github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
71 686 коммитов 1 533 Ветки 129 Теги 459 MiB
Граф коммитов

4146 Коммитов

Автор SHA1 Сообщение Дата
Cornelius Riemenschneider 047a655dec
Merge pull request #17324 from github/criemen/move-swift-int-tests 
Swift: Move all integration tests.
 2024-08-28 21:27:26 +02:00
Paolo Tranquilli f40901f391 Rust: archiving + skeleton def translator 2024-08-28 17:15:49 +02:00
Tom Hvitved 7f8e6bf574
Merge pull request #16970 from hvitved/dataflow/local-big-step-stage 
Data flow: Compute local big step relation as stage output
 2024-08-28 12:28:16 +02:00
Cornelius Riemenschneider a92a845719 Swift: Move all integration tests. 
We are no longer bound to the platform-specific directories,
so simplify the test organization.
If you don't want this change, just skip merging this PR. It's purely optional.
 2024-08-28 10:47:17 +02:00
Tom Hvitved c92c96fa78 Data flow: Compute local big step relation per stage 2024-08-26 09:15:27 +02:00
Asger F 8df7fbf6d6 Swift: update test output 
The 'first' field is seen as a TaintInheritingContent, which means any read step for 'first' becomes a taint step too.
This type of taint step does not permit an implicit read before it, because it wasn't contributed by a configuration.
So there is no way for the taint to get out of the collection content before the taint step through '.first'.
The test previously passed because an implicit read at once of the earlier sinks could follow use-use flow down to the receiver of .first,
allowing it to escape the collection content.
 2024-08-23 11:30:50 +02:00
Asger F 9703f67794 Test output updates that only affect nodes/edges 2024-08-23 11:03:26 +02:00
github-actions[bot] 0724fd7ce2 Post-release preparation for codeql-cli-2.18.3 2024-08-21 18:25:54 +00:00
github-actions[bot] 17cd9624fb Release preparation for version 2.18.3 2024-08-21 17:13:52 +00:00
Anders Schack-Mulligen 993bfee096
Merge pull request #17259 from aschackmull/dataflow/remove-srcsink-grouping 
Dataflow: Remove src/sink grouping feature
 2024-08-20 14:42:33 +02:00
Anders Schack-Mulligen 8470e91c16 Legacy Dataflow: Sync. 2024-08-20 10:07:57 +02:00
Geoffrey White 4c5c6c6968
Merge pull request #17148 from geoffw0/hardkey 
Swift: Additional test cases for swift/hardcoded-key
 2024-08-19 17:45:34 +01:00
Geoffrey White e3b9b0a9bd
Merge pull request #17210 from geoffw0/mailto 
Swift: Fix false positives in the swift/cleartext-transmission query
 2024-08-16 16:23:09 +01:00
Geoffrey White 0088ece3ea Revert "Swift: Fix two of the qhelps by slightly modifying the sample code instead." 
This reverts commit 2d19d6f61e.
 2024-08-16 13:24:03 +01:00
Geoffrey White 2d19d6f61e Swift: Fix two of the qhelps by slightly modifying the sample code instead. 2024-08-16 12:57:32 +01:00
Geoffrey White 0126fbcb8f Swift: Clear the language for Swift code snippets that are rendering incorrectly. 2024-08-16 10:56:46 +01:00
Geoffrey White 8646643f0e Swift: Change note. 2024-08-13 11:23:41 +01:00
Geoffrey White 446c992181 Swift: Exclude tel:, mailto: and similar URLs from the query. 2024-08-13 11:23:40 +01:00
Geoffrey White 897bfb5517 Swift: Convert URL sinks for swift/cleartext-transmission to be defined in QL. 2024-08-13 11:23:39 +01:00
Geoffrey White 345e1840f2 Swift: Add more test cases for swift/cleartext-transmission. 2024-08-13 09:28:23 +01:00
Michael Nebel 4a5c9f0ec4
Merge pull request #17007 from michaelnebel/shared/neutralimplementation 
C#/Java/Go: Neutrals are split into separate classes.
 2024-08-12 13:58:12 +02:00
Cornelius Riemenschneider 1689e60445 Merge remote-tracking branch 'origin/main' into criemen/pytest-swift 2024-08-09 11:22:41 +02:00
Cornelius Riemenschneider 9ce8018093 Autobuilder test/unsupported os: Promote to Windows and Linux test. 
This way, we have at least one Windows test, which makes our internal testing easier.
 2024-08-08 15:41:48 +02:00
github-actions[bot] cc6d87c276 Post-release preparation for codeql-cli-2.18.2 2024-08-08 12:56:21 +00:00
Cornelius Riemenschneider 2b0ff17884 Fix test expectations. 2024-08-08 10:28:42 +02:00
Cornelius Riemenschneider e5261f8bfc Port Swift integration tests to pytest. 2024-08-08 08:47:49 +02:00
github-actions[bot] 019da8c287 Release preparation for version 2.18.2 2024-08-07 14:02:38 +00:00
Alexander Eyers-Taylor 46577b585e
Revert "Release preparation for version 2.18.2" 2024-08-07 14:24:37 +01:00
github-actions[bot] c14ba0e4bd Release preparation for version 2.18.2 2024-08-06 12:46:15 +00:00
Geoffrey White 4225774a3a Swift: Add test cases for swift/hardcoded-key. 2024-08-05 11:42:18 +01:00
Geoffrey White 0f7598786c Swift: Test spacing. 2024-08-05 11:23:38 +01:00
Geoffrey White 9794309d2e
Merge pull request #17127 from geoffw0/swiftsql 
Swift: Improve doc for swift/sql-injection
 2024-08-02 16:14:57 +01:00
Geoffrey White 0525e9c6ee
Merge pull request #17128 from geoffw0/swiftcmdline 
Swift: Disable some FileManager models
 2024-08-02 13:59:59 +01:00
Geoffrey White b87d832fcb
Merge pull request #17129 from geoffw0/swiftconstsalt 
Swift: Fixes for swift/constant-salt
 2024-08-02 13:57:05 +01:00
Geoffrey White 49335e5b63
Merge pull request #17126 from geoffw0/swiftcleartext 
Swift: Improve documentation and examples that use encryption
 2024-08-02 13:55:00 +01:00
Geoffrey White e66cd05f96 Swift: Improve phrasing around robust escape functions. 2024-08-02 13:35:33 +01:00
Geoffrey White fa898b8489
Update swift/ql/src/queries/Security/CWE-089/SqlInjection.qhelp 
Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
 2024-08-02 13:11:01 +01:00
Geoffrey White aae19ab9f5 Swift: Remove quotes from the message. 2024-08-02 12:19:14 +01:00
Geoffrey White 5a5fdb2f6b Swift: I missed the commas. 2024-08-02 12:11:35 +01:00
Geoffrey White d3cdffef61
Apply suggestions from code review 
Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
 2024-08-02 12:07:31 +01:00
Geoffrey White 39411b0780 Swift: Add some test of taint through 'as'. 2024-08-01 17:33:35 +01:00
Geoffrey White e313fdb392 Swift: Correct a comment in ECBEncryptionQuery.qll. 2024-08-01 17:28:09 +01:00
Geoffrey White 2486c8423b Swift: Correct mistakes. 2024-08-01 17:02:03 +01:00
Geoffrey White 14763f3bb5 Swift: Change note. 2024-08-01 16:24:53 +01:00
Geoffrey White 8e68e0dfba Swift: Change note. 2024-08-01 16:17:55 +01:00
Geoffrey White 3f26250967 Swift: Remove the sources instead (more general solution). 2024-08-01 16:14:30 +01:00
Geoffrey White 2b7b1c624d Swift: Use a barrier as a simple fix. 2024-08-01 15:58:43 +01:00
Geoffrey White 7bf61d1d7e Swift: Add test cases. 2024-08-01 15:49:33 +01:00
Geoffrey White 683ca2d578 Swift: Test spacing. 2024-08-01 15:32:45 +01:00
Geoffrey White 2ed2a76866 Swift: Add a note about escaping as an alternative way to fix these issues. 2024-08-01 11:52:08 +01:00
Geoffrey White 2fd4b57d74 Swift: Expand the swift/sql-injection qhelp examples by labelling the API that's used, adding SQLite3 C API examples, and adding an example of using a prepared statement incorrectly. 2024-08-01 11:52:06 +01:00
Geoffrey White 9f6a5d9e13 Swift: Fix typo in example. 2024-08-01 11:52:05 +01:00
Geoffrey White 61eb5cd55c Swift: Put a barrier on the qualifiers as well. 2024-08-01 11:49:10 +01:00
Geoffrey White 0c3e8ced4b Swift: Make append methods and string interpolation barriers for swift/constant-salt. 2024-08-01 11:49:09 +01:00
Geoffrey White 2543f3ecfb Swift: Make + a barrier for swift/constant-salt. 2024-08-01 11:49:08 +01:00
Geoffrey White c8438c38f2 Swift: Tests for string appending with swift/constant-salt. 2024-08-01 11:49:07 +01:00
Geoffrey White 69c18f9cd2 Swift: Use in swift/constant-salt so that the source node is clickable + visible to autofix. 2024-08-01 11:49:06 +01:00
Geoffrey White b944d47f58 Swift: Fix the example for swift/constant-salt. 2024-08-01 11:49:05 +01:00
Geoffrey White 3d6a889d24 Swift: Make use of CBC blockmode in examples and tests mode accurate. 2024-07-30 16:59:11 +01:00
Geoffrey White 41c3d1b833 Swift: Mention key management in the .qhelp + add a reference about key management. 2024-07-29 17:23:14 +01:00
Geoffrey White d66e407c3e Swift: Improve the encryption in examples for swift/cleartext-* queries. 2024-07-29 17:02:57 +01:00
Anders Schack-Mulligen c693f03462
Merge pull request #17070 from aschackmull/dataflow/pptype-refactor 
Dataflow: Replace `ppReprType` with `DataFlowType.toString`.
 2024-07-25 14:30:08 +02:00
Geoffrey White 245f43dd58
Merge pull request #17064 from geoffw0/swiftbobs 
Swift: Minor fixes
 2024-07-25 13:05:19 +01:00
Anders Schack-Mulligen 7a48fe1102 Dataflow: Replace ppReprType with DataFlowType.toString. 2024-07-25 13:08:47 +02:00
Geoffrey White d77d7c533b Swift: Change note. 2024-07-24 18:25:06 +01:00
Geoffrey White ecefa3e383 Swift: Fix a corrupted model. 2024-07-24 18:16:24 +01:00
Geoffrey White 44e33c7be7 Swift: Fill out the empty comment for SsaDefinitionNode (contents stolen from JS). 2024-07-24 17:51:12 +01:00
github-actions[bot] 49cc8f8ff8 Post-release preparation for codeql-cli-2.18.1 2024-07-22 22:00:48 +00:00
github-actions[bot] 368bcb684a Release preparation for version 2.18.1 2024-07-22 21:30:50 +00:00
Chuan-kai Lin 23320b6e5e
Revert "Release preparation for version 2.18.1" 2024-07-22 13:22:49 -07:00
github-actions[bot] 55935fc123 Release preparation for version 2.18.1 2024-07-22 14:56:15 +00:00
Geoffrey White 1ca0de9067 Swift: Autoformat. 2024-07-19 13:55:33 +01:00
Geoffrey White 68a21663d9 Merge branch 'main' into swiftssn 2024-07-19 13:49:40 +01:00
Michael Nebel ca4bd0c606 C#/Java/Go: Neutrals are split into seperate classes. 2024-07-18 16:29:38 +02:00
Geoffrey White 7029de5989 Swift: Attempt to speed up evaluation of the private information regex for Swift. 2024-07-17 15:43:30 +01:00
Anders Schack-Mulligen 0fb27fb6fc
Merge pull request #16979 from aschackmull/dataflow/internsets 
Dataflow: Replace MakeSets with QlBuiltins::InternSets.
 2024-07-16 10:47:07 +02:00
Mathias Vorreiter Pedersen 29e9c05f26 Merge branch 'main' into MathiasVP-patch-1 2024-07-15 13:27:42 +01:00
Anders Schack-Mulligen da5abc8321 Dataflow: Replace MakeSets with QlBuiltins::InternSets. 2024-07-15 13:35:57 +02:00
Geoffrey White f5bfdbf5ef Swift: Fix change note file. 2024-07-11 16:01:52 +01:00
Geoffrey White e5761d6524 Swift: Add GA change note. 2024-07-11 15:36:28 +01:00
github-actions[bot] ae3aba061b Post-release preparation for codeql-cli-2.18.0 2024-07-08 13:30:13 +00:00
github-actions[bot] b0d6778652 Release preparation for version 2.18.0 2024-07-08 09:10:51 +00:00
Tom Hvitved 4ae8720930 SSA: Add `BasicBlock.{getNode/1,length/0}` to the input signature 2024-07-03 11:32:35 +02:00
Arthur Baars b12b33c8f9 Merge remote-tracking branch 'upstream/main' into 'rc/3.14' 2024-06-28 19:50:35 +02:00
github-actions[bot] fd385736e6 Post-release preparation for codeql-cli-2.17.6 2024-06-25 06:39:45 +00:00
github-actions[bot] e32a587078 Release preparation for version 2.17.6 2024-06-24 14:33:10 +00:00
Anders Schack-Mulligen 8c23e21073 Dataflow: Cache compatibleTypes. 2024-06-24 13:35:48 +02:00
Max Schaefer 9ca74de3e9
Swift: Add missing bracket in example 2024-06-18 11:00:59 +01:00
Cornelius Riemenschneider 02100e58d9 Address review. 2024-06-13 21:55:56 +02:00
Cornelius Riemenschneider ede0b5bdf4 Merge remote-tracking branch 'origin/main' into criemen/codeql-pack-group 2024-06-13 21:53:31 +02:00
Geoffrey White cf4736c8f6
Merge pull request #16545 from geoffw0/salvage 
Swift: Salvage
 2024-06-11 17:51:17 +01:00
Geoffrey White 214db5c20d Swift: Make CI more happy. 2024-06-11 12:49:58 +01:00
Cornelius Riemenschneider 3cf719cb39 `pkg.bzl`: Significantly restructure `codeql_pack` rule. 
This PR introduces a `codeql_pack_rule` that does the heavy lifting
of extracting arch- and common zip files for production dist building.
It also factors out the installer targets for individual packs,
as well as pack groups.

This changes the contract between the internal build system and the pack
definition significantly, which is why an accompanying internal PR is required.
No backwards compatibility layer is provided, as the PR as complex enough as-is.

The individual `codeql_pack` rules are now much simpler,
as they mostly stuff their inputs into a new `_CodeQLPackInfo` provider,
and let the installer and `codeql_pack_group` rules do the heavy lifting.
For working in the external repo with self-contained packs,
the per-pack installer targets are still available.
Internally, we'll only use the new `codeql_pack_group` targets
going forward, both for defining intree-dists and for building
the production zip files.
 2024-06-11 13:15:05 +02:00
Geoffrey White ae0bf037ac Swift: Make CI happy. 2024-06-10 18:54:16 +01:00
Geoffrey White 2f33b9422b Merge branch 'main' into salvage 2024-06-10 18:31:46 +01:00
Geoffrey White 83860acdde Swift: Test BuiltinLiteralExpr. 2024-06-10 18:20:25 +01:00
Geoffrey White f2b1e09650 Swift: Add some conversion test cases. 2024-06-10 17:25:25 +01:00
github-actions[bot] 8a25081a0e Post-release preparation for codeql-cli-2.17.5 2024-06-10 15:33:08 +00:00
github-actions[bot] 877bfa2468 Release preparation for version 2.17.5 2024-06-10 13:40:39 +00:00
Paolo Tranquilli ac6cc38b20
Merge pull request #16681 from github/redsun82/ripunzip 
Ripunzip: provide installer
 2024-06-06 11:52:04 +02:00