codeql

mirror of https://github.com/github/codeql.git synced 2026-02-23 18:33:42 +01:00

Author	SHA1	Message	Date
Cornelius Riemenschneider	a9071a62a0	C++: Refactor Memcpy.qll and include bsl model.	2021-02-15 12:15:17 +01:00
Mathias Vorreiter Pedersen	0f9b044814	C++: Model vector versions of BSD-style reads and writes.	2021-02-15 12:04:51 +01:00
Erik Krogh Kristensen	e5db0ef16b	remove the `RequestExpr` requirement from `FormParsers.qll`, and use API graphs.	2021-02-15 11:58:26 +01:00
Cornelius Riemenschneider	f79b3144e3	C++: Refactor IdentityFunction.qll.	2021-02-15 11:31:31 +01:00
CodeQL CI	9b8d94d76e	Merge pull request #5148 from erik-krogh/apollo Approved by esbena	2021-02-15 02:23:52 -08:00
Alvaro Muñoz	00a0b12dad	update expected results	2021-02-15 11:23:40 +01:00
Alvaro Muñoz	812884341b	Merge branch 'ArrayUtils' of github.com:pwntester/codeql-1 into ArrayUtils	2021-02-15 10:59:49 +01:00
Alvaro Muñoz	504d119749	adjust max parameter number	2021-02-15 10:58:17 +01:00
Rasmus Wriedt Larsen	745148474a	Python: Model get_redirect_url in django	2021-02-15 10:55:52 +01:00
Rasmus Wriedt Larsen	6934d5e642	Python: Add django test of RedirectView subclass	2021-02-15 10:55:51 +01:00
Rasmus Wriedt Larsen	79855157b3	Python: Move django response test to django v2/v3 That's really the django version I care about :P	2021-02-15 10:55:50 +01:00
Arthur Baars	9cb58be5cf	AST: avoid multivalued results for MethodName::getValueText	2021-02-15 10:39:21 +01:00
Alvaro Muñoz	c7072aef16	update A.java test	2021-02-15 10:34:20 +01:00
Jonas Jensen	f0ce524c0d	Merge pull request #5147 from MathiasVP/model-bsd-sockets-part-1 C++: Add models for BSD-style send and recv functions	2021-02-15 10:34:11 +01:00
Tamas Vajk	2de7fbe062	Fix build after rebase	2021-02-15 10:18:12 +01:00
Tamas Vajk	6cc858b9ef	Move AstLineCounter to top level class	2021-02-15 10:17:08 +01:00
Tamas Vajk	4f693be33b	Move location creation to instance method on context	2021-02-15 10:17:08 +01:00
Tamas Vajk	6f07230725	Relocate 'AstLineCounter'	2021-02-15 10:17:07 +01:00
Tamas Vajk	1cd7fd6cf7	Simplify 'AstLineCounter'	2021-02-15 10:17:07 +01:00
Tamas Vajk	e8fd6e1112	Move classes to seperate files	2021-02-15 10:17:07 +01:00
Tamas Vajk	5ce5a96cb6	Remove 'ContextExtensions'	2021-02-15 10:17:07 +01:00
Tamas Vajk	9ddeff80bf	Remove useless 'IExtractor' interface	2021-02-15 10:17:07 +01:00
Tamas Vajk	6cdec2d30e	C#: Remove 'extractor.CreateContext' factory method	2021-02-15 10:17:07 +01:00
Tamas Vajk	fc3e6526ce	C#: Remove IExtractionScope.FromSource	2021-02-15 10:17:07 +01:00
Tamas Vajk	a75306acbd	C#: Remove warnings from MdProvider	2021-02-15 10:17:07 +01:00
Tamas Vajk	1a4f370d15	C#: Fix formatting issues	2021-02-15 10:17:07 +01:00
Anders Schack-Mulligen	7e83a608a2	Merge pull request #4954 from aschackmull/java/member-hasqualifiedname Java: Add Member.hasQualifiedName.	2021-02-15 10:02:13 +01:00
Erik Krogh Kristensen	91f277681a	fix typo in ApolloClientRequest Co-authored-by: Esben Sparre Andreasen <esbena@github.com>	2021-02-15 09:59:04 +01:00
Anders Schack-Mulligen	161e756c4b	Merge pull request #5141 from github/yo-h/java-flow-check-fix Java: prepare to enforce additional compiler checks in test code	2021-02-15 09:41:03 +01:00
Francis Alexander	409d95c522	Sanitizer checks to decrease FP	2021-02-15 14:01:14 +05:30
luchua-bc	23f620d255	Query to detect insecure LDAP endpoint configuration	2021-02-15 05:31:29 +00:00
yo-h	1d007b6e72	Java: delete two test cases as per code review	2021-02-14 21:42:58 -05:00
Rasmus Wriedt Larsen	2478a9f10e	Python: Fix wording of change-note	2021-02-14 23:20:46 +01:00
luchua-bc	6a6727fc80	Reduce the scope of the query to reduce FPs	2021-02-14 15:01:06 +00:00
CodeQL CI	178c54e69b	Merge pull request #5139 from RasmusWL/django-improvements Approved by yoff	2021-02-14 02:16:52 -08:00
Tamas Vajk	4cc9bc9bf0	Add new .stats file	2021-02-13 16:21:45 +01:00
Raul Garcia (MSFT)	782f4bc3e2	Fixing shared .qhelp issue (renaming to .qhelp.inc)& addressing a fix	2021-02-12 13:38:55 -08:00
Marcono1234	7a6db061b5	Address review feedback	2021-02-12 20:15:10 +01:00
Tamas Vajk	cb9116028c	Add change note for 'with' expression extraction	2021-02-12 20:04:22 +01:00
Tamas Vajk	10e99203e8	Add DB upgrade folder for 'with' expression	2021-02-12 19:59:14 +01:00
Tamas Vajk	7761774f88	Add record .ctor to property data flow summary	2021-02-12 19:54:52 +01:00
Tom Hvitved	6a6644b5c2	C#: Adjust data-flow for `with` expressions In `x with { Foo = bar }`, instead of having a single data-flow step `x => x with { Foo = bar }` we now have two steps: `x => { Foo = bar }` and `{ Foo = bar } => x with { Foo = bar }` Moreover, `clearsContent` now targets the object initializer instead of the whole `with` expression, which means that it will only apply to values carried over from the old object and not those explicitly stored into the new object.	2021-02-12 19:54:52 +01:00
Tamas Vajk	dd9b1d52b5	C#: Initial data-flow for `with` expressions	2021-02-12 19:54:52 +01:00
Tamas Vajk	b2b4c9ecd6	C#: Extract 'with' expressions	2021-02-12 19:54:52 +01:00
Tamás Vajk	77af7edaa4	Merge pull request #4628 from tamasvajk/feature/csharp9-foreach C#: Extract underlying methods of foreach statements	2021-02-12 19:53:26 +01:00
Taus Brock-Nannestad	2632422783	Python: Add FP test for unknown argument in string format Reported in https://github.com/github/codeql/issues/2650 I found this during a bit of spring cleaning in my working directory. As this doesn't have any immediate security implications, I don't know when we'll get round to fixing it, but it can't hurt to have the test case checked in.	2021-02-12 19:28:12 +01:00
Arthur Baars	8a4f27c052	Add test case	2021-02-12 19:23:13 +01:00
Arthur Baars	5f1907efc4	AST: undef and alias	2021-02-12 19:22:51 +01:00
Erik Krogh Kristensen	4fa33b151f	Merge pull request #5146 from github/more-redos-tests JS: add two non ReDoS regular expressions to the ReDoS test suite	2021-02-12 18:56:52 +01:00
Geoffrey White	6d452521f7	C++: Move StdBasicStringStream to a more logical location.	2021-02-12 17:42:33 +00:00

... 264 265 266 267 268 ...

33872 Commits