hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-04 14:48:20 +02:00
Code Issues Packages Projects Releases Wiki Activity
86,439 Commits 1,732 Branches 164 Tags
codeql-cli/v2.25.0
Commit Graph

86439 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jeroen Ketema
277f5efa9c C++: Update dbscheme stats file 2025-08-29 11:13:59 +02:00
Jeroen Ketema
6b580ac12d C++: Update expected test results 2025-08-29 10:57:03 +02:00
Jeroen Ketema
a145e52faf C++: Add uninitialized local test 2025-08-29 10:55:10 +02:00
Tom Hvitved
611eca41b9 Add change note 2025-08-29 10:22:11 +02:00
Geoffrey White
bdc1f1715d Rust: Add upgrade and downgrade scripts (template). 2025-08-29 08:49:33 +01:00
Geoffrey White
a6bdab15f6 Merge branch 'main' into oldpaths1 2025-08-29 08:30:43 +01:00
Napalys Klicius
b4d6cb6e5f Merge pull request #20178 from Napalys/java/visible-for-testing-abuse 
Java: Added new query `java/visible-for-testing-abuse`
 2025-08-29 08:38:04 +02:00
Napalys Klicius
bafe22c50c Merge pull request #20048 from Napalys/js/xml_bomb_sinks 
JS: Exclude patched libraries from `xml-bomb` sink
 2025-08-29 08:10:55 +02:00
Napalys Klicius
6132900e12 Java: add full stops for ql docs 2025-08-29 08:09:03 +02:00
dependabot[bot]
6e1d9752d2 Bump actions/checkout from 4 to 5 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-29 03:04:30 +00:00
REDMOND\brodes
74ce7cd188 Crypto: Moving all data flow analyses to taint tracking. 2025-08-28 20:40:05 -04:00
Tom Hvitved
0cc9ff8320 Merge pull request #20225 from hvitved/rust/path-resolution-crate-fallback 
Rust: Fallback crate resolution
 2025-08-28 20:48:51 +02:00
Geoffrey White
5d14ef5fd3 Rust: Change note. 2025-08-28 17:14:53 +01:00
Geoffrey White
9e0a31cafc Rust: Change note. 2025-08-28 17:08:03 +01:00
Geoffrey White
5c90b908cd Rust: Lower the thresholds in rust/diagnostic/database-quality to more pragmatic numbers. 2025-08-28 17:08:02 +01:00
Jeroen Ketema
b8917c8c19 Merge branch 'main' into add-comptr-model-now-with-more-models 2025-08-28 17:15:06 +02:00
Mathias Vorreiter Pedersen
b9cd7a80f9 C++: Fix conflation in models. 2025-08-28 17:10:06 +02:00
Mathias Vorreiter Pedersen
759e339444 C++: Add change note. 2025-08-28 17:02:26 +02:00
Mathias Vorreiter Pedersen
ddf0f37dac C++: Accept test changes. 2025-08-28 16:58:49 +02:00
Mathias Vorreiter Pedersen
e59de9a3d6 C++: Add models for the remaining member functions (and conversions) in ComPtr. 2025-08-28 16:56:39 +02:00
Mathias Vorreiter Pedersen
3e78572a3a C++: Drive-by fix: Add missing '@'. 2025-08-28 16:54:49 +02:00
Mathias Vorreiter Pedersen
f135ed957d C++: Add testcases with missing model. 2025-08-28 16:54:46 +02:00
Mathias Vorreiter Pedersen
2c2b1e4116 Merge pull request #20306 from MathiasVP/fix-new-initializer-bug 
C++: Fix IR construction for implicit conversions in `new` initializers
 2025-08-28 16:40:37 +02:00
Jeroen Ketema
1847a450cc Merge pull request #20298 from jketema/pch-expose 
C++: Add class representing PCH files
 2025-08-28 15:33:20 +02:00
Geoffrey White
e8b7ce43a5 Merge pull request #20270 from geoffw0/pathi 
Rust: Improve FS models
 2025-08-28 14:30:18 +01:00
Napalys Klicius
c836104717 Update java/ql/src/Violations of Best Practice/Implementation Hiding/VisibleForTestingAbuse.md 
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
 2025-08-28 15:01:53 +02:00
Napalys Klicius
d3be456c5c Update java/ql/src/Violations of Best Practice/Implementation Hiding/VisibleForTestingAbuse.ql 
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
 2025-08-28 15:01:43 +02:00
Napalys Klicius
73c8f3ded9 Merge pull request #20205 from Napalys/java/mocking-all-non-private-methods-means-unit-test-is-too-big 
Java: port quality query `java/mocking-all-non-private-methods-means-unit-test-is-too-big`
 2025-08-28 14:59:37 +02:00
Joe Farebrother
7ef2b01119 Merge pull request #20142 from joefarebrother/python-qual-subclass-shadow 
Python: Modernise Superclass attribute shadows subclass method query
 2025-08-28 13:40:26 +01:00
Napalys Klicius
1949d9f8f3 Merge branch 'main' into java/mocking-all-non-private-methods-means-unit-test-is-too-big 2025-08-28 14:22:06 +02:00
Napalys Klicius
970167bc62 Java: moved java/mocking-all-non-private-methods-means-unit-test-is-too-big to a more appropriate location, namely Violation of Best Practice/Testing 2025-08-28 14:20:19 +02:00
Geoffrey White
e860600712 Rust: Remove the canonical_path_disabled test entirely. 2025-08-28 12:55:01 +01:00
Michael Nebel
919ed3cff0 Merge pull request #20304 from michaelnebel/csharp/prettyprintmad 
C#: Convert Blazor test to use pretty print models processing.
 2025-08-28 13:54:23 +02:00
Tom Hvitved
aa3f4e1eca C#: Fix context-sensitive dispatch when using base qualifier 2025-08-28 13:24:47 +02:00
Jeroen Ketema
31126649a9 Update cpp/ql/lib/semmle/code/cpp/PchFile.qll 
Co-authored-by: Idriss Riouak <idrissrio@github.com>
 2025-08-28 13:10:39 +02:00
Mathias Vorreiter Pedersen
4116292888 C++: Accept test changes. 2025-08-28 12:13:19 +02:00
Mathias Vorreiter Pedersen
2033552bb2 C++: Handle conversions in new initializers. 2025-08-28 12:13:02 +02:00
Mathias Vorreiter Pedersen
d0e766da3e C++: Add a testcase with invalid IR. 2025-08-28 12:06:21 +02:00
Napalys Klicius
ad6ca51ef2 Update java/ql/src/Likely Bugs/Frameworks/JUnit/ExcessivePublicMethodMocking.ql 
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
 2025-08-28 12:03:56 +02:00
Tom Hvitved
fa7295f0a1 Merge pull request #20303 from hvitved/python/jump-to-def-unpack-tests 
Python: Add jump-to-def tests for unpacking assignments
 2025-08-28 12:03:55 +02:00
Geoffrey White
1e46dd8412 Rust: Remove redundant code. 2025-08-28 10:59:37 +01:00
Tom Hvitved
c2bb3797b0 C#: Add data flow test 2025-08-28 11:57:03 +02:00
Michael Nebel
73ce2a2f57 C#: Convert Blazor test to use pretty print models processing. 2025-08-28 11:46:08 +02:00
Asger F
d117c52d2f JS: Use the LHS as the location for SsaExplicitDefinition 2025-08-28 11:35:15 +02:00
Asger F
4437f47a7b Merge pull request #20297 from asgerf/js/simpler-summary-pruning 
JS: Change pruning to not rely on Import
 2025-08-28 11:20:14 +02:00
Michael Nebel
bd31e7f230 Merge pull request #20278 from michaelnebel/csharp/streamlinebulkmodels2 
C#: Update MaD models to taint entire byte- and char collection.
 2025-08-28 10:49:44 +02:00
Tom Hvitved
bf47f66691 Python: Add jump-to-def tests for unpacking assignments 2025-08-28 10:38:21 +02:00
Joe Farebrother
bde143e4c1 Merge pull request #20038 from joefarebrother/python-qual-comparison 
Python: Modernize 3 quality queries for comparison methods
 2025-08-28 09:37:20 +01:00
Joe Farebrother
45910b9505 Merge remote-tracking branch 'origin/python-qual-subclass-shadow' into python-qual-subclass-shadow 2025-08-28 09:23:42 +01:00
Tom Hvitved
f87f52d8d2 Address review comments 2025-08-28 10:08:48 +02:00