hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-11 01:54:00 +02:00
Code Issues Packages Projects Releases Wiki Activity
86,439 Commits 1,740 Branches 164 Tags
codeql-cli/v2.25.0
Commit Graph

86439 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Geoffrey White
0df652b297 Rust: Autoformat. 2025-03-12 16:38:00 +00:00
Geoffrey White
64b57679bf Rust: ... one more fix. 2025-03-12 16:32:53 +00:00
Geoffrey White
ee6455a7b1 Rust: ... and extend QuerySink to complete the above. 2025-03-12 16:23:41 +00:00
Geoffrey White
56f6a67d5f Rust: Add sinks for rust/regex-injection to stats. 2025-03-12 16:08:33 +00:00
Geoffrey White
f8112945a8 Merge branch 'main' into sourcesinkdoc 2025-03-12 16:04:56 +00:00
Geoffrey White
df4f117a7c Rust: QLDoc formatting. 2025-03-12 15:59:44 +00:00
Napalys Klicius
40903a9643 Merge pull request #18975 from Napalys/js/tanstack_angular 
JS: Update Angular Client Request's with API graph and `Tanstack` Angular modeling
 2025-03-12 15:30:26 +01:00
yoff
a5101bdae6 Merge pull request #18855 from Kwstubbs/ssrf_documentation 
Python: Add more documentation in regards to SSRF
 2025-03-12 15:27:01 +01:00
Michael Nebel
b76527fa84 C#: Add cs/constant-condition to the CCR suite. 2025-03-12 14:55:20 +01:00
Michael Nebel
e79cb443da Merge pull request #18976 from michaelnebel/csharp/constant-condition 
C#: Increase precision of `cs/constant-condition`.
 2025-03-12 14:42:15 +01:00
Napalys
f867e0fae8 Added angular-query so when it is released it would be still modeled. 2025-03-12 14:00:44 +01:00
Napalys Klicius
bf24f7794f Update javascript/ql/lib/change-notes/2025-03-11-tanstack-angular.md 
Co-authored-by: Asger F <asgerf@github.com>
 2025-03-12 13:58:09 +01:00
Napalys Klicius
86bd3b8d26 Merge pull request #18986 from Napalys/js/remove_dedundant_stats 
JS: Removed auto generated stats file
 2025-03-12 12:51:26 +01:00
Napalys
8a8defd48f Removed redundant stats file genarated from check-db-upgrades-javascript 2025-03-12 11:57:27 +01:00
Napalys
09986bc26c Added change note. 2025-03-12 11:54:57 +01:00
Napalys
770920e738 Add new model configuration for @tanstack/angular-query-experimental. 2025-03-12 11:54:55 +01:00
Napalys
184d23df46 Add test cases for @tanstack/angular-query-experimental injectQuery 2025-03-12 11:54:53 +01:00
Asger F
b4016c144b Merge pull request #18973 from asgerf/js/vue-fix 
JS: Fix attributes nodes missing an enclosing callable
 2025-03-12 11:23:25 +01:00
Arthur Baars
b2e0eaf664 Merge pull request #18965 from JarLob/docs 
Minor example workflow fix
 2025-03-12 11:17:42 +01:00
Michael Nebel
42f86a8234 Update csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql 
Co-authored-by: Tom Hvitved <hvitved@github.com>
 2025-03-12 11:13:25 +01:00
Chris Smowton
312f201ce0 Merge pull request #18836 from smowton/smowton/admin/maven-download-failure-test 
Java: Add integration test for failure to download a particular Maven version
 2025-03-12 10:11:14 +00:00
Tom Hvitved
902b2ff641 Merge pull request #18983 from hvitved/ruby/synth-global-test 
Ruby: Add `SyntheticGlobal` test
 2025-03-12 10:57:42 +01:00
Chris Smowton
4205d5ecea Change note 2025-03-12 09:21:09 +00:00
Chris Smowton
c43b2b167f Fix test on Windows 2025-03-12 09:21:08 +00:00
Chris Smowton
0c99ae2800 Add Win32 Maven command 2025-03-12 09:21:07 +00:00
Chris Smowton
cd0aebefa4 Add integration test for failure to download a particular Maven version 2025-03-12 09:21:06 +00:00
Óscar San José
ca6f3ffa43 Merge pull request #18742 from github/oscarsj/add-actions-analysis 
Add actions to codeql analysis workflow
 2025-03-12 10:11:58 +01:00
Napalys Klicius
eddd724ea0 Merge pull request #18981 from Napalys/js/db_stats_fix 
JS: Update database.stats
 2025-03-12 09:24:09 +01:00
Tom Hvitved
a574c9f276 Ruby: Add SyntheticGlobal test 2025-03-12 09:22:41 +01:00
Michael Nebel
9e8339db6d Merge pull request #18961 from michaelnebel/csharp/ccr-local-not-disposed 
C#: Add `cs/local-not-disposed` to the CCR suite.
 2025-03-12 09:18:40 +01:00
Michael Nebel
4a3e463918 Merge pull request #18950 from michaelnebel/csharp/localnotdisposed 
C#: Exclude Task from cs/local-not-disposed.
 2025-03-12 09:17:22 +01:00
Napalys
979a5b4587 Updated stats file with intersection, subtraction and quoted_string. 2025-03-12 09:02:53 +01:00
Simon Friis Vindum
b3601b1ac2 Merge pull request #18946 from paldepind/rust-regex-injection 
Rust: Add regular expression injection query
 2025-03-12 08:15:54 +01:00
M Starch
f01737a4c0 Fixing BasicIntTypes to allow C Standard Integers and 'bool' 
The purpose of this check is to ensure that all integral types used by the code point to some fixed size type (e.g. an unsigned 8-bit integer). However; the previous implementation only allowed JPL style typedefs (i.e. U8) and ignored C standard integer types (i.e. uint8_t). This causes the query to false-positive when a typedef resolves to a C standard int type.

'bool' has also be allowed as part of the exclusions list as it represents distinct values 'true' and 'false' in C++ code.
 2025-03-11 14:56:57 -07:00
Jami
269f9fa7c9 Merge pull request #18978 from jcogs33/jcogs33/java/rename-springframework-stubs-dir 
Java: rename springframework stubs directory from 5.3.8 to 5.8.x
 2025-03-11 16:39:30 -04:00
Jami Cogswell
e17486a9d8 Java: rename springframework stubs directory from 5.3.8 to 5.8.x 2025-03-11 15:20:58 -04:00
REDMOND\brodes
8a7671dc2a Adding block mode models to openssl. 2025-03-11 15:20:05 -04:00
REDMOND\brodes
71eae39feb Adding missing block modes. 2025-03-11 15:19:42 -04:00
REDMOND\brodes
c98e6d7c56 Adding a stub EVP_CIpher_Operation for EVP_PKEY, this probably should be made into it's own class, hence it is a stub with comments. 2025-03-11 14:49:07 -04:00
REDMOND\brodes
a9458ba762 Formatting, removing dead comments, 2025-03-11 14:48:38 -04:00
REDMOND\brodes
d988afd4a4 Adding an EVP_AASYM_CIPHER_fetch getter. 2025-03-11 14:47:10 -04:00
REDMOND\brodes
7757279908 Adding a KDF algorithm getter. 2025-03-11 14:46:36 -04:00
Jami
ea9b0462bf Merge pull request #18793 from jcogs33/jcogs33/java/spring-boot-actuators-promo 
Java: Promote Spring Boot Actuators query from experimental
 2025-03-11 14:42:14 -04:00
REDMOND\brodes
44b1e921d6 commenting out hash size for now, TODO 2025-03-11 14:10:04 -04:00
REDMOND\brodes
085e8d40fd Hash nodes have instances. 2025-03-11 14:06:36 -04:00
REDMOND\brodes
f69b057893 Updating OpenSSLKnownAlgorithmConstants.qll (a few bugs) and also enforcing that known key sizes are on the normalized name (need to re-visit for GOST). 2025-03-11 13:35:44 -04:00
REDMOND\brodes
ae574f7cf2 Resolving hash and cipher types for openssl not using literals but KnownOpenSSLAlgorithmConstant. 2025-03-11 13:35:02 -04:00
Remco Vermeulen
da720b8b6e Merge pull request #18966 from github/rvermeulen/add-missing-dependency 
Add missing dependency
 2025-03-11 09:43:45 -07:00
Geoffrey White
daa57a9cb5 Merge pull request #18952 from geoffw0/unusedvarfix 
Rust: Improve rust/unused-variable and rust/unused-value
 2025-03-11 15:52:42 +00:00
Asger F
356b9e68c3 JS: Change note 2025-03-11 16:51:51 +01:00