hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 84a501d360 Update csharp/ql/src/Bad Practices/PathCombine.ql path-combine-name-desc-update Jon Janego 2025-12-16 09:10:39 -06:00
  • 63329b47d8 Merge pull request #21036 from paldepind/rust/prioritize-manual-summaries main Simon Friis Vindum 2025-12-16 12:47:27 +01:00
  • 6fc963177c codegen: mention Rust in the README redsun82/codegen-readme Paolo Tranquilli 2025-12-16 11:05:39 +01:00
  • 8c4b81ebc7 Rust: Fix typo in comment Simon Friis Vindum 2025-12-16 10:19:01 +01:00
  • 477e1cd96c Rust: Fix manual model for PathBuf::as_path Simon Friis Vindum 2025-12-15 15:40:13 +01:00
  • bd9b657e91 Update csharp/ql/src/Bad Practices/PathCombine.ql Jon Janego 2025-12-15 15:20:52 -06:00
  • f6e3e192ca Clarify Path.Combine call behavior in documentation Jon Janego 2025-12-15 15:18:34 -06:00
  • d709343d38 Merge pull request #21011 from aschackmull/mad/shared-externalflow Tom Hvitved 2025-12-15 20:27:04 +01:00
  • 74ed18a89f Merge pull request #21035 from hvitved/rust/ord-models Tom Hvitved 2025-12-15 17:09:33 +01:00
  • 1b70111dd2 Rust: Don't apply generated models for functions that have a manual model Simon Friis Vindum 2025-12-15 14:25:49 +01:00
  • d2cfd53933 Rust: Add test with wrong generated model Simon Friis Vindum 2025-12-15 14:21:16 +01:00
  • 2824c98efb Merge pull request #21025 from github/oscarsj/mergeback-rc-3-20-into-main Óscar San José 2025-12-15 11:59:58 +01:00
  • fc49360e81 Rust: Add models for core::cmp::Ord::{min,max,clamp} Tom Hvitved 2025-12-15 11:18:54 +01:00
  • 70447c6483 Merge pull request #21026 from michaelnebel/csharp/migratesolution Michael Nebel 2025-12-15 11:01:35 +01:00
  • 93e8534d0a Merge pull request #21009 from geoffw0/varfps Geoffrey White 2025-12-15 09:48:47 +00:00
  • 01f9b42472 Merge branch 'main' into varfps Geoffrey White 2025-12-15 08:49:16 +00:00
  • 949cfc3fbd Merge pull request #21031 from github/workflow/coverage/update Michael Nebel 2025-12-15 09:12:24 +01:00
  • f7bbddec24 Add changed framework coverage reports github-actions[bot] 2025-12-15 00:27:40 +00:00
  • af2fbd8dda Merge pull request #20929 from owen-mc/go/fix-data-flow-consistency-checks Owen Mansel-Chan 2025-12-12 17:01:43 +00:00
  • 3ea92eada6 Merge pull request #21024 from MathiasVP/csharp-implicit-map-value-reads Mathias Vorreiter Pedersen 2025-12-12 16:46:12 +00:00
  • b61a439491 Merge pull request #21020 from hvitved/shared/source-sink-provenance-prio Tom Hvitved 2025-12-12 16:01:06 +01:00
  • e417938860 C#: Exclude all test projects from the Release build configuration. Michael Nebel 2025-12-12 14:25:15 +01:00
  • 7f1a9b57f1 C#: Update the default solution to point to the .slnx file instead. Michael Nebel 2025-12-12 14:23:23 +01:00
  • 1e43d06c6d C#: Migrate CSharp.sln to CSharp.slnx (as is). Michael Nebel 2025-12-12 14:22:51 +01:00
  • 64a48e4e7b MaD: Use "namespace" instead "package" in shared code. Anders Schack-Mulligen 2025-12-12 13:57:02 +01:00
  • 7f8d0771df MaD: Rename file. Anders Schack-Mulligen 2025-12-12 13:50:58 +01:00
  • d972af9ef8 Merge branch 'main' of https://github.com/github/codeql into oscarsj/mergeback-rc-3-20-into-main Óscar San José 2025-12-12 13:22:08 +01:00
  • 2720f57965 C#: Add change note. Mathias Vorreiter Pedersen 2025-12-12 11:20:02 +00:00
  • 72b63bbdc3 Merge pull request #20989 from github/post-release-prep/codeql-cli-2.23.8 rc/3.20 Óscar San José 2025-12-12 12:18:16 +01:00
  • f30ebab528 C#: Add implicit reads of System.Collections.Generic.KeyValuePair`2.Value at taint sinks. Mathias Vorreiter Pedersen 2025-12-12 11:08:15 +00:00
  • b499661c05 C#: Slightly refactor 'CollectionFlow' tests to add a taint-flow test. Mathias Vorreiter Pedersen 2025-12-12 11:00:33 +00:00
  • c5987b4481 Merge pull request #21019 from paldepind/rust/impl-return Simon Friis Vindum 2025-12-12 11:32:26 +01:00
  • 8564b4ea66 Go: Use shared modelCoverage. Anders Schack-Mulligen 2025-12-12 11:24:39 +01:00
  • 0b00589f95 Rust: Update expected test output Tom Hvitved 2025-12-12 09:56:06 +01:00
  • 0b81d44ec7 Rust: Apply same filtering of generated summaries as in C# and Java Tom Hvitved 2025-12-12 09:55:23 +01:00
  • c4a8e9df21 Shared: Prefer source/sink models with manual provenance over generated Tom Hvitved 2025-12-12 09:52:58 +01:00
  • f8c144b20e Merge pull request #21018 from aschackmull/csharp/guards-connect-barrierguard Anders Schack-Mulligen 2025-12-12 10:50:47 +01:00
  • 6f27863453 Merge pull request #21012 from hvitved/csharp/nhibernate-sql-sinks Tom Hvitved 2025-12-12 09:23:39 +01:00
  • 0566a9ffe6 Merge pull request #20994 from hvitved/csharp/remove-pre-ssa Tom Hvitved 2025-12-12 09:22:36 +01:00
  • 4b2e8c0b57 C++/C#/Go: Add empty extensible data. Anders Schack-Mulligen 2025-12-11 11:44:50 +01:00
  • 5bddc8d289 Go: Move Go package-grouping support into shared lib. Anders Schack-Mulligen 2025-12-11 10:35:39 +01:00
  • 4425891352 Rust: Don't propagate impl in return position into function bodies Simon Friis Vindum 2025-12-12 08:46:13 +01:00
  • e262438557 C++: Use shared model coverage code. Anders Schack-Mulligen 2025-12-11 10:14:41 +01:00
  • 07252519c8 Java/C++: Thread additional models through the shared lib. Anders Schack-Mulligen 2025-12-11 09:59:13 +01:00
  • 47dcf05a32 C++/Go/Java: Don't import top-level extensible predicates. Anders Schack-Mulligen 2025-12-11 08:59:17 +01:00
  • 3b334ea215 Java/C#: Share model coverage code. Anders Schack-Mulligen 2025-12-11 08:44:09 +01:00
  • 0915db4f6b C++/C#/Go: Use shared interpretModelForTest. Anders Schack-Mulligen 2025-12-11 08:20:13 +01:00
  • f0e7f1af2c C++/C#/Go: Align ExternalFlowExtensions with Java. Anders Schack-Mulligen 2025-12-11 08:14:37 +01:00
  • cb578e32ab Java: Move interpretModelForTest into shared code. Anders Schack-Mulligen 2025-12-10 16:59:47 +01:00
  • 7285a8e1c5 Merge pull request #20986 from aschackmull/java/mad-barriers Anders Schack-Mulligen 2025-12-12 07:53:53 +01:00
  • 8fccc34bd6 Merge pull request #21017 from github/idrissrio/cpp/overlay/xml Idriss Riouak 2025-12-11 20:02:57 +01:00
  • ee13a49152 Merge branch 'main' into varfps Geoffrey White 2025-12-11 18:21:22 +00:00
  • d88bae9ec2 Rust: Narrow the exclusion a little. Geoffrey White 2025-12-11 17:57:16 +00:00
  • 5db6b92411 Merge pull request #20887 from github/copilot/add-ecb-cbc-test-cases Geoffrey White 2025-12-11 16:22:27 +00:00
  • 1af1d2d3d5 Merge pull request #21008 from jketema/swift-6.2.2 Jeroen Ketema 2025-12-11 16:57:55 +01:00
  • 926d7f53f2 C/C++ overlay: Update identical files idrissrio 2025-12-11 16:56:29 +01:00
  • 4066c0d84a Java: Fix input/output naming. Anders Schack-Mulligen 2025-12-11 15:53:54 +01:00
  • 87f58fe51a Convert regex injection barrier to MaD Owen Mansel-Chan 2025-12-09 16:41:13 +00:00
  • 44295e4c7d Convert XSS barrier to MaD Owen Mansel-Chan 2025-12-09 16:11:12 +00:00
  • 7e562f3150 Convert request forgery barrier guard to MaD Owen Mansel-Chan 2025-12-09 15:45:19 +00:00
  • 5ab26e481b Add dummy instantiations for other languages. Anders Schack-Mulligen 2025-12-09 15:22:35 +01:00
  • f6e3c77145 Convert path injection barrier to MaD Owen Mansel-Chan 2025-12-09 12:55:04 +00:00
  • f6e40bd49d Convert trust boundary violation barrier and barrier guard to MaD Owen Mansel-Chan 2025-12-09 12:24:43 +00:00
  • dcf6041dca Java: Add empty extensible data. Anders Schack-Mulligen 2025-12-09 12:52:38 +01:00
  • 8da65ec6d0 Java: Add support for boolean MaD barrier guards. Anders Schack-Mulligen 2025-12-09 12:35:27 +01:00
  • d24b0ff596 Java: Basic support for pass-through barrier models. Anders Schack-Mulligen 2025-12-08 14:53:09 +01:00
  • e13bb0f866 Merge pull request #20879 from paldepind/rust/reads-as-taint Simon Friis Vindum 2025-12-11 16:05:29 +01:00
  • 1142f4a54a C#: Connect shared Guards to SSA BarrierGuards. Anders Schack-Mulligen 2025-12-11 15:41:47 +01:00
  • 84bbe71522 C/C++ overlay: Discard xml entities idrissrio 2025-12-11 15:26:17 +01:00
  • 74a77a7c3c Rust: Fix typo in change note Simon Friis Vindum 2025-12-11 15:04:25 +01:00
  • adac3926a1 C#: Remove PreSsa library Tom Hvitved 2025-12-09 10:38:01 +01:00
  • 6feded9000 Merge pull request #21014 from hvitved/csharp/file-path-filter-log-levels Tom Hvitved 2025-12-11 14:02:51 +01:00
  • ad6988ff40 Merge pull request #20995 from github/idrissrio/cpp/overlay/locations Idriss Riouak 2025-12-11 14:00:12 +01:00
  • ce2c149cb3 Merge pull request #20996 from michaelnebel/csharp/updateroslyn Michael Nebel 2025-12-11 13:50:22 +01:00
  • a060218109 Add change note Tom Hvitved 2025-12-11 13:43:52 +01:00
  • 2fd4516c25 C#: Adjust log levels in FilePathFilter.cs Tom Hvitved 2025-12-11 13:37:56 +01:00
  • 776f6cd56f C#: Add NHibernate SQL injection tests Tom Hvitved 2025-12-11 13:14:44 +01:00
  • fac84ee9f3 C#: Add NHibernate SQL sinks Tom Hvitved 2025-12-11 11:58:25 +01:00
  • 24417cf93d C#: Add change-note. Michael Nebel 2025-12-11 13:15:29 +01:00
  • a820c49a0d Swift: Add change note Jeroen Ketema 2025-12-11 12:58:38 +01:00
  • 0673c2d82b Swift: Update resources to Swift 6.2.2 Jeroen Ketema 2025-12-11 12:55:43 +01:00
  • 5650c87c55 Swift: Update to Swift 6.2.2 Jeroen Ketema 2025-12-10 13:34:53 +01:00
  • 004dfbdf24 Merge pull request #21005 from jketema/swift-filter-arg Jeroen Ketema 2025-12-11 12:40:25 +01:00
  • fa76d3555a C#: Update launch.json to point to .NET 10. Michael Nebel 2025-12-10 14:02:53 +01:00
  • 298e8f0c58 C#: Bugfix in the implicittostring. Need to handle the ReadOnlySpan params overload for string.Format. Michael Nebel 2025-12-10 14:00:20 +01:00
  • ee5c291c9d C#: Update test expected output. Michael Nebel 2025-12-10 10:21:11 +01:00
  • 45cd8e94cd C#: Update test example (field is now a reserved word). Michael Nebel 2025-12-10 10:19:53 +01:00
  • d97b9f532a C#: Update example to use a type that calls an implicit (library) conversion operator. Michael Nebel 2025-12-10 09:51:25 +01:00
  • 66895a0c62 C#: Update the Roslyn, MsBuild and Binlog extractor dependencies. Michael Nebel 2025-12-09 13:24:35 +01:00
  • 3f372d2658 C/C++ overlay: Add overlay support for discarding macro invocations idrissrio 2025-12-08 16:09:50 +01:00
  • 1286ca6683 C/C++ overlay: Add overlay support for discarding namespaces idrissrio 2025-12-08 16:09:26 +01:00
  • c34456e3a0 C/C++ overlay: Add overlay support for discarding user types idrissrio 2025-12-08 16:08:56 +01:00
  • 4702e208b7 C/C++ overlay: Add overlay support for discarding functions idrissrio 2025-12-08 16:08:28 +01:00
  • c79cdea690 Merge pull request #20898 from michaelnebel/csharp/dotnet10extractor Michael Nebel 2025-12-11 12:05:35 +01:00
  • 3ab0ade9dc Merge pull request #21010 from hvitved/rust/type-inference-fix-blowup Tom Hvitved 2025-12-11 12:04:30 +01:00
  • c69bbce176 C#: Add change-note. Michael Nebel 2025-12-09 11:51:16 +01:00
  • 3bb12f6236 C#: Cleanup dependencies. Michael Nebel 2025-12-08 15:52:51 +01:00
  • af6809e93e C#: Update integration test expected files. Michael Nebel 2025-11-25 14:23:03 +01:00
  • 2d4127fdb7 C#: Partially update test expected files by search and replace. Michael Nebel 2025-11-24 14:19:13 +01:00
  • 16bfcc3882 C#: Update language test expected output files to .NET 10. Michael Nebel 2025-11-24 13:54:35 +01:00