github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

Apply suggestions from code review 

Co-Authored-By: Jonas Jensen <jbj@github.com>
This commit is contained in:
Anders Schack-Mulligen 2020-01-30 10:41:13 +01:00 коммит произвёл GitHub
Родитель 2039ec37e5
Коммит b7a8d0e903
Не найден ключ, соответствующий данной подписи
Идентификатор ключа GPG: 4AEE18F83AFDEB23
3 изменённых файлов: 3 добавлений и 3 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

2
change-notes/1.24/analysis-cpp.md
Просмотреть файл

@ -28,7 +28,7 @@ The following changes in version 1.24 affect C/C++ analysis in all applications.
* The data-flow library has been improved when flow through functions needs to be
combined with both taint tracking and flow through fields allowing more flow
to be tracked. This affects and improves all security queries, which may
to be tracked. This affects and improves some security queries, which may
report additional results.
* Created the `semmle.code.cpp.models.interfaces.Allocation` library to model allocation such as `new` expressions and calls to `malloc`. This in intended to replace the functionality in `semmle.code.cpp.commons.Alloc` with a more consistent and useful interface.
* Created the `semmle.code.cpp.models.interfaces.Deallocation` library to model deallocation such as `delete` expressions and calls to `free`. This in intended to replace the functionality in `semmle.code.cpp.commons.Alloc` with a more consistent and useful interface.

2
change-notes/1.24/analysis-csharp.md
Просмотреть файл

@ -31,7 +31,7 @@ The following changes in version 1.24 affect C# analysis in all applications.
* The data-flow library has been improved when flow through methods needs to be
combined with both taint tracking and flow through fields allowing more flow
to be tracked. This affects and improves all security queries, which may
to be tracked. This affects and improves most security queries, which may
report additional results.
* The taint tracking library now tracks flow through (implicit or explicit) conversion operator calls.
* [Code contracts](https://docs.microsoft.com/en-us/dotnet/framework/debug-trace-profile/code-contracts) are now recognized, and are treated like any other assertion methods.

2
change-notes/1.24/analysis-java.md
Просмотреть файл

@ -27,7 +27,7 @@ The following changes in version 1.24 affect Java analysis in all applications.
* The data-flow library has been improved when flow through methods needs to be
combined with both taint tracking and flow through fields allowing more flow
to be tracked. This affects and improves all security queries, which may
to be tracked. This affects and improves most security queries, which may
report additional results.
* Identification of test classes has been improved. Previously, one of the
match conditions would classify any class with a name containing the string