hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
next
codeql/change-notes/1.20/analysis-csharp.md
Tom Hvitved 5f269b2d87 Merge branch 'master' into cs/extractor/for-is
2018-12-17 11:14:50 +01:00

1.4 KiB
Raw Permalink Blame History

Improvements to C# analysis

General improvements

New queries

Query Tags Purpose

Changes to existing queries

@name of query (Query ID) Impact on results How/why the query has changed
Off-by-one comparison against container length (cs/index-out-of-bounds) Fewer false positives Results have been removed when there are additional guards on the index.
Dereferenced variable is always null (cs/dereferenced-value-is-always-null) Improved results The query has been rewritten from scratch, and the analysis is now based on static single assignment (SSA) forms. The query is now enabled by default in LGTM.
Dereferenced variable may be null (cs/dereferenced-value-may-be-null) Improved results The query has been rewritten from scratch, and the analysis is now based on static single assignment (SSA) forms. The query is now enabled by default in LGTM.

Changes to code extraction

  • Fix extraction of for statements where the condition declares new variables using is.
  • Initializers of stackalloc arrays are now extracted.

Changes to QL libraries

Changes to the autobuilder