codeql

mirror of https://github.com/github/codeql.git synced 2026-03-31 04:38:18 +02:00

Author	SHA1	Message	Date
Tom Hvitved	6611978368	Update rust/ql/lib/codeql/rust/internal/typeinference/DerefChain.qll Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-02-09 19:38:49 +01:00
Tom Hvitved	16539b4667	Address review comments	2026-02-09 19:30:58 +01:00
$REDMOND\brodes$ REDMOND\brodes	23bab81855	Added change log	2026-02-09 13:22:35 -05:00
$REDMOND\brodes$ REDMOND\brodes	df54459552	Restore prior PR change log (accidentally removed)	2026-02-09 13:19:02 -05:00
Ben Rodes	85ae4045c5	Merge branch 'main' into azure_python_sanitizer_upstream2	2026-02-09 13:12:38 -05:00
Ian Lynagh	6235edaa21	C++: Update stats	2026-02-09 18:01:02 +00:00
Ian Lynagh	9a5128f915	C++: Add up/downgrade scripts	2026-02-09 18:01:01 +00:00
Ian Lynagh	c5f6820b5d	C++ overlay: Add trap_filename, source_file_uses_trap, in_trap	2026-02-09 18:01:01 +00:00
yoff	5ad42f8bcc	Merge pull request #20563 from microsoft/azure_python_sdk_url_summary_upstream Azure python sdk url summary upstream	2026-02-09 18:34:36 +01:00
Michael Nebel	bee1718469	QL4QL: Allow Impl classes to implement getAPrimaryQLClass with non Impl suffix.	2026-02-09 16:53:43 +01:00
$REDMOND\brodes$ REDMOND\brodes	98b51149da	C++: Change log missing .md extension.	2026-02-09 10:48:24 -05:00
$REDMOND\brodes$ REDMOND\brodes	8e36316ebf	C++: Addressing Copilot PR suggestions.	2026-02-09 10:42:34 -05:00
Michael Nebel	3e914f7ff1	C#: Add DB downgrade script.	2026-02-09 16:24:19 +01:00
Michael Nebel	42d2de848d	C#: Add DB upgrade script.	2026-02-09 16:24:00 +01:00
Ian Lynagh	b5e3168032	Merge pull request #21286 from github/andersfugmann/kotlin_2.3.10-no-artifacts Kotlin: Support Kotlin 2.3.10	2026-02-09 13:26:40 +00:00
Tom Hvitved	109d802607	Rust: Fix bug in `inferMethodCallTypeSelf`	2026-02-09 14:15:05 +01:00
Michael B. Gale	71e8730c63	Merge pull request #21263 from github/mbg/csharp/registry-diagnostic C#: Add diagnostic for private registry usage	2026-02-09 12:58:43 +00:00
Michael Nebel	eff9f99f44	C#: Update test expected output.	2026-02-09 13:30:14 +01:00
Michael Nebel	d9fea156f6	C#: Update MaD models for extension members.	2026-02-09 13:28:11 +01:00
Michael Nebel	bcdbd6e283	C#: Use the fully qualified name for the extension type when printing extension types.	2026-02-09 13:27:32 +01:00
Michael Nebel	fe94b3b68b	C#: Address review comments.	2026-02-09 11:46:53 +01:00
Owen Mansel-Chan	90401b3ad3	Merge pull request #21254 from owen-mc/go/astnode-get-enclosing-block Go: Add `AstNode.getEnclosingBlock()`	2026-02-06 22:23:15 +00:00
$REDMOND\brodes$ REDMOND\brodes	1796bc0abb	C++: Add change note.	2026-02-06 16:19:11 -05:00
$REDMOND\brodes$ REDMOND\brodes	36cc20989c	C++: Accept test changes (removing false negative)	2026-02-06 16:11:51 -05:00
$REDMOND\brodes$ REDMOND\brodes	2b806ad6fd	C++: Add missing DateTime models for PTIME_FIELDS and TIME_FIELDS	2026-02-06 16:10:04 -05:00
$REDMOND\brodes$ REDMOND\brodes	a534d26449	C++: Accept test changes.	2026-02-06 16:07:44 -05:00
$REDMOND\brodes$ REDMOND\brodes	ca18179bd2	C++: Correct false positive. Only TimeConversionFunction that do not auto correct for leap year should be considered.	2026-02-06 16:07:07 -05:00
$REDMOND\brodes$ REDMOND\brodes	d9feadcfec	C++. Accept test changes. One false positive introduced, and one false negative remains.	2026-02-06 16:05:38 -05:00
$REDMOND\brodes$ REDMOND\brodes	95d4a541bc	C++: Refactor leap year logic for UncheckedLeapYearAfterYearModification. Includes new logic for detecting leap year checks, new forms of leap year checks detected, and various heuristics to remove false postives. Move TimeConversionFunction into LeapYear.qll and refactored to separate conversion functions that are expected to be checked for failure from those that auto correct leap year dates if feb 29 is provided on a non-leap year. Increas the set of known TimeConversionFunctions.	2026-02-06 16:03:37 -05:00
$REDMOND\brodes$ REDMOND\brodes	6c171c804f	C++: Add more tests for modified years with and without leap year checks (UncheckedLeapYearAfterYearModification). Switch to using 'postprocess' for unit tests.	2026-02-06 16:03:25 -05:00
Jon Janego	d0bd8459a1	Merge pull request #21291 from github/codeql-spark-run-21760759512 Update changelog documentation site	2026-02-06 12:28:56 -06:00
Jon Janego	1c43ceae95	Merge branch 'main' into codeql-spark-run-21760759512	2026-02-06 12:16:31 -06:00
Geoffrey White	a5aeadd31d	Rust: Fix for neutral summaries.	2026-02-06 18:15:13 +00:00
Jon Janego	5bf2d9442e	Fix formatting in changelog for Go path injection query	2026-02-06 12:14:03 -06:00
Jon Janego	c40d784a4d	Update codeql-cli-2.23.1.rst	2026-02-06 12:13:34 -06:00
Jon Janego	bf6568b928	Fix formatting for Kotlin version support note	2026-02-06 12:12:55 -06:00
Jon Janego	79ad064a93	Fix formatting in Kotlin version support note	2026-02-06 12:12:16 -06:00
Jon Janego	552976d057	Update codeql-cli-2.19.1.rst	2026-02-06 12:11:49 -06:00
github-actions[bot]	353cd31ce6	update codeql documentation	2026-02-06 18:09:49 +00:00
Geoffrey White	08174d7ec9	Rust: Add test cases for summaries as well.	2026-02-06 18:05:54 +00:00
$REDMOND\brodes$ REDMOND\brodes	f6c302b68c	Removing commented out test cases.	2026-02-06 11:28:48 -05:00
$REDMOND\brodes$ REDMOND\brodes	4f11913ee5	removing SSRFSink.qll	2026-02-06 11:23:58 -05:00
$REDMOND\brodes$ REDMOND\brodes	42f6e6a19c	Fixing inefficiently passed variable in nested existential quantification.	2026-02-06 11:20:15 -05:00
$REDMOND\brodes$ REDMOND\brodes	97f19d03ad	Updating test case expected alerts.	2026-02-06 11:20:13 -05:00
$REDMOND\brodes$ REDMOND\brodes	97ddab0724	Added support for new URIValidator in AntiSSRF library. Updated test caes to use postprocessing results. Currently results for partial ssrf still need work, it is flagging cases where the URL is fully controlled, but is sanitized. I'm not sure if this should be flagged yet.	2026-02-06 11:20:11 -05:00
$REDMOND\brodes$ REDMOND\brodes	27e19813be	Removing an upstream change log, not needed for local fork update.	2026-02-06 11:20:10 -05:00
$REDMOND\brodes$ REDMOND\brodes	88adb05d4b	Adjusting acryonym for SSRF for casing standards.	2026-02-06 11:20:08 -05:00
$REDMOND\brodes$ REDMOND\brodes	265922d2e5	Adding docs.	2026-02-06 11:20:01 -05:00
$REDMOND\brodes$ REDMOND\brodes	7db97799c1	Moved change log to correct location.	2026-02-06 11:19:22 -05:00
Ben Rodes	08b72d0a86	Update python/ql/test/query-tests/Security/CWE-918-ServerSideRequestForgery/test_azure_client.py Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-02-06 11:18:51 -05:00

... 11 12 13 14 15 ...

86439 Commits