hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-29 23:26:34 +01:00
Code Issues Packages Projects Releases Wiki Activity
19,777 Commits 1,673 Branches 157 Tags
codeql-cli/v2.4.4
Commit Graph

19777 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
semmle-qlci
1da873e819 Merge pull request #315 from esben-semmle/js/conditional-bypass-early-return 
Approved by xiemaisi
 2018-10-17 08:25:55 +01:00
Robert Marsh
61f338449c C++: Change note and precision for DeadCodeGoto.ql 2018-10-16 15:40:59 -07:00
Robert Marsh
73cae5390e C++: new query for dead code after goto or break 2018-10-16 15:37:06 -07:00
Tom Hvitved
29f655b0dc Add .lgtm.yml file 2018-10-16 20:43:44 +02:00
Raul Garcia
7ab723ae79 Fixing typos & incorporating feedback. 
(MSFT feedback) Adding a new tag in the header @msrc.severity important
 2018-10-16 10:00:51 -07:00
semmle-qlci
6172c95e60 Merge pull request #320 from geoffw0/deprecated 
Approved by yh-semmle
 2018-10-16 15:45:06 +01:00
calumgrant
2836743c03 Merge pull request #322 from hvitved/csharp/compiler-settings 
C#: Add `csharp-compiler-settings` files
 2018-10-16 13:36:06 +01:00
semmle-qlci
e55eaefded Merge pull request #310 from esben-semmle/js/additional-client-request-data-nodes 
Approved by xiemaisi
 2018-10-16 12:59:22 +01:00
Esben Sparre Andreasen
2881649310 JS: add js/command-line-injection heuristic source: JSON.stringify() 2018-10-16 13:56:06 +02:00
semmle-qlci
e319159a59 Merge pull request #316 from xiemaisi/js/odasa-7355-workaround 
Approved by esben-semmle
 2018-10-16 12:47:58 +01:00
Anders Schack-Mulligen
26009065af Java: Fix regression. 2018-10-16 11:29:15 +02:00
Esben Sparre Andreasen
870811a509 JS: change note for improved ClientRequests (overdue) 2018-10-16 08:51:32 +02:00
Esben Sparre Andreasen
c7fe96d4bd JS: implement getADataNode for Electron::ClientRequest 2018-10-16 08:51:32 +02:00
Esben Sparre Andreasen
e7836d74ab JS: implement getADataNode for NodeHttpUrlRequest 2018-10-16 08:51:32 +02:00
Esben Sparre Andreasen
3c07b4faf1 JS: implement getADataNode for SuperAgentUrlRequest 2018-10-16 08:51:32 +02:00
Esben Sparre Andreasen
eef0b8c94d JS: implement getADataNode for GotUrlRequest 2018-10-16 08:51:32 +02:00
Esben Sparre Andreasen
977b287129 JS: implement getADataNode for FetchUrlRequest 2018-10-16 08:51:30 +02:00
Esben Sparre Andreasen
c21a0472d4 JS: implement getADataNode for AxiosUrlRequest 2018-10-16 08:50:56 +02:00
Esben Sparre Andreasen
1e115bce2c JS: add SourceNode support for chained method calls 2018-10-16 08:48:09 +02:00
Esben Sparre Andreasen
ffbbb807f4 JS: avoid flagging early returns in js/user-controlled-bypass 2018-10-16 08:39:59 +02:00
Max Schaefer
df5a8651c3 JavaScript: Reinstate override. 2018-10-16 07:31:28 +01:00
semmle-qlci
1e7696664e Merge pull request #302 from xiemaisi/js/google-spanner 
Approved by esben-semmle
 2018-10-16 06:48:43 +01:00
Raul Garcia
22d54801e5 Removed one false-positive scenario (no space on lpCommandLine) 
Improved the query to avoid multiple calls to hasGlobalName
Fixed typos
Simplified the test case file
 2018-10-15 15:53:02 -07:00
Raul Garcia
cd5e788aa7 Update UnsafeCreateProcessCall.ql 2018-10-15 13:41:21 -07:00
Raul Garcia
1d853691eb Update UnsafeCreateProcessCall.qhelp 2018-10-15 13:40:40 -07:00
Raul Garcia
b8f8c99529 Update UnsafeCreateProcessCall.qhelp 2018-10-15 13:39:46 -07:00
Raul Garcia
bc398733b3 Update .gitignore 2018-10-15 13:38:00 -07:00
Max Schaefer
6835815673 JavaScript: Address review comments. 2018-10-15 20:14:40 +01:00
semmle-qlci
7543fa4a10 Merge pull request #298 from asger-semmle/partial-calls-merged 
Approved by xiemaisi
 2018-10-15 14:58:22 +01:00
Tom Hvitved
0754abc03f C#: Add csharp-compiler-settings files 2018-10-15 13:14:40 +02:00
Tom Hvitved
5548524a39 Merge pull request #321 from esben-semmle/js/newlines-csharp 
C#: use unix newlines in analysis-csharp.md
 2018-10-15 12:39:34 +02:00
Esben Sparre Andreasen
2652ba78d7 C#: use unix newlines in analysis-csharp.md 2018-10-15 12:08:41 +02:00
Tom Hvitved
603c3d6a43 C#: Teach null-guards library about pattern matching 2018-10-15 10:55:16 +02:00
Geoffrey White
ff34ae2a46 CPP: Add deprecated metadata. 2018-10-15 08:56:49 +01:00
Raul Garcia
242d40369b Merge branch 'master' into users/raulga/c6277 2018-10-12 15:59:54 -07:00
Raul Garcia
85283d63ce C++ : NULL application name with an unquoted path in call to CreateProcess 
Calling a function of the CreatePorcess* family of functions, which may result in a security vulnerability if the path contains spaces.
 2018-10-12 15:57:01 -07:00
semmle-qlci
a8be7f2434 Merge pull request #312 from aschackmull/java/autoformat-libs 
Approved by yh-semmle
 2018-10-12 20:02:52 +01:00
Geoffrey White
a9b55534b4 CPP: Speed up phi_node > frontier_phi_node > ssa_defn recursion. 2018-10-12 18:11:53 +01:00
semmle-qlci
9ec52a43ee Merge pull request #308 from aschackmull/java/autoformat-queries 
Approved by yh-semmle
 2018-10-12 17:43:02 +01:00
Max Schaefer
0cfd04dfa2 JavaScript: Eliminate slow antijoin predicate. 2018-10-12 13:01:01 +01:00
Max Schaefer
080f974663 JavaScript: Refactor AnalyzedPropertyWrite::writes to enable correct modelling of variable exports. 2018-10-12 13:00:52 +01:00
Anders Schack-Mulligen
22c986af77 Java: Autoformat. 2018-10-12 13:44:55 +02:00
Anders Schack-Mulligen
11279d4c83 Java: Autoformat Overflow.qll and add comment about imprecise float. 2018-10-12 13:40:32 +02:00
Anders Schack-Mulligen
0f5a3d3bb7 Java: Adjust comment style. 2018-10-12 13:40:32 +02:00
Anders Schack-Mulligen
2f0b983335 Java: Autoformat most of semmle.code.java. 2018-10-12 13:40:32 +02:00
Anders Schack-Mulligen
bc7ea93608 Java: Adjust some comment positions and break some lines. 2018-10-12 13:40:32 +02:00
Anders Schack-Mulligen
5502db4c74 Java: Autoformat most of semmle.code.java.dataflow. 2018-10-12 13:40:32 +02:00
Anders Schack-Mulligen
f341aa79a3 Java/C: Sync dataflow copies. 2018-10-12 13:40:32 +02:00
Anders Schack-Mulligen
3cdcbf0129 Java: Autoformat DataFlowImpl.qll and DataFlowImplCommon.qll. 2018-10-12 13:40:32 +02:00
Anders Schack-Mulligen
815c245f44 Java: Adjust comment style. 2018-10-12 13:40:32 +02:00