codeql

mirror of https://github.com/github/codeql.git synced 2026-01-30 14:52:57 +01:00

Files

Chris Smowton 92d3da5e56 Declassify fmt.Fprintf as a log sink

In future we could try harder to find out whether you're Fprintf'ing to stdout, a file named xyz.log etc, but for now this causes Fprintf'ing to an HTTP writer to be mistaken for log-injection rather than just XSS.

2021-12-17 17:07:58 +00:00

change-notes/released

Release preparation for version 2.7.3

2021-11-30 20:39:28 +00:00

semmle/go

Declassify fmt.Fprintf as a log sink

2021-12-17 17:07:58 +00:00

CHANGELOG.md

Release preparation for version 2.7.3

2021-11-30 20:39:28 +00:00

codeql-pack.release.yml

Release preparation for version 2.7.3

2021-11-30 20:39:28 +00:00

Customizations.qll

Move Go QL library files into separate pack

2021-08-24 10:31:02 -04:00

definitions.ql

Move Go QL library files into separate pack

2021-08-24 10:31:02 -04:00

go.dbscheme

Update dbscheme to add table for variadic signature types

2021-11-01 16:00:49 +00:00

go.dbscheme.stats

Merge remote-tracking branch 'upstream/main' into dbartol/refactor

2021-10-07 10:49:45 -04:00

go.qll

Move Go QL library files into separate pack

2021-08-24 10:31:02 -04:00

ideContextual.qll

Move Go QL library files into separate pack

2021-08-24 10:31:02 -04:00

localDefinitions.ql

Move Go QL library files into separate pack

2021-08-24 10:31:02 -04:00

localReferences.ql

Move Go QL library files into separate pack

2021-08-24 10:31:02 -04:00

printAst.ql

Move Go QL library files into separate pack

2021-08-24 10:31:02 -04:00

qlpack.lock.yml

Modernize Go pack definitions

2021-08-24 10:31:01 -04:00

qlpack.yml

Update pack dependency

2021-12-09 07:58:14 -08:00

tutorial.qll

Move tutorial directly into each qlpack

2021-10-12 14:39:15 -07:00

xml.dbscheme

Move Go QL library files into separate pack

2021-08-24 10:31:02 -04:00