hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-17 15:33:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
85,654 Commits 1,692 Branches 160 Tags
codeql-cli/v2.24.1
Commit Graph

85654 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael Nebel
83343e1031 Merge pull request #20663 from michaelnebel/csharp/dotnet10rc2traced 
C#: Tracer support for invoking `csc` directly.
 2025-10-22 15:36:34 +02:00
Tom Hvitved
cf05414a93 Address review comments (iv) 2025-10-22 15:29:57 +02:00
Geoffrey White
6878a43223 Rust: Add missing file. 2025-10-22 14:18:16 +01:00
Paolo Tranquilli
f0c56edfc7 Update .github/instructions/expected-files.instructions.md 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-10-22 15:14:51 +02:00
Paolo Tranquilli
31627b4eb9 Copilot: move instructions to path-specific files 
This is now supported. See

https://docs.github.com/en/copilot/how-tos/configure-custom-instructions/add-repository-instructions

for details.
 2025-10-22 14:54:37 +02:00
Geoffrey White
8336a956c0 Rust: Add consistency check failures. 2025-10-22 13:50:49 +01:00
Michael Nebel
47c751be32 C#: Only run integration test on windows and linux. 2025-10-22 14:12:17 +02:00
Napalys Klicius
9c70ae04fb Add change note 2025-10-22 11:48:16 +00:00
Napalys Klicius
91b0aaa631 Java: Lower security-severity for Insecure Cookie query to 4.0 2025-10-22 11:45:04 +00:00
Napalys Klicius
fa47174013 CWE-020: Lower security-severity for OverlyLargeRange queries to 4.0 2025-10-22 11:32:33 +00:00
Napalys Klicius
7b6720ce2c JS: Align DOM XSS query severity with other XSS queries 2025-10-22 11:30:34 +00:00
Michael Nebel
6a02649334 Merge pull request #20555 from michaelnebel/csharp/staridlocationsbuildless 
C#: `*` on Source locations in BMN.
 2025-10-22 13:28:11 +02:00
Michael Nebel
7a414089e4 C#: Use autobuilder instead of supplying build command. 2025-10-22 13:25:23 +02:00
Michael Nebel
e14879ba33 C#: Add integration test for DB creation using .NET 10 RC 2. 2025-10-22 12:59:40 +02:00
Michael Nebel
d5ff9bf5d0 C#: Collapse tracer cases for csc, csc.exe and mcs.exe and remote quoting. 2025-10-22 11:58:02 +02:00
Owen Mansel-Chan
50e0ca8cb4 Merge pull request #20622 from owen-mc/docs/fix-dataflow-examples 
Docs: add path query example to data flow docs
 2025-10-22 10:57:42 +01:00
Tom Hvitved
2cc8b7f6dd Address review comments (iii) 2025-10-22 11:07:20 +02:00
Anders Schack-Mulligen
c44e6fc3f0 C#: Qldoc tweaks. 2025-10-22 10:22:26 +02:00
Geoffrey White
9b11ec53d4 Rust: Merge InlineFlow.ql test queries using .qlrefs. 2025-10-22 09:02:18 +01:00
Geoffrey White
4893f53607 Rust: Fix a comment. 2025-10-22 09:02:15 +01:00
Geoffrey White
42224fe642 Rust: Clean up the sources test directory. 2025-10-22 09:02:14 +01:00
Geoffrey White
7efd4d26a0 Rust: Accept result regression. 
Presumably because of a change in context, e.g. the module wrapping
this test now, or the different inputs.  Either way we *should* be
able to get the result, and what we *actually* get in our analysis
doesn't change here either.  We've just slightly changed the test
and exposed a gap.
 2025-10-22 09:02:12 +01:00
Geoffrey White
8a7e206401 Rust: Move the remaining test_futures_io test into net. 2025-10-22 09:02:11 +01:00
Geoffrey White
8c02cb2ed1 Rust: Split off sources/web_frameworks. 2025-10-22 09:02:10 +01:00
Geoffrey White
5ba331e986 Rust: Splits off sources/net. 2025-10-22 09:01:34 +01:00
Geoffrey White
7ddd441e5f Rust: Split off sources/database test. 2025-10-22 09:00:42 +01:00
Geoffrey White
81132beec0 Rust: Split off sources/stdin test. 2025-10-22 09:00:18 +01:00
Geoffrey White
0cc9331abf Rust: Split off sources/file test. 2025-10-22 08:59:50 +01:00
Geoffrey White
a631130030 Rust: Split off sources/env test. 2025-10-22 08:58:59 +01:00
Tom Hvitved
5550da4870 Address review comments (ii) 2025-10-21 20:53:39 +02:00
Tom Hvitved
41602d3efa Address review comments 2025-10-21 18:44:42 +02:00
Tom Hvitved
c2ba4ba3fc Rust: Add change note 2025-10-21 18:44:41 +02:00
Tom Hvitved
ee0467d74c Rust: Update expected output 2025-10-21 18:44:37 +02:00
Tom Hvitved
2f2c6866c4 Rust: Use doublyBoundedFastTC in TraitIsVisible 2025-10-21 17:58:54 +02:00
Tom Hvitved
4b70d20cd6 Rust: Rework call resolution and type inference for calls 2025-10-21 17:58:52 +02:00
Tom Hvitved
e12e9045a3 Rust: Add more type inference tests 2025-10-21 17:58:51 +02:00
Owen Mansel-Chan
c8c1c6e592 Address review comments 2025-10-21 16:54:28 +01:00
REDMOND\brodes
b374ba3d0c Crypto: Updating java 'location' information to be just a location's toString to be more verbose/precise. 2025-10-21 11:48:37 -04:00
Paolo Tranquilli
6d31c6abe0 Merge branch 'main' into redsun82/fix-pytest-build-as-test-windows 2025-10-21 17:04:57 +02:00
REDMOND\brodes
ddeb42cddb Crypto: Adding false positive to BadMacUse.java, we have no way to avoid this FP currently but should note it exists in the test case. 2025-10-21 11:04:57 -04:00
Paolo Tranquilli
a0d2005e1f Merge pull request #20655 from github/redsun82/rust-file-semantics-predicates 
Rust: introduce `ExtractedFile::hasSemantics` and `::isSkippedByCompilation`
 2025-10-21 17:02:28 +02:00
REDMOND\brodes
c50175bc9b Crypto: ql-for-ql alert fixes. 2025-10-21 10:32:00 -04:00
Geoffrey White
edabfa73bf Rust: Delete a no-longer-used test file. 2025-10-21 15:30:32 +01:00
Simon Friis Vindum
f207404b0d C++: Accept test changes 2025-10-21 16:03:12 +02:00
Geoffrey White
7da00b3e9d Rust: Change note. 2025-10-21 13:33:17 +01:00
Geoffrey White
751d62aefb Rust: Add the metric to rust/diagnostic/database-quality (with a very low threshold for the time being). 2025-10-21 13:29:46 +01:00
Geoffrey White
a4aa397ea0 Merge pull request #20634 from geoffw0/mysql2 
Rust: Model mysql and mysql_async sources
 2025-10-21 13:23:03 +01:00
yoff
9e77e5b046 java: add test with deeper paths 
also format test files
 2025-10-21 14:02:36 +02:00
yoff
f183a7223f java: add test for notFullyMonitored 2025-10-21 13:40:29 +02:00
yoff
f4878b3806 java: make as many predicates private as possible 2025-10-21 13:25:26 +02:00