hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-26 21:02:58 +01:00
Code Issues Packages Projects Releases Wiki Activity
19,777 Commits 1,687 Branches 159 Tags
codeql-cli/v2.4.4
Commit Graph

19777 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mark Shannon
5b145edc3f Python: Fix getOperand() for not node and make sure it can only point-to a boolean. 2019-06-19 11:23:02 +01:00
Taus
cb43d27344 Merge pull request #1472 from markshannon/python-taint-through-iterators 
Python: Track taint through iteration and iterators including generators.
 2019-06-19 11:33:10 +02:00
Taus
b43df7439e Merge pull request #1471 from markshannon/python-no-taint-past-sinks 
Python: Don't record taint past sinks.
 2019-06-19 11:23:27 +02:00
Jonas Jensen
53d4b2dfc9 Merge pull request #1365 from geoffw0/uninit 
CPP: Fix for the 'LoopConditionAlwaysTrueUponEntry' logic
 2019-06-19 11:01:57 +02:00
Tom Hvitved
dca27927dc C#: Remove unused PasswordInConfigurationFile.config 2019-06-19 10:57:14 +02:00
yh-semmle
f8f217be31 Java: add db stats for compilation/diagnostic relations 2019-06-19 10:44:30 +02:00
yh-semmle
b31b8b2403 Java: add compilation/diagnostic relations to dbscheme 2019-06-19 10:44:30 +02:00
Taus
bc7e6af979 Merge pull request #1463 from markshannon/python-no-duplicate-modules 
Python: Avoid duplicate modules in points-to and resulting blow-up.
 2019-06-19 10:35:26 +02:00
Jonas Jensen
9d18b351cc Merge pull request #1469 from geoffw0/av95perf 
CPP: Fix AV Rule 95 performance issue.
 2019-06-19 10:32:57 +02:00
Taus
7ea4b6a52f Merge pull request #1465 from markshannon/python-performance-tweaks 
Python: Minor performance enhancements.
 2019-06-19 10:28:10 +02:00
Jonas Jensen
0b891013a4 Merge pull request #1466 from geoffw0/castarrayperf 
CPP: Resolve performance issue in CastArrayPointerArithmetic.ql
 2019-06-19 10:23:23 +02:00
Denis Levin
aab4351efb A few more changes from code review 2019-06-18 17:49:48 -07:00
Jonas Jensen
ba3ec500fd Merge pull request #1467 from geoffw0/dates-cleanup1 
CPP: Follow-up for Mishandling Japanese Era and Leap Year in calculations
 2019-06-18 20:13:33 +02:00
Mark Shannon
e8190d9a7b Python: Track taint through 'yield' expressions. 2019-06-18 16:39:52 +01:00
Mark Shannon
97c98f29e4 Python taint-tracking: Support iterables of taint. 2019-06-18 16:39:47 +01:00
Mark Shannon
918bdecba5 Python: Don't record taint past sinks. 2019-06-18 16:34:23 +01:00
Geoffrey White
659fa477df CPP: Change note. 2019-06-18 16:12:08 +01:00
Geoffrey White
98d80deefb CPP: Improved solution (mostly performance). 2019-06-18 15:56:22 +01:00
Geoffrey White
47ff38ef22 CPP: Add a warning to getFollowingStmt. 2019-06-18 15:56:22 +01:00
Geoffrey White
ef3ceb5910 CPP: Don't use getFollowingStmt. 2019-06-18 15:56:22 +01:00
Geoffrey White
536adaae7f CPP: Additional test cases. 2019-06-18 15:56:22 +01:00
Geoffrey White
52b68a77bd CPP: Remove commented out code. 2019-06-18 15:56:22 +01:00
Geoffrey White
56adcff2c9 CPP: Fix for LocalScopeReachability. 2019-06-18 15:56:22 +01:00
Geoffrey White
f4b4ddbdaf CPP: Add a test examining the LoopEntryConditionEvaluator on this code. 2019-06-18 15:56:22 +01:00
Geoffrey White
12bbb0755f CPP: Additional test cases. 2019-06-18 15:56:22 +01:00
Geoffrey White
6cca2d54f4 CPP: Autoformat. 2019-06-18 13:26:54 +01:00
Geoffrey White
717522f469 CPP: Fix qhelp more. 2019-06-18 13:00:41 +01:00
Calum Grant
196ad7613f Merge pull request #1464 from hvitved/csharp/netcoreapp2.2 
C#: Update to `netcoreapp2.2`
 2019-06-18 12:56:44 +01:00
Geoffrey White
fb5d02a634 CPP: Remove a redundant line. 2019-06-18 11:40:12 +01:00
Geoffrey White
bdb495d58a CPP: Fix AV Rule 95 performance issue. 2019-06-18 11:25:48 +01:00
Tom Hvitved
5443f74660 C#: Reintroduce deprecated ControlFlowGraph module 2019-06-18 11:44:12 +02:00
Tom Hvitved
70c5e39c5d C#: Include extractor message in diagnostic queries 2019-06-18 11:01:26 +02:00
Geoffrey White
83ec5f1ae9 Merge pull request #1354 from denislevin/denisl/cpp/MishandlingJapaneseDatesAndLeapYear 
C++: Mishandling Japanese Era and Leap Year in calculations
 2019-06-18 09:26:35 +01:00
Geoffrey White
b9a57a46d2 CPP: More accurate qldoc comment. 2019-06-18 08:56:52 +01:00
Tom Hvitved
a1d7382a67 C#: Update expected test output 2019-06-17 20:07:54 +02:00
Mark Shannon
62591e469e Python: Avoid duplicate modules in points-to and resulting blow-up. 2019-06-17 17:53:17 +01:00
Geoffrey White
ce29047840 CPP: Resolve performance issue in CastArrayPointerArithmetic.ql's 'introducesNewField' predicate. 2019-06-17 16:33:48 +01:00
Tom Hvitved
5cc11ba232 C#: Update nuget packages 2019-06-17 13:26:11 +02:00
Tom Hvitved
d333ffb57a C#: Update to netcoreapp2.2 2019-06-17 13:21:00 +02:00
Geoffrey White
413788ae2d CPP: Fix qhelp. 2019-06-17 11:55:24 +01:00
Tom Hvitved
f408a6ddfc Merge pull request #1404 from calumgrant/cs/dispose-not-called-on-throw 
C#: Improvement to cs/dispose-not-called-on-throw
 2019-06-17 11:25:16 +02:00
Geoffrey White
415655ac23 CPP: Remove precision (for now) from a query that I've seen time out. 2019-06-17 10:07:34 +01:00
Geoffrey White
df230d2ba6 CPP: Make precision/severity more conservative for now. 2019-06-17 10:07:32 +01:00
Geoffrey White
93c4f1eea5 CPP: Autoformat. 2019-06-17 10:07:22 +01:00
Tom Hvitved
e70f17f260 C#: Remove uses of deprecated ControlFlowGraph module 2019-06-17 10:23:23 +02:00
semmle-qlci
03cf8ef94f Merge pull request #1422 from hvitved/csharp/switch-expr-completion 
Approved by calumgrant
 2019-06-17 08:33:43 +01:00
Tom Hvitved
97d2813666 C#: Refactor last predicate 
- Split up the `last` predicate into a non-recursive part `lastNonRec` and a recursive
  part `last`.
- Almost all syntactic constructs have a very simple `last` definition; a set of
  disjuncts with exactly one recursive call -- those are defined in `lastNonRec`.
- `try` statements and (last) `catch` clauses require multiple recursive calls in
  the same disjunct, and are therefore handled in the `last` predicate (as before).
- The benefit is that we only need to take care of the join order in the recursive
  call (for non-`try`/`catch` statements) in one place (the predicate `lastRec`),
  so we can get rid of many `nomagic`'ed `last`-specialisations.
 2019-06-17 09:28:56 +02:00
Denis Levin
da2422cb17 Addressed code review comments 2019-06-14 18:25:17 -07:00
Denis Levin
6a05c84282 Merge pull request #3 from geoffw0/dates-fix 
CPP: Fixes for C++: Mishandling Japanese Era and Leap Year in calculations #1354
 2019-06-14 11:21:52 -07:00
Mark Shannon
f29dfa5112 Python: Add clarifying comment and pragma. 2019-06-14 16:57:32 +01:00