codeql

mirror of https://github.com/github/codeql.git synced 2025-12-26 21:56:39 +01:00

Author	SHA1	Message	Date
Asger F	4f46908224	JS: Add test with ES getters/setters	2021-03-19 11:07:15 +00:00
CodeQL CI	e8498b85e3	Merge pull request #5430 from RasmusWL/improve-path-docs Approved by shati-patel, yoff	2021-03-19 04:01:22 -07:00
Tom Hvitved	09a49e4580	Merge pull request #5311 from hvitved/dataflow/lambda Data flow: Move C# lambda flow logic into shared library	2021-03-19 11:44:15 +01:00
Cornelius Riemenschneider	e482d21949	C++: Make QLdoc check happy.	2021-03-19 11:40:20 +01:00
Cornelius Riemenschneider	63e560e3b4	Fix QL doc.	2021-03-19 11:27:51 +01:00
Cornelius Riemenschneider	39a7d3decc	C++: Address review comments.	2021-03-19 11:23:47 +01:00
yoff	37036b5e76	Merge pull request #5437 from RasmusWL/small-pyyaml-improvements Python: Small PyYAML improvements	2021-03-19 11:15:49 +01:00
Tamas Vajk	79d6731ed8	C#: Adjust make_stubs.py to use codeql instead of odasa	2021-03-19 11:01:28 +01:00
Cornelius Riemenschneider	783a63a8a8	Update cpp/ql/src/Summary/LinesOfCode.ql Co-authored-by: Shati Patel <42641846+shati-patel@users.noreply.github.com>	2021-03-19 10:54:41 +01:00
Erik Krogh Kristensen	36b0ab1de5	Apply suggestions from code review Co-authored-by: Esben Sparre Andreasen <esbena@github.com>	2021-03-19 10:29:38 +01:00
CodeQL CI	fc7f19f900	Merge pull request #5433 from erik-krogh/clientSocket Approved by esbena	2021-03-19 02:12:19 -07:00
Erik Krogh Kristensen	a28a36ab29	add change-note	2021-03-19 10:10:56 +01:00
Erik Krogh Kristensen	e90fb1a225	reuse classes modelling standard library functions	2021-03-19 10:09:33 +01:00
Rasmus Wriedt Larsen	7543f10593	Python: Reorganize PyYAML tests a bit	2021-03-19 09:53:25 +01:00
Tamas Vajk	20f0b3329a	C#: Fix code quality issues reported by code scanning	2021-03-19 09:18:57 +01:00
Erik Krogh Kristensen	d489d63b8e	recognize object transformations in module.exports when looking for library inputs	2021-03-18 20:54:33 +01:00
yoff	746e9948b0	Merge pull request #5075 from RasmusWL/crypto Python: Port py/weak-crypto-key to use type-tracking	2021-03-18 20:53:28 +01:00
Erik Krogh Kristensen	28ad667578	add model for async-execute	2021-03-18 19:40:46 +01:00
Erik Krogh Kristensen	58617c5c59	recognize client websockets as ClientRequests	2021-03-18 19:08:39 +01:00
Aditya Sharad	f4dc5b963b	Merge pull request #5335 from Marcono1234/patch-1 Add name to check-change-note.yml workflow	2021-03-18 10:44:53 -07:00
Erik Krogh Kristensen	ed8e0fb593	remove CannonicalName API nodes	2021-03-18 15:34:17 +01:00
Erik Krogh Kristensen	7180a1ed52	add `Type` to `MkHasUnderlyingType`	2021-03-18 15:16:31 +01:00
Erik Krogh Kristensen	af5a61782c	also look for main modules in a `lib` folder	2021-03-18 14:51:11 +01:00
Erik Krogh Kristensen	6bab41ce8b	Merge pull request #5350 from JarLob/actions github actions queries	2021-03-18 14:46:25 +01:00
Erik Krogh Kristensen	f94f82a0dc	use getAChainedMethodCall	2021-03-18 14:35:10 +01:00
Erik Krogh Kristensen	38a9c71380	Apply suggestions from code review Co-authored-by: Asger F <asgerf@github.com>	2021-03-18 14:33:13 +01:00
Erik Krogh Kristensen	0e98ea0c10	remove spurious import of PackageExports	2021-03-18 14:09:08 +01:00
Erik Krogh Kristensen	67a5831ac0	update expected output	2021-03-18 13:59:44 +01:00
Erik Krogh Kristensen	c0bb169342	recognize a `src/index.js` file as a main module for a package	2021-03-18 13:41:36 +01:00
Erik Krogh Kristensen	add0c88530	loosen the requirement that the `package.json` file must be the top-most `package.json`	2021-03-18 13:39:12 +01:00
Erik Krogh Kristensen	d998d06b94	add link to source in alert-message for js/shell-command-constructed-from-input	2021-03-18 13:37:18 +01:00
Mathias Vorreiter Pedersen	c0e1df47a6	Merge pull request #5431 from MathiasVP/av-rule-79-use-gvn C++: Use GVN in AV Rule 79	2021-03-18 12:35:26 +01:00
CodeQL CI	3b34bfd1c6	Merge pull request #5432 from asgerf/js/more-string-steps Approved by erik-krogh	2021-03-18 04:16:07 -07:00
Rasmus Wriedt Larsen	42b2c3ed52	Python: Model C-based loaders for PyYAML Not really that important. But easy to do while I was working on this library.	2021-03-18 11:55:01 +01:00
Rasmus Wriedt Larsen	54e6f51512	Python: Add example of C-based PyYAML loaders ``` In [6]: yaml.load("!!python/object/new:os.system [echo EXPLOIT!]", yaml.CLoader) EXPLOIT! Out[6]: 0 ```	2021-03-18 11:50:59 +01:00
Rasmus Wriedt Larsen	25b15d7470	Python: Move PyYAML modeling classes within module For now, this is how we're trying to structure things -- all in all it doesn't matter too much, since everything is still marked as private.	2021-03-18 11:48:30 +01:00
Rasmus Wriedt Larsen	5ec8511d50	Python: Port PyYAML model to API graphs	2021-03-18 11:47:46 +01:00
Porcuiney Hairs	a88c3682ff	remove sanitiserGuards	2021-03-18 16:12:00 +05:30
Porcuiney Hairs	84c9137152	Include suggestions from review	2021-03-18 16:12:00 +05:30
porcupineyhairs	f27d2bdf6d	Update java/ql/src/experimental/semmle/code/java/Logging.qll Co-authored-by: Marcono1234 <Marcono1234@users.noreply.github.com>	2021-03-18 16:12:00 +05:30
Porcuiney Hairs	d0c82d3756	Add flogger and android logging support	2021-03-18 16:12:00 +05:30
Porcuiney Hairs	17d7ba8049	Add Log Injection Vulnerability	2021-03-18 16:12:00 +05:30
Rasmus Wriedt Larsen	14e9bda5de	Python: Refactor PyYAML tests a bit	2021-03-18 11:39:47 +01:00
Rasmus Wriedt Larsen	45a1fc6a96	Python: Add link to better PyYAML docs I found this randomly	2021-03-18 11:20:22 +01:00
Asger Feldthaus	e30fa89405	JS: Update more test expectations	2021-03-18 10:04:39 +00:00
Erik Krogh Kristensen	8b931626ce	add edge from root type MkHasUnderlyingType	2021-03-18 11:04:08 +01:00
Rasmus Wriedt Larsen	7b92012edf	Python: Apply suggestions from code review Co-authored-by: yoff <lerchedahl@gmail.com>	2021-03-18 10:58:49 +01:00
Jaroslav Lobačevski	a9ed3317bf	Fix regex per suggestion	2021-03-18 11:54:55 +02:00
Erik Krogh Kristensen	40ec23cf13	refactor MkHasUnderlyingType to use Label::instance()	2021-03-18 10:47:38 +01:00
Mathias Vorreiter Pedersen	2abf4c068f	C++: Use getAnExpr. Also extend the other recursive case similarly.	2021-03-18 08:42:10 +01:00

... 8 9 10 11 12 ...

21651 Commits