Commit Graph

36554 Commits

Author SHA1 Message Date
Erik Krogh Kristensen
530df51e8f QL: get printAst to work 2021-05-26 11:58:14 +00:00
Arthur Baars
4dc182d4a4 Merge pull request #191 from github/fixCap
fix snake_casing of camelCased identifiers
2021-05-26 13:39:52 +02:00
shati-patel
041c07463f another bit of cleanup 2021-05-26 12:38:40 +01:00
shati-patel
1b8f702ec6 QL: another bit of cleanup 2021-05-26 12:38:40 +01:00
Arthur Baars
bacbd5e997 Address comments 2021-05-26 13:35:45 +02:00
Tom Hvitved
419e69b2b5 More cleanup 2021-05-26 13:25:43 +02:00
Tom Hvitved
68e9f9657b QL: More cleanup 2021-05-26 13:25:43 +02:00
shati-patel
5b830fdcd1 Fix commands on Windows (take 2) 2021-05-26 12:24:54 +01:00
shati-patel
f9f8dfb619 QL: Fix commands on Windows (take 2) 2021-05-26 12:24:54 +01:00
Erik Krogh Kristensen
f04005e4ca update dbscheme to fix capitalization 2021-05-26 11:23:22 +00:00
Erik Krogh Kristensen
2df49aaae8 QL: update dbscheme to fix capitalization 2021-05-26 11:23:22 +00:00
Erik Krogh Kristensen
ecde34fdf4 Merge pull request #4 from github/fixCap
fix snake_casing of generated ql identifiers
2021-05-26 13:18:30 +02:00
Erik Krogh Kristensen
786f756591 QL: Merge pull request #4 from github/fixCap
fix snake_casing of generated ql identifiers
2021-05-26 13:18:30 +02:00
Erik Krogh Kristensen
9c1b237e3b fix snake_casing of camelCased identifiers 2021-05-26 11:16:05 +00:00
shati-patel
d7e53bfdb3 Fix Windows commands 2021-05-26 12:12:36 +01:00
shati-patel
407f63b7d2 QL: Fix Windows commands 2021-05-26 12:12:36 +01:00
Erik Krogh Kristensen
02e1d424b2 fix snake_casing of generated ql identifiers 2021-05-26 11:12:05 +00:00
Erik Krogh Kristensen
b0d86d466f QL: fix snake_casing of generated ql identifiers 2021-05-26 11:12:05 +00:00
Shati Patel
021c0a03b4 Update devcontainer files 2021-05-26 10:22:53 +00:00
Shati Patel
6bb91f4080 QL: Update devcontainer files 2021-05-26 10:22:53 +00:00
Arthur Baars
a044f41aad Merge pull request #188 from github/aibaars/qlpack
Build Ruby bundle
2021-05-26 12:18:51 +02:00
Rasmus Wriedt Larsen
795a1c7006 Merge pull request #5443 from jorgectf/jorgectf/python/ldapInjection
Python: Add LDAP Injection query
2021-05-26 11:52:31 +02:00
Tom Hvitved
815bd4fb92 Update workflow files 2021-05-26 11:50:37 +02:00
Tom Hvitved
cacefbe075 QL: Update workflow files 2021-05-26 11:50:37 +02:00
Tom Hvitved
ec15ba8e9c Update Readme 2021-05-26 11:46:34 +02:00
Tom Hvitved
f5c1b2e645 QL: Update Readme 2021-05-26 11:46:34 +02:00
Tom Hvitved
6d04ef46f4 Change more Ruby to QL 2021-05-26 11:43:18 +02:00
Tom Hvitved
823ab1076a QL: Change more Ruby to QL 2021-05-26 11:43:18 +02:00
Tom Hvitved
7bac6a07b6 Initial commit 2021-05-26 11:32:30 +02:00
Rasmus Wriedt Larsen
f807c2f52b Python: autoformat 2021-05-26 11:07:48 +02:00
Rasmus Wriedt Larsen
d5f2846394 Merge branch 'main' into jorgectf/python/ldapInjection 2021-05-26 11:01:48 +02:00
ihsinme
9088475339 Update DoubleFree.qhelp 2021-05-26 09:44:03 +03:00
ihsinme
2909dde179 Update test.c 2021-05-26 09:31:15 +03:00
ihsinme
fbf95df537 Update DoubleFree.c 2021-05-26 09:27:20 +03:00
ihsinme
7c2100efd9 Apply suggestions from code review
thanks for your corrections.
and of course sorry for my text.

Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>
2021-05-26 09:15:46 +03:00
Evgenii Protsenko
55045626df C++: SqlPqxxTainted.ql style fixes 2021-05-25 22:38:27 +03:00
Tom Hvitved
abcabeef06 Remove *Real predicates and enable recursive desugaring 2021-05-25 21:27:39 +02:00
Tom Hvitved
3f412e4fad Desugar setter assignment operations 2021-05-25 21:27:39 +02:00
Tom Hvitved
b173cc332a Desugar setter assignments 2021-05-25 21:27:39 +02:00
Tom Hvitved
b812012b71 Add CFG setter assignment test 2021-05-25 21:27:39 +02:00
Tom Hvitved
e85677a040 Adjust locations of synthesized AST nodes 2021-05-25 21:27:34 +02:00
Mathias Vorreiter Pedersen
b2bdf95a9d C++: Remove large antijoin in SwitchCase.getAStmt(). 2021-05-25 17:25:42 +02:00
Timo Mueller
75f6ec1f0d Updated test cases to include test for java10+ CREDENTIALS_FILTER_PATTERN constant 2021-05-25 17:08:58 +02:00
Timo Mueller
72901e3724 Merge branch 'insecureJmxRmiServerEnvironment' of github.com:mogwailabs/codeql into insecureJmxRmiServerEnvironment 2021-05-25 16:41:17 +02:00
Timo Mueller
59ebe08c78 Added stup for RMIConnectorServer for valid test case 2021-05-25 16:40:41 +02:00
Rasmus Wriedt Larsen
1b3f857a2f Python: Promote ClickHouse SQL models 2021-05-25 16:27:23 +02:00
Rasmus Wriedt Larsen
eb1da152a0 Python: Rewrite ClickHouse SQL lib modeling
This did turn into a few changes, that maybe could have been split into
separate PRs 🤷

* Rename `ClickHouseDriver` => `ClickhouseDriver`, to better follow
  import name in `.qll` name
* Rewrote modeling to use API graphs
* Split modeling of `aioch` into separate `.qll` file, which does re-use
  the `getExecuteMethodName` predicate. I feel that sharing code between
  the modeling like this was the best approach, and stuck the
  `INTERNAL: Do not use.` labels on both modules.
* I also added handling of keyword arguments (see change in .py files)
2021-05-25 16:13:31 +02:00
Rasmus Wriedt Larsen
c9a9535dbc Python: Use ConceptsTests for ClickHouse SQL libs
This did reveal a few places where we do not detect the incoming SQL
2021-05-25 16:10:06 +02:00
Geoffrey White
2fd461e984 Merge pull request #5938 from MathiasVP/promote-access-of-memory-location-after-end-of-buffer-using-strncat
C++: Promote `cpp/access-memory-location-after-end-buffer-strncat` out of experimental
2021-05-25 14:36:53 +01:00
Tamás Vajk
1997f500c2 Merge pull request #5832 from tamasvajk/feature/csv-coverage-report
Java: github action for CSV coverage report
2021-05-25 14:51:19 +02:00