators in interfaces and overlapping interface declarations.	2023-03-07 10:19:25 +01:00
Michael Nebel	50570dc3ee	C#: Only add explicit interface implementation to the generated stub if it is unique.	2023-03-07 10:19:25 +01:00
Michael Nebel	5ba59fc9a8	C#: Stub generator support for operators in interfaces and interface implementations.	2023-03-07 10:19:25 +01:00
Michael Nebel	b68e78d908	C#: Stub generator support for static virtual and static abstract interface members.	2023-03-07 10:19:25 +01:00
Michael Nebel	aa4b98bbd5	C#: The stub generator should just format whitespaces.	2023-03-07 10:19:25 +01:00
Jeroen Ketema	9ec479a2a0	C++: Update queries to use `DataFlow::ConfigSig`	2023-03-07 10:15:11 +01:00
Tom Hvitved	9b02eb729f	Merge pull request #12419 from hvitved/ruby/stored-xss-config-rewrite Ruby: Rewrite Stored XSS query to use new data flow interface	2023-03-07 09:46:08 +01:00
Asger F	4f0e17bf97	JS: Add step to a few other queries	2023-03-07 09:39:40 +01:00
Jeroen Ketema	c9bccd9b43	C++: Fix more tests that used deprecated function	2023-03-07 09:01:13 +01:00
Tom Hvitved	b6a709df50	Ruby: Rewrite Stored XSS query to use new data flow interface	2023-03-07 07:23:27 +01:00
Geoffrey White	f1905f21b2	Swift: Remove special case from swift/unsafe-js-eval.	2023-03-06 21:02:42 +00:00
Geoffrey White	4380495eed	Swift: Model Sequence.withContiguousSrtorageIfAvailable.	2023-03-06 20:59:17 +00:00
Robert Marsh	686f7ccd5a	Swift: add flow for self out of constructors	2023-03-06 20:46:36 +00:00
Robert Marsh	9731989421	Swift: add tests for flow through constructors	2023-03-06 20:39:58 +00:00
Rasmus Lerchedahl Petersen	8160f742a5	Python: small clean-up - no need for th 2-suffix - context creations are no longer unrestrictions	2023-03-06 19:47:53 +01:00
Arthur Baars	51599b3cae	Address review comments	2023-03-06 18:40:29 +01:00
Geoffrey White	2ed140c696	Swift: Update the pointertypes test.	2023-03-06 17:14:14 +00:00
Mathias Vorreiter Pedersen	ff53e53e8c	Merge pull request #12236 from MathiasVP/language-specific-field-flow-branch-limit-term Dataflow: Add a language specific term to `join` and `branch`	2023-03-06 16:59:09 +00:00
Geoffrey White	4d327dbf4f	Swift: The PointerType class isn't used any d any more.	2023-03-06 16:36:41 +00:00
Geoffrey White	61340c4b20	Swift: Permit data flow from generic arguments, rather than just pointers.	2023-03-06 16:34:12 +00:00
Geoffrey White	1e5b904514	Swift: Add test cases for mutating pointers inside containers.	2023-03-06 16:17:39 +00:00
Mathias Vorreiter Pedersen	aa09361a42	Merge pull request #12407 from MathiasVP/fix-internal-system-data-tests	2023-03-06 15:45:25 +00:00

... 673 674 675 676 677 ...

85368 Commits