github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
71 020 коммитов 1 531 ветка 130 Теги 460 MiB
Граф коммитов

898 Коммитов

Автор SHA1 Сообщение Дата
Tom Hvitved 4df9cd88ef
Merge pull request #17658 from hvitved/shared/cfg-conditional-splitting 
Shared `ConditionalCompletionSplitting` implementation
 2024-10-10 13:21:38 +02:00
Tom Hvitved 6a87eb0c73
Merge pull request #17696 from hvitved/rust/captured-variables 
Rust: Account for captured variables
 2024-10-09 19:42:03 +02:00
Tom Hvitved aa7215bbd5 Address review comments 2024-10-09 17:22:16 +02:00
Michael Nebel 79871aa51e
Merge pull request #17687 from michaelnebel/modelgen/removeduplicatedf 
C#/Java: Avoid `df` and `dfc` overlap in model generation.
 2024-10-09 14:04:31 +02:00
Michael Nebel 5d4ceeebb5 Shared: Only generate df summary model in the mixed query in case no context sensitive model exist. 2024-10-09 13:04:32 +02:00
Tom Hvitved 3d95369608 Shared `ConditionalSplitting` implementation 2024-10-09 11:02:13 +02:00
Tom Hvitved 9952997b48 Shared: Add `DenseRank` library 2024-10-09 10:16:59 +02:00
Asger F 5a4cd1c578
Merge pull request #17661 from asgerf/shared/js-useuse-ssa-changes 
SSA: Add BarrierGuardWithState
 2024-10-08 08:27:18 +02:00
Asger F 1ce0ba5083 SSA: Make WithState private 2024-10-07 14:48:28 +02:00
Asger F 9902874ddd SSA: Add BarrierGuardWithState 2024-10-03 13:48:44 +02:00
Michael Nebel 104d448b16 Shared: Only use heuristic summary flow in case there is no content based flow. 2024-10-02 15:24:01 +02:00
github-actions[bot] e97878ed63 Post-release preparation for codeql-cli-2.19.1 2024-09-30 19:49:00 +00:00
github-actions[bot] 455c8c5953 Release preparation for version 2.19.1 2024-09-30 17:59:48 +00:00
Michael Nebel 6f74387600
Merge pull request #17521 from michaelnebel/modelgen/moreimprovements 
C#/Java: Content based model generation improvements.
 2024-09-30 11:22:30 +02:00
Michael Nebel baae8d0bb2 Shared: Address model generator review comments. 2024-09-30 09:12:30 +02:00
Michael Nebel 80497f551e Shared: Only make unlifted models in case the API itself is relevant. 2024-09-27 09:22:25 +02:00
Michael Nebel 8310faa2e9 C#/Java: Add a query that uses both content based and non-content based model generation. 2024-09-27 09:22:11 +02:00
Tom Hvitved 7c473c38c0
Merge pull request #17585 from hvitved/shared/cfg-scope-no-first-consistency 
Shared: Add CFG consistency check for scopes with missing entry points
 2024-09-26 14:05:08 +02:00
Michael Nebel 2a5dc204fb Shared: Add dfc as a valid model origin. 2024-09-26 13:00:57 +02:00
Michael Nebel e70297a7bc Shared: Content based models is now printed with dfc-generated provenance. 2024-09-26 13:00:39 +02:00
Michael Nebel 53c20ccaeb Shared: Some model generator re-factoring. 2024-09-26 12:55:01 +02:00
Michael Nebel b041829569 Shared: steps in synthetic path chains should just mention the same synthetic fields. 2024-09-26 12:49:07 +02:00
Michael Nebel 6cd548f410 Shared: Only exclude API and parameter combinations where we could get more than three summaries. 2024-09-26 12:00:04 +02:00
Rasmus Wriedt Larsen 431a1af628
Merge branch 'main' into threat-models 2024-09-26 11:44:24 +02:00
Michael Nebel dd993c3900
Merge pull request #17509 from michaelnebel/modelgen/parammodule 
C#/Java: Re-factor the model generator to be a parameterized module.
 2024-09-26 10:57:16 +02:00
Tom Hvitved ce2d959b7e Shared: Add CFG consistency check for scopes with missing entry points 2024-09-25 16:43:00 +02:00
Tom Hvitved 90869ec96a
Merge pull request #17558 from hvitved/rust/cfg-consistency-queries 
Rust: Enable CFG consistency checks
 2024-09-25 15:14:44 +02:00
Anders Schack-Mulligen cc63abf0af
Merge pull request #17578 from aschackmull/cpp/fix-inline-sink2 
Cpp: Replace sink inlining with a forward scan from source.
 2024-09-25 13:54:48 +02:00
Tom Hvitved d299380a5a Rust: Enable CFG consistency checks 2024-09-25 10:56:44 +02:00
Tom Hvitved 1fb9835f23
Merge pull request #17557 from hvitved/rust/cfg-improvements 
Rust: CFG improvements
 2024-09-25 10:54:49 +02:00
Anders Schack-Mulligen 3a1b618a74 Cpp: Replace sink inlining with a forward scan from source. 2024-09-25 10:28:23 +02:00
Michael Nebel e6085759ae Shared: Put the content of CaptureSummaryFlowQuery into the shared library code. 2024-09-24 15:46:44 +02:00
Michael Nebel fd45d2dcbb Shared: Move the model generator implementation to an internal folder. 2024-09-24 15:27:29 +02:00
Michael Nebel 22c2522aac Shared: Make a ContentSensitive module with predicates and classes related to content flow. 2024-09-24 15:16:16 +02:00
Tom Hvitved 6a11120e50 Address review comments 2024-09-24 14:21:40 +02:00
Tom Hvitved 16925355a8 Data flow: Cache `TNodeEx` 2024-09-24 14:21:39 +02:00
Tom Hvitved 37490de4a2 Data flow: Remove Boolean column from `TNodeImplicitRead` 2024-09-24 14:21:37 +02:00
Tom Hvitved 6ae03e67e6 Rust: Add case for `ParenExpr` in CFG 2024-09-24 11:20:57 +02:00
Chuan-kai Lin 1cd8af54f2
Merge pull request #17190 from github/cklin/diff-informed-java-queries 
Java: add support for alert location restrictions
 2024-09-23 08:39:24 -07:00
Rasmus Wriedt Larsen 4a21a85e73
Merge branch 'main' into threat-models 2024-09-23 11:19:58 +02:00
Anders Schack-Mulligen 3a1e50dcf9 Dataflow: Simplify diff-informed implementation and tweak flag name. 2024-09-20 07:07:10 -07:00
Tom Hvitved 16813240ae Shared: Do not use `@kind graph` for CFG test output 2024-09-19 18:13:31 +02:00
Michael Nebel f142af50b7 Shared: QL doc improvement. 2024-09-19 12:20:59 +02:00
Michael Nebel 3b9f3c2c29 Shared: Add a model generator parameterised module. 2024-09-19 12:20:42 +02:00
Michael Nebel 4a9e3ee3aa
Merge pull request #17363 from michaelnebel/modelgen/fieldbasedimprovements 
C#/Java: Content based model generation improvements.
 2024-09-19 10:49:11 +02:00
Tom Hvitved 2972a4eace Data flow: Remove spurious space in ` Sink:x` provenance 2024-09-18 13:10:24 +02:00
Anders Schack-Mulligen 2837d2551a
Merge pull request #17490 from aschackmull/java/capture-in-obinit 
Java: Fix support for variable capture inside object initializers.
 2024-09-18 09:29:01 +02:00
Anders Schack-Mulligen 20661a3c56 Java: Fix support for variable capture inside object initializers. 2024-09-17 10:42:21 +02:00
Chris Smowton 30be6803c3
Merge pull request #17480 from github/post-release-prep/codeql-cli-2.19.0 
Post-release preparation for codeql-cli-2.19.0
 2024-09-16 16:06:58 +01:00
github-actions[bot] 79be301984 Post-release preparation for codeql-cli-2.19.0 2024-09-16 14:09:32 +00:00