Geoffrey White
|
98f84646d6
|
C++: Result changes due to iterators PR, which adds support for std::string begin and end, and iterator parameters to std::string::insert and some similar functions.
|
2020-09-03 10:52:24 +01:00 |
|
Geoffrey White
|
7917dff843
|
C++: Add test cases for std::string and std::vector using iterator methods.
|
2020-09-03 10:52:23 +01:00 |
|
Geoffrey White
|
fcdbe0f512
|
C++: Add a const conversion constructor to std::iterator in the tests.
|
2020-09-03 10:52:23 +01:00 |
|
Rasmus Wriedt Larsen
|
9a821bf449
|
Merge pull request #4 from yoff/RasmusWL-python-more-complete-dataflow-tests
Python: Annotate test file
|
2020-09-03 11:28:42 +02:00 |
|
Rasmus Lerchedahl Petersen
|
aad51af4ce
|
Python: use concrete iterable source
|
2020-09-03 11:25:41 +02:00 |
|
yoff
|
8997799e4d
|
Merge pull request #1 from RasmusWL/RasmusWL-python-more-complete-dataflow-tests
Small fixups to your PR to my PR
|
2020-09-03 11:14:52 +02:00 |
|
Rasmus Wriedt Larsen
|
b958c3b833
|
Python: Update comment for test8
|
2020-09-03 11:13:32 +02:00 |
|
CodeQL CI
|
aa4237c27c
|
Merge pull request #4191 from erik-krogh/v8Syntax
Approved by esbena
|
2020-09-03 09:57:00 +01:00 |
|
Erik Krogh Kristensen
|
3952553953
|
adjust comment about inconsistency for XSS in typeahead
|
2020-09-03 10:50:40 +02:00 |
|
Alessio Della Libera
|
116e7d006d
|
Update javascript/ql/src/experimental/Security/CWE-090/LdapInjection.qhelp
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
|
2020-09-03 10:32:18 +02:00 |
|
Alessio Della Libera
|
bfae0ef5d5
|
Update javascript/ql/src/experimental/Security/CWE-090/LdapInjection.qhelp
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
|
2020-09-03 10:32:08 +02:00 |
|
CodeQL CI
|
2ba84be565
|
Merge pull request #4185 from erik-krogh/unusedArrDestruct
Approved by esbena
|
2020-09-03 09:18:15 +01:00 |
|
Erik Krogh Kristensen
|
4fdd2cd794
|
add change note
|
2020-09-03 10:06:52 +02:00 |
|
Erik Krogh Kristensen
|
1f9749fbfe
|
revert mailto: change in TargetBlank.ql
|
2020-09-03 09:39:01 +02:00 |
|
Erik Krogh Kristensen
|
d7a96d685a
|
simplify implementation of getDelimiterMatchingRegexp
|
2020-09-03 09:37:43 +02:00 |
|
Erik Krogh Kristensen
|
87d39db95f
|
add change note
|
2020-09-03 08:58:33 +02:00 |
|
Erik Krogh Kristensen
|
ec21236bba
|
update docstring for isNonLastDestructedArrayElement
Co-authored-by: Esben Sparre Andreasen <esbena@github.com>
|
2020-09-03 08:51:10 +02:00 |
|
Erik Krogh Kristensen
|
fb3148a7a8
|
autoformat
|
2020-09-03 08:17:08 +02:00 |
|
Mathias Vorreiter Pedersen
|
0fed7c0745
|
C++/C#: Sync identical files
|
2020-09-02 22:53:45 +02:00 |
|
Max Schaefer
|
ec3c1f114c
|
JavaScript: Simplify steps through promises.
|
2020-09-02 21:40:34 +01:00 |
|
Mathias Vorreiter Pedersen
|
fa26eed3e2
|
Update cpp/ql/src/semmle/code/cpp/ir/implementation/aliased_ssa/Operand.qll
Co-authored-by: Dave Bartolomeo <dbartol@github.com>
|
2020-09-02 22:29:38 +02:00 |
|
Mathias Vorreiter Pedersen
|
428bcc5e03
|
Update cpp/ql/src/semmle/code/cpp/ir/implementation/aliased_ssa/Instruction.qll
Co-authored-by: Dave Bartolomeo <dbartol@github.com>
|
2020-09-02 22:29:28 +02:00 |
|
Arthur Baars
|
00668b536a
|
Merge pull request #4188 from aibaars/csharp-buildless
C#: autobuild: fix buildless mode for CodeQL
|
2020-09-02 21:04:39 +02:00 |
|
Andrew Eisenberg
|
d2a91970f3
|
Update devcontainer memory settings
CodeQL CLI needs a minimum of 2G of memory. By default, the memory used is slightly less than that, leading to poor performance.
|
2020-09-02 12:04:34 -07:00 |
|
Max Schaefer
|
702192c316
|
JavaScript: Make implicit inits of module and exports source nodes.
This is instead of making every access to those variables source nodes, and fixes a regression in `DeadStoreOfProperty`.
|
2020-09-02 19:52:13 +01:00 |
|
Max Schaefer
|
9840a7ddfb
|
JavaScript: Add utility predicate SSA::implicitInit.
|
2020-09-02 19:46:59 +01:00 |
|
Max Schaefer
|
d81d80430e
|
JavaScript: Add a regression test for DeadStoreOfProperty.
|
2020-09-02 19:45:27 +01:00 |
|
Max Schaefer
|
df49818152
|
JavaScript: Address review comments.
|
2020-09-02 19:45:27 +01:00 |
|
Ian Lynagh
|
8c7431c4ae
|
C++: Put {true,false}cond_base back as deprecated predicates for now
|
2020-09-02 19:10:36 +01:00 |
|
Ian Lynagh
|
c980ccf7c5
|
C++: Add an upgrade script
|
2020-09-02 19:05:05 +01:00 |
|
Ian Lynagh
|
8ce1edbed3
|
C++: Update stats now CFG tables have been removed
|
2020-09-02 19:05:05 +01:00 |
|
Tom Hvitved
|
26639a113e
|
C#: Rename Layout.Condition to FilePattern and move to separate file
|
2020-09-02 19:41:22 +02:00 |
|
Max Schaefer
|
82d92dc726
|
JavaScript: Avoid bad join order.
The optimiser decided that it would be a great idea to start the pipeline with `getReturn().getAUse().(DataFlow::InvokeNode)`. It's not.
|
2020-09-02 17:42:33 +01:00 |
|
Max Schaefer
|
500f7bd8fa
|
JavaScript: Reduce complexity of SystemCommandExecutors charpred.
|
2020-09-02 17:42:32 +01:00 |
|
Max Schaefer
|
e3a9906071
|
JavaScript: Switch MissingRateLimiting.qll to API graphs.
The added test shows how this helps us avoid false positives.
|
2020-09-02 17:35:47 +01:00 |
|
Max Schaefer
|
e34a821cc6
|
JavaScript: Switch system-command executor modelling from source nodes to API graphs.
|
2020-09-02 17:35:47 +01:00 |
|
Max Schaefer
|
6d68036d85
|
JavaScript: Add test demonstrating more SQL flow.
|
2020-09-02 17:35:47 +01:00 |
|
Max Schaefer
|
68b3ccdc65
|
JavaScript: Switch SQL modelling from source nodes to API graphs.
|
2020-09-02 17:35:47 +01:00 |
|
Max Schaefer
|
f3e9104be4
|
JavaScript: Add implementation of API graphs.
|
2020-09-02 17:35:47 +01:00 |
|
Arthur Baars
|
babe69d6e9
|
Update unit tests
|
2020-09-02 17:59:56 +02:00 |
|
Mathias Vorreiter Pedersen
|
3cbc4cf0b9
|
C++: Add field to object taint tests
|
2020-09-02 17:32:46 +02:00 |
|
Rasmus Wriedt Larsen
|
bf34b07605
|
Python: Add a few taint tests for default sanitizer
specifically the ones removes from dataflow tests in https://github.com/yoff/codeql/pull/1
|
2020-09-02 16:56:05 +02:00 |
|
Taus
|
8e86d56bce
|
Merge pull request #4189 from RasmusWL/python-experimental-file-structure
Python: Move files in experimental dirs to be consistent
|
2020-09-02 16:34:35 +02:00 |
|
Arthur Baars
|
90f013d74f
|
Merge pull request #4176 from aibaars/missing-qhelp
Add missing QHelp files
|
2020-09-02 16:12:42 +02:00 |
|
Asger F
|
2c0e9f0c86
|
Merge pull request #4186 from github/rc/1.25
Mergeback: 1.25 -> main
|
2020-09-02 15:12:25 +01:00 |
|
Mathias Vorreiter Pedersen
|
7f5f6b15f7
|
C++: Make FieldContent private again
|
2020-09-02 16:05:40 +02:00 |
|
Rasmus Wriedt Larsen
|
4387d106aa
|
Python: Fix formatting (last time, promise)
|
2020-09-02 15:36:50 +02:00 |
|
Rasmus Wriedt Larsen
|
8aab0c8be7
|
Python: Fix .qlref for experimental security tests
|
2020-09-02 15:35:50 +02:00 |
|
Max Schaefer
|
cd64ce7b1a
|
JavaScript: Add utility predicate SSA::implicitInit.
|
2020-09-02 14:34:52 +01:00 |
|
CodeQL CI
|
c017308505
|
Merge pull request #4134 from erik-krogh/genCalls
Approved by asgerf
|
2020-09-02 14:23:39 +01:00 |
|