codeql

mirror of https://github.com/github/codeql.git synced 2026-02-10 04:01:11 +01:00

Author	SHA1	Message	Date
Tom Hvitved	141f5f7605	Merge pull request #308 from github/hvitved/operation-method-call Make `{Unary,Binary}Operation` a sub class of `MethodCall`	2021-09-24 12:51:07 +02:00
Benjamin Muskalla	70e1724463	Exclude methods with non-public parameter types	2021-09-24 12:41:12 +02:00
Anders Fugmann	cbdabe35de	C++: Update test results to reflect changes	2021-09-24 12:29:28 +02:00
Anders Fugmann	c9c41252e3	C++: Update test results in SimpleRangeAnalysis	2021-09-24 12:23:48 +02:00
Tom Hvitved	30d2df53c6	Include `MethodCall.getAChild` in `{Unary,Binary}Operation.getAChild`	2021-09-24 12:08:54 +02:00
Anders Fugmann	3437cf2909	C++: only use upperbound if there are no overflows in the guard	2021-09-24 11:46:58 +02:00
Anders Fugmann	d7afd86a27	C++: Add test case exposing problem with overflows for upperBound predicate	2021-09-24 11:44:05 +02:00
Benjamin Muskalla	38ca5aba98	Move test generator into subdirectory	2021-09-24 11:13:04 +02:00
Benjamin Muskalla	4e6a8d991e	Move stub generator into subdirectory	2021-09-24 11:12:41 +02:00
Benjamin Muskalla	cb0a567c03	Merge pull request #6743 from github/workflow/coverage/update Update CSV framework coverage reports	2021-09-24 09:23:35 +02:00
Anders Fugmann	032ac50034	C++: Do not warn on static buffer overflow using loop counters, if the loop counter has been widened	2021-09-24 08:31:36 +02:00
Anders Fugmann	3e5f7d0db5	C++: using buildin offsetof for an array member indexed after end is legal	2021-09-24 08:31:35 +02:00
Anders Fugmann	b08eabec68	C++: Relax predicate memberMayBeVarSize to mark all members of size 0 or 1 as variable sized	2021-09-24 08:31:35 +02:00
Anders Fugmann	a4a9e2aa96	C++: Weaken wording on overflow static alert text	2021-09-24 08:31:35 +02:00
Robert Marsh	3189c578a4	C++: Add QLDoc to subpaths in DefaultTaintTracking	2021-09-23 22:42:38 -07:00
haby0	9b969e15fc	Modify according to @yoff suggestion	2021-09-24 12:56:10 +08:00
Robert Marsh	c2b356ab08	C++: add subpaths to DefaultTaintTracking	2021-09-23 21:00:45 -07:00
luchua-bc	272e4f6cf9	Update the query	2021-09-24 01:48:11 +00:00
github-actions[bot]	ceb9a0bd6b	Add changed framework coverage reports	2021-09-24 00:08:02 +00:00
luchua-bc	2dc38aee54	Update qldoc	2021-09-23 20:31:24 +00:00
Tom Hvitved	edfdfb1fa4	Make `{Unary,Binary}Operation` a sub class of `MethodCall`	2021-09-23 19:13:55 +02:00
Harry Maclean	88885a222e	Model the RestClient HTTP client	2021-09-23 16:32:15 +01:00
Harry Maclean	4cf520c2df	Model the Faraday HTTP client	2021-09-23 16:32:15 +01:00
Harry Maclean	ee51298633	Model the Excon HTTP client	2021-09-23 16:32:15 +01:00
Tom Hvitved	ca2ff9a863	Merge pull request #305 from github/hvitved/desugar/array-literals Desugar array literals to `::Array.[]`	2021-09-23 17:30:34 +02:00
Anders Schack-Mulligen	a031b2a090	Merge pull request #6493 from atorralba/atorralba/cleartext-storage-query-refactor Java: Refactor Cleartext Storage queries	2021-09-23 16:31:17 +02:00
Tony Torralba	b52a2cd292	Apply code review comments Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>	2021-09-23 15:48:15 +02:00
Arthur Baars	40f0112e8a	Merge pull request #297 from github/aibaars/alert-suppression Alert suppression and file classifier query	2021-09-23 15:37:19 +02:00
Rasmus Lerchedahl Petersen	f2fbeed490	Python: Model `os.path`-functions	2021-09-23 15:30:00 +02:00
Rasmus Lerchedahl Petersen	81adb7dd2a	Python: Add tests for `os.path`-functions	2021-09-23 15:28:05 +02:00
Anders Schack-Mulligen	6be4b3bac6	Merge pull request #6725 from emilejq/date-format Java: Remove requirements for final and access mods from DateFormatThreadUnsafe	2021-09-23 15:02:17 +02:00
Harry Maclean	4f9518a9c6	Merge pull request #293 from github/hmac-code-injection Add query for Code Injection	2021-09-23 13:50:48 +01:00
Anders Schack-Mulligen	4841c3037d	Java: Add callback dispatch to more anonymous classes.	2021-09-23 14:34:56 +02:00
Tom Hvitved	f347505542	Merge pull request #277 from github/hvitved/flow-summaries Add support for flow summaries	2021-09-23 14:31:52 +02:00
Taus	9b1836e366	Merge pull request #36 from github/various-small-fixes Various small fixes	2021-09-23 13:42:19 +02:00
Taus	b719faa627	QL: Merge pull request #36 from github/various-small-fixes Various small fixes	2021-09-23 13:42:19 +02:00
Harry Maclean	41608ef47b	Address review comments	2021-09-23 12:26:54 +01:00
Joe Farebrother	0919042692	Model Bundle and Intent extra methods	2021-09-23 12:03:45 +01:00
Tom Hvitved	68d41f9f12	Address review comments	2021-09-23 12:39:47 +02:00
ihsinme	13741ba137	Update FindWrapperFunctions.ql	2021-09-23 12:55:03 +03:00
ihsinme	18de9f0aa3	Update FindWrapperFunctions.expected	2021-09-23 12:53:16 +03:00
Rasmus Wriedt Larsen	f14e3f6007	Merge pull request #5445 from jorgectf/jorgectf/python/ldapinsecureauth Python: Add LDAP Insecure Authentication query	2021-09-23 11:08:13 +02:00
Emile El-Qawas	83fb41e414	Add visibility constraints; Fix non-compliant code	2021-09-23 09:55:49 +01:00
Tony Torralba	d0b9920cac	Fix encryption sanitizer It now discards sensitive exprs (sources) instead of sinks for better precision	2021-09-23 10:42:30 +02:00
Tony Torralba	51d2b5225e	Remove cached property from SensitiveSource::flowsTo	2021-09-23 10:42:30 +02:00
Tony Torralba	563e8a2bd6	Remove unused library	2021-09-23 10:42:30 +02:00
Tony Torralba	a30554e97c	Refactored cleartext storage libraries	2021-09-23 10:42:30 +02:00
Harry Maclean	83705c5787	Merge pull request #306 from github/hmac-outgoing-http Model outgoing HTTP requests as remote flow sources	2021-09-23 09:34:44 +01:00
Rasmus Wriedt Larsen	ef6e502ff0	Python: Make LDAP global options test better Before it didn't really showcase that we know it can make connections secure.	2021-09-23 10:18:18 +02:00
Chris Smowton	93daaf5b5b	Merge pull request #6174 from joefarebrother/guava-collections Java: Model Guava collections package	2021-09-23 09:13:24 +01:00

... 113 114 115 116 117 ...

33872 Commits