codeql

mirror of https://github.com/github/codeql.git synced 2026-01-14 15:04:56 +01:00

Author	SHA1	Message	Date
toufik-airane	37f44d98ce	fix minor issues	2020-06-23 12:28:03 +02:00
Geoffrey White	dd19ee47a1	C++: Clean up ConversionConstructor.	2020-06-23 11:22:59 +01:00
Rasmus Lerchedahl Petersen	b759b71ac8	Python: explain the regression test	2020-06-23 11:02:33 +02:00
Tom Hvitved	ff751ac0f8	Data flow: Sync files	2020-06-23 10:55:12 +02:00
Tom Hvitved	98ed2a18ac	Data flow: Move field-clearing checks from `flowCandFwf0` into `flowCandFwd`	2020-06-23 10:55:12 +02:00
Tom Hvitved	13b4dfa972	Data flow: Rename `BigStepBarrierNode` to `FlowCheckNode`	2020-06-23 10:55:12 +02:00
Tom Hvitved	3faca03de6	C#: Introduce `ObjectInitializerNode`	2020-06-23 10:55:12 +02:00
Tom Hvitved	83050d96f8	C++: Stub implementations for `clearsContent()`	2020-06-23 10:55:12 +02:00
Tom Hvitved	c01f570d9e	Java: Implement `clearsContent()`	2020-06-23 10:55:12 +02:00
Tom Hvitved	c057e82efa	Data flow: Sync files	2020-06-23 10:55:11 +02:00
Tom Hvitved	e578827626	Java: Add more field-flow tests	2020-06-23 10:55:11 +02:00
Tom Hvitved	a1d5591634	C#: Model field-clearing in data-flow	2020-06-23 10:55:11 +02:00
Tom Hvitved	b5bc15a097	C#: Add more field-flow tests	2020-06-23 10:55:11 +02:00
James Fletcher	843c5c6c1e	Merge pull request #3742 from jf205/sd-110 CodeQL docs: Expand QLDoc style guide	2020-06-23 09:47:25 +01:00
Esben Sparre Andreasen	2d32ee7448	JS: support member calls of `console`	2020-06-23 10:46:01 +02:00
james	7e7d7e752e	docs: further improvements	2020-06-23 09:42:56 +01:00
Jonas Jensen	3747bd98f3	Merge pull request #3694 from geoffw0/models C++: Extend the GetsFunction and SystemFunction models.	2020-06-23 10:15:32 +02:00
Shati Patel	95870977ca	Merge pull request #3763 from adityasharad/java/training-example-brace Fix training example syntax	2020-06-23 08:34:09 +01:00
James Fletcher	c7cfd59651	Apply suggestions from code review Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>	2020-06-23 08:31:48 +01:00
Mathias Vorreiter Pedersen	55ce5ce47a	Merge pull request #3754 from jbj/revert-flat-structs C++: Revert #3419 to fix OpenJDK performance	2020-06-23 08:58:08 +02:00
Rasmus Lerchedahl Petersen	a55b4660d4	Python: support for `with`-definitions	2020-06-23 07:45:30 +02:00
Robert Marsh	c1eb712841	C++: QLDoc for data and taint models	2020-06-22 17:25:55 -07:00
Asger Feldthaus	b4f75ef414	Merge branch 'master' into js-team-sprint-merge2	2020-06-23 00:18:09 +01:00
Asger F	2edeb4aa8d	Merge pull request #3735 from esbena/js/insecure-http-options JS: polish js/disabling-certificate-validation	2020-06-23 00:16:45 +01:00
Asger F	ca06f6dfb4	Merge branch 'js-team-sprint' into js/insecure-http-options	2020-06-23 00:16:02 +01:00
semmle-qlci	69b44def7b	Merge pull request #3759 from asger-semmle/js/sprint-suite Approved by erik-krogh	2020-06-22 23:27:43 +01:00
toufik-airane	f7cbc8a8d4	Enhance query ouput - add valuable text to assess the query results - add an example of the output	2020-06-22 22:34:06 +02:00
toufik-airane	0f8879716f	rewrite description	2020-06-22 21:57:58 +02:00
Aditya Sharad	915148f82c	C++: Fix placeholder syntax in training example	2020-06-22 12:26:26 -07:00
Aditya Sharad	95f8ba433e	Java: Fix training example	2020-06-22 12:21:15 -07:00
Robert Marsh	231b85cb11	C++: File-level QLDoc for publicly imported models	2020-06-22 11:43:43 -07:00
Alessio Della Libera	a759905a5c	Update javascript/ql/src/experimental/Security/CWE-117/LogInjection.qll Co-authored-by: Esben Sparre Andreasen <esbena@github.com>	2020-06-22 20:37:38 +02:00
toufik-airane	364f0ca734	rewrite description	2020-06-22 20:11:58 +02:00
toufik-airane	ac8991b192	remove JWTMissingSecretOrPublicKeyVerification.qll	2020-06-22 20:09:48 +02:00
toufik-airane	d9ecb7d762	rewrite help	2020-06-22 20:06:17 +02:00
toufik-airane	d65b7be32b	rewrite help	2020-06-22 20:00:52 +02:00
Toufik Airane	bb7ba50e23	Apply suggestions from code review Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2020-06-22 19:27:36 +02:00
james	3fa49a9771	address review comment about sentence style	2020-06-22 17:07:10 +01:00
James Fletcher	676d486635	Apply suggestions from code review Co-authored-by: Jonas Jensen <jbj@github.com>	2020-06-22 17:03:31 +01:00
Asger Feldthaus	1efd71a681	JS: Sort security suite	2020-06-22 16:40:55 +01:00
Asger Feldthaus	8cc41a0c84	JS: Add new queries to security suite	2020-06-22 16:40:19 +01:00
Asger F	a067cd35aa	Merge pull request #3756 from esbena/js/delay-slow-query-merge JS: delay merging two slow queries	2020-06-22 16:35:15 +01:00
Asger F	7d54b02fb9	Merge branch 'js-team-sprint' into js/delay-slow-query-merge	2020-06-22 16:34:49 +01:00
Asger F	4a459c8a7d	Merge pull request #3755 from esbena/js/polish-imcs JS: polish js/incomplete-html-attribute-sanitization	2020-06-22 16:32:16 +01:00
Jonas Jensen	39137510ba	Merge pull request #3736 from rneatherway/exclude-cs-vulnerable-package Exclude dependency-based query from C# Code Scanning	2020-06-22 17:27:23 +02:00
Geoffrey White	466f36c7e1	C++: Autoformat.	2020-06-22 16:04:32 +01:00
Rasmus Wriedt Larsen	d5895c16c8	Python: Changing signature in overriden method is not an error Rather, fulfiling the Liskov substitution principle is an opinionated recommendation. Looking at `py/inheritance/incorrect-overridden-signature` and `py/mixed-tuple-returns`, it seems very appropriate that this should have `@severity recommendation`, and `@sub-severity high`.	2020-06-22 16:58:52 +02:00
Rasmus Lerchedahl Petersen	e8289d6fa1	Python: add regression tests and organise tests	2020-06-22 16:36:19 +02:00
Asger Feldthaus	5cd2c7cdb2	JS: Reduce precision of js/unused-npm-dependency	2020-06-22 15:25:24 +01:00
Rasmus Lerchedahl Petersen	aa04a2a476	Python: sync dataflow files	2020-06-22 14:56:11 +02:00

... 118 119 120 121 122 ...

19777 Commits