hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-31 12:48:17 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
0c5e89a68eff355ca81aa710827194f501046496
codeql/java/ql
History
MarkLee131 0c5e89a68e Exclude bounds-check arithmetic from tainted-arithmetic sinks 
The java/tainted-arithmetic query now recognizes when an arithmetic
expression appears directly as an operand of a comparison (e.g.,
`if (off + len > array.length)`). Such expressions are bounds checks,
not vulnerable computations, and are excluded via the existing
overflowIrrelevant predicate.

Add test cases for bounds-checking patterns that should not be flagged.
2026-03-28 17:39:40 +08:00
..
automodel/src
Merge branch 'main' into henrymercer/merge-back-rc-3.16
2024-12-04 13:39:10 +00:00
consistency-queries
Java: Align BinaryExpr.getOp() with AssignOp.getOp().
2026-03-04 13:46:04 +01:00
examples
Java: Rename ReturnStmt.getResult to getExpr.
2026-02-04 14:43:31 +01:00
integration-tests
Kotlin: Support Kotlin 2.3.10
2026-02-06 14:54:08 +01:00
lib
Exclude bounds-check arithmetic from tainted-arithmetic sinks
2026-03-28 17:39:40 +08:00
src
Merge branch 'main' into post-release-prep/codeql-cli-2.25.0
2026-03-19 13:07:00 +01:00
test
Exclude bounds-check arithmetic from tainted-arithmetic sinks
2026-03-28 17:39:40 +08:00
test-kotlin1
Java: Make Assignment extend BinaryExpr.
2026-03-05 11:31:59 +01:00
test-kotlin2
Java: Make Assignment extend BinaryExpr.
2026-03-05 11:31:59 +01:00