hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-25 08:45:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
49bbfc3f4b16c4ef911c001c09dc1dea9a57cdb9
codeql/java/ql/test/query-tests/security
History
Chris Smowton 49bbfc3f4b Convert SSRF sinks into url-open CSV sinks 
I also drop the previous approach of taint-tracking through various builder objects in favour of assuming that a URI set in a request-builder object is highly likely to end up requested in some way or another.

This will cause the `java/non-https-url` query to pick the new sinks up too, and fixes a Spring case that had never worked but went unnoticed until now.
2021-06-17 11:43:30 +01:00
..
CWE-022/semmle/tests
Java: Adjust some test output with more edges/nodes.
2021-04-19 14:06:27 +02:00
CWE-078
Java: Update qltests.
2021-06-01 11:47:52 +02:00
CWE-079/semmle/tests
update failing tests
2021-05-28 15:13:18 +02:00
CWE-089/semmle/examples
Java: Update test output
2020-10-12 15:50:47 +01:00
CWE-090
Java: Fix LdapInjection qltest
2020-07-08 14:04:01 +02:00
CWE-094
Re-structure imports, add some new comments to tests
2021-05-07 12:33:51 +02:00
CWE-113/semmle/tests
Java: Adjust some test output with more edges/nodes.
2021-04-19 14:06:27 +02:00
CWE-129/semmle/tests
Add support for Commons-Lang's RandomUtils
2021-03-05 12:09:33 +00:00
CWE-134/semmle/tests
Java: Update expected test output
2019-10-04 11:09:44 +02:00
CWE-190/semmle/tests
Java: Adjust some test output with more edges/nodes.
2021-04-19 14:06:27 +02:00
CWE-209/semmle/tests
Migrate Java code to separate QL repo.
2018-08-30 10:48:05 +01:00
CWE-297
Java: fix javac errors in test code
2021-02-09 09:16:57 -05:00
CWE-311
Move tests back from internal repo
2021-06-16 10:09:44 +02:00
CWE-327/semmle/tests
Java: Update expected test output
2019-09-18 13:36:15 +02:00
CWE-335/semmle/tests
Migrate Java code to separate QL repo.
2018-08-30 10:48:05 +01:00
CWE-338/semmle/tests
Update JHipster CodeQL query from code review
2020-10-01 15:38:56 -04:00
CWE-367/semmle/tests
Migrate Java code to separate QL repo.
2018-08-30 10:48:05 +01:00
CWE-421/semmle
Java: fix javac errors in test code
2021-02-09 09:16:57 -05:00
CWE-502
Fix error
2021-06-17 17:36:35 +08:00
CWE-601/semmle/tests
Java: Update expected test output
2019-10-04 11:09:44 +02:00
CWE-611
Fix tests for XXE, introduced a dependency with jaxen
2021-05-06 12:11:55 +02:00
CWE-643
Mark a MISSING test result as suggested in code review
2021-05-07 11:17:51 +02:00
CWE-676/semmle/tests
Migrate Java code to separate QL repo.
2018-08-30 10:48:05 +01:00
CWE-681/semmle/tests
Java: Adjust some test output with more edges/nodes.
2021-04-19 14:06:27 +02:00
CWE-732/semmle/tests
Java: fix javac errors in test code
2021-02-09 09:16:57 -05:00
CWE-798/semmle/tests
Merge Hardcoded AWS Credentials check into the mail source folder
2020-07-13 12:22:34 +00:00
CWE-807/semmle/tests
Java: Update expected test output
2019-10-04 11:09:44 +02:00
CWE-829/semmle/tests
java: fixup whitespace/tabs in test
2020-01-24 11:01:38 +01:00
CWE-833/semmle/tests
Java: accept changes in expected output
2021-02-09 09:17:35 -05:00
CWE-835/semmle/tests
Java: Adjust toString() for statements
2021-06-03 16:27:36 +02:00
CWE-918
Convert SSRF sinks into url-open CSV sinks
2021-06-17 11:43:30 +01:00
CWE-1104/semmle/tests
Fix typo in test output
2021-02-22 13:26:51 -05:00