hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-31 12:48:17 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
da4a2238bc706382a41d402e5a907d9d95d6424a
codeql/java/ql
History
MarkLee131 da4a2238bc Address PR review: add Signature.getInstance sink, HMAC/PBKDF2 whitelist, fix test APIs 
- Model Signature.getInstance() as CryptoAlgoSpec sink (previously only
  Signature constructor was modeled)
- Add HMAC-based algorithms (HMACSHA1/256/384/512, HmacSHA1/256/384/512)
  and PBKDF2 to the secure algorithm whitelist
- Fix XDH/X25519/X448 tests to use KeyAgreement.getInstance() instead of
  KeyPairGenerator.getInstance() to match their key agreement semantics
- Add test cases for SHA384withECDSA, HMACSHA*, and PBKDF2WithHmacSHA1
  from user-reported false positives
- Update change note to document all additions
2026-03-28 16:53:46 +08:00
..
automodel/src
Merge branch 'main' into henrymercer/merge-back-rc-3.16
2024-12-04 13:39:10 +00:00
consistency-queries
Java: Align BinaryExpr.getOp() with AssignOp.getOp().
2026-03-04 13:46:04 +01:00
examples
Java: Rename ReturnStmt.getResult to getExpr.
2026-02-04 14:43:31 +01:00
integration-tests
Kotlin: Support Kotlin 2.3.10
2026-02-06 14:54:08 +01:00
lib
Address PR review: add Signature.getInstance sink, HMAC/PBKDF2 whitelist, fix test APIs
2026-03-28 16:53:46 +08:00
src
Merge branch 'main' into post-release-prep/codeql-cli-2.25.0
2026-03-19 13:07:00 +01:00
test
Address PR review: add Signature.getInstance sink, HMAC/PBKDF2 whitelist, fix test APIs
2026-03-28 16:53:46 +08:00
test-kotlin1
Java: Make Assignment extend BinaryExpr.
2026-03-05 11:31:59 +01:00
test-kotlin2
Java: Make Assignment extend BinaryExpr.
2026-03-05 11:31:59 +01:00