codeql

mirror of https://github.com/github/codeql.git synced 2026-02-12 21:21:16 +01:00

Author	SHA1	Message	Date
Rasmus Lerchedahl Petersen	f2fbeed490	Python: Model `os.path`-functions	2021-09-23 15:30:00 +02:00
Rasmus Lerchedahl Petersen	81adb7dd2a	Python: Add tests for `os.path`-functions	2021-09-23 15:28:05 +02:00
Anders Schack-Mulligen	6be4b3bac6	Merge pull request #6725 from emilejq/date-format Java: Remove requirements for final and access mods from DateFormatThreadUnsafe	2021-09-23 15:02:17 +02:00
Harry Maclean	4f9518a9c6	Merge pull request #293 from github/hmac-code-injection Add query for Code Injection	2021-09-23 13:50:48 +01:00
Anders Schack-Mulligen	4841c3037d	Java: Add callback dispatch to more anonymous classes.	2021-09-23 14:34:56 +02:00
Tom Hvitved	f347505542	Merge pull request #277 from github/hvitved/flow-summaries Add support for flow summaries	2021-09-23 14:31:52 +02:00
Taus	9b1836e366	Merge pull request #36 from github/various-small-fixes Various small fixes	2021-09-23 13:42:19 +02:00
Taus	b719faa627	QL: Merge pull request #36 from github/various-small-fixes Various small fixes	2021-09-23 13:42:19 +02:00
Harry Maclean	41608ef47b	Address review comments	2021-09-23 12:26:54 +01:00
Joe Farebrother	0919042692	Model Bundle and Intent extra methods	2021-09-23 12:03:45 +01:00
Tom Hvitved	68d41f9f12	Address review comments	2021-09-23 12:39:47 +02:00
ihsinme	13741ba137	Update FindWrapperFunctions.ql	2021-09-23 12:55:03 +03:00
ihsinme	18de9f0aa3	Update FindWrapperFunctions.expected	2021-09-23 12:53:16 +03:00
Rasmus Wriedt Larsen	f14e3f6007	Merge pull request #5445 from jorgectf/jorgectf/python/ldapinsecureauth Python: Add LDAP Insecure Authentication query	2021-09-23 11:08:13 +02:00
Emile El-Qawas	83fb41e414	Add visibility constraints; Fix non-compliant code	2021-09-23 09:55:49 +01:00
Tony Torralba	d0b9920cac	Fix encryption sanitizer It now discards sensitive exprs (sources) instead of sinks for better precision	2021-09-23 10:42:30 +02:00
Tony Torralba	51d2b5225e	Remove cached property from SensitiveSource::flowsTo	2021-09-23 10:42:30 +02:00
Tony Torralba	563e8a2bd6	Remove unused library	2021-09-23 10:42:30 +02:00
Tony Torralba	a30554e97c	Refactored cleartext storage libraries	2021-09-23 10:42:30 +02:00
Harry Maclean	83705c5787	Merge pull request #306 from github/hmac-outgoing-http Model outgoing HTTP requests as remote flow sources	2021-09-23 09:34:44 +01:00
Rasmus Wriedt Larsen	ef6e502ff0	Python: Make LDAP global options test better Before it didn't really showcase that we know it can make connections secure.	2021-09-23 10:18:18 +02:00
Chris Smowton	93daaf5b5b	Merge pull request #6174 from joefarebrother/guava-collections Java: Model Guava collections package	2021-09-23 09:13:24 +01:00
Rasmus Wriedt Larsen	70489b2fc2	Merge branch 'main' into jorgectf/python/ldapinsecureauth	2021-09-23 10:05:56 +02:00
Harry Maclean	5826f2c279	Move Net::HTTP modelling into http_clients module This seems a more convenient place to keep all the HTTP client modelling.	2021-09-23 09:04:20 +01:00
Harry Maclean	b658bacab3	Simplify Net::HTTP modelling	2021-09-23 09:04:01 +01:00
Harry Maclean	3000587849	Add Net::HTTP request modelling	2021-09-23 09:04:01 +01:00
Harry Maclean	2bdea01c8a	Add HTTP::Client concept	2021-09-23 09:04:01 +01:00
Rasmus Wriedt Larsen	d4564d5dd1	Python: Add QLDoc to `Function.getArgByName`	2021-09-23 10:01:04 +02:00
Tom Hvitved	27c45d8dda	Merge pull request #6731 from hvitved/remove-reduced-env-var Remove `CODEQL_REDUCE_FILES_FOLDERS_RELATIONS`	2021-09-23 09:39:17 +02:00
Robert Marsh	49f8fd2164	C++: whitespace fix	2021-09-22 16:54:03 -07:00
Robert Marsh	0c5d642489	C++: Rename SystemFunction and restore QLDoc	2021-09-22 14:22:57 -07:00
Robert Marsh	6f03c3e252	C++: Accept command injection test changes Making the DefaultTaintTracking configurations inactive removed many unneeded nodes and edges from the PathGraph predicates.	2021-09-22 14:19:23 -07:00
Robert Marsh	8faeab18b9	C++: move ResolveCall.qll out of internal directory	2021-09-22 11:54:47 -07:00
Robert Marsh	21ed5c430d	Merge branch 'main' into rdmarsh2/improve-exec-tainted Manual fix for conflict in Models.qll	2021-09-22 11:51:18 -07:00
Erik Krogh Kristensen	a082ed917c	track flow through string replace calls that just replace single chars	2021-09-22 19:43:48 +02:00
Chris Smowton	3123abfac3	Merge pull request #6711 from bananabr/AndroidLoggingFix Fix Android logging signature	2021-09-22 17:23:04 +01:00
Alex Ford	21e31a47d9	Merge pull request #283 from github/file-system-sources Start modelling some file system access concepts	2021-09-22 16:45:13 +01:00
Alex Ford	b769aa67c2	test for IO.open as a way of creating an IO instance	2021-09-22 16:29:10 +01:00
Erik Krogh Kristensen	805d1d170c	do not filter away regular expressions with lookbehinds	2021-09-22 17:14:29 +02:00
Joe Farebrother	522c6e01d2	Sort models by class and name	2021-09-22 15:23:01 +01:00
Alex Ford	0092c0279b	Apply suggestions from code review Co-authored-by: Nick Rolfe <nickrolfe@github.com>	2021-09-22 14:28:15 +01:00
yoff	14a31a2299	Merge pull request #6732 from RasmusWL/minor-sqlalchemy-comment-fixes	2021-09-22 15:15:52 +02:00
Mathias Vorreiter Pedersen	35baff8bac	C#/C++: Sync identical files.	2021-09-22 13:32:29 +01:00
Mathias Vorreiter Pedersen	5969c227ab	C++: Fix QLDoc on 'getAllocationAddressOperand' and 'getAllocationAddress'.	2021-09-22 13:32:20 +01:00
Tom Hvitved	e670fdbb82	Move two predicates in `FlowSummaryImplSpecific.qll`	2021-09-22 14:12:46 +02:00
Rasmus Wriedt Larsen	8badba26b8	Python: Minor SQLALchemy comment fixes	2021-09-22 13:58:29 +02:00
haby0	6c07a3e260	Apply @yoff's suggestion	2021-09-22 18:50:58 +08:00
Chris Smowton	24e3ad4e18	Remove unnecessary type constraint	2021-09-22 10:54:24 +01:00
Mathias Vorreiter Pedersen	a66f83644b	Merge pull request #6728 from rdmarsh2/rdmarsh/sql-models-followup C++: Add additional functions to the SQL models	2021-09-22 10:19:51 +01:00
Tom Hvitved	364dab6990	Remove `CODEQL_REDUCE_FILES_FOLDERS_RELATIONS`	2021-09-22 09:43:56 +02:00

... 167 168 169 170 171 ...

36554 Commits