Граф коммитов

1879 Коммитов

Автор SHA1 Сообщение Дата
Geoffrey White 02a060fbfa CPP: Add a test. 2018-12-07 18:21:48 +00:00
calumgrant 67d4099e3f
Merge pull request #593 from hvitved/csharp/nullness
C#: Rewrite nullness queries
2018-12-07 15:57:27 +00:00
Geoffrey White 91578258f7
Merge pull request #595 from jf205/qhelp-guide
Query help style-guide
2018-12-07 15:38:58 +00:00
Tom Hvitved 2a30dee8df
Merge pull request #621 from calumgrant/cs/invalid-key
C#: Fix [INVALID_KEY] error
2018-12-07 11:24:45 +01:00
Tom Hvitved fce805834e C#: Address review comments 2018-12-07 09:40:49 +01:00
semmle-qlci 9e73ed71b9
Merge pull request #623 from esben-semmle/js/incomplete-url-sanitization
Approved by mc-semmle
2018-12-06 20:46:37 +00:00
yh-semmle c2116f0d91
Merge pull request #560 from aschackmull/java/normalize-parentheses
Java: Normalize parentheses.
2018-12-06 12:38:26 -05:00
Esben Sparre Andreasen 4f53411397 JS: recognize HTTP URLs in js/incomplete-url-sanitization 2018-12-06 15:53:20 +01:00
Esben Sparre Andreasen 56fb63adbc JS: change notes for js/incomplete-url-substring-sanitization 2018-12-06 15:53:20 +01:00
Esben Sparre Andreasen 229eea00dc JS: add query js/incomplete-url-substring-sanitization 2018-12-06 15:53:20 +01:00
semmle-qlci 3397533045
Merge pull request #628 from xiemaisi/js/setUnsafeHTML
Approved by esben-semmle
2018-12-06 13:58:52 +00:00
Jonas Jensen 0a496c1d3d
Merge pull request #617 from geoffw0/unusedstatic
CPP: Fix false positives in UnusedStaticVariables.ql
2018-12-06 14:09:52 +01:00
Max Schaefer ef347b3870 JavaScript: Teach Xss query about WinJS HTML injection functions. 2018-12-06 09:13:21 +00:00
Max Schaefer 75842fec1c
Merge pull request #627 from samlanning/inconsistentStateExample
JS: Fix syntax error in js/react/inconsistent-state-update example
2018-12-06 08:03:32 +00:00
Sam Lanning 2ea148016c JS: Fix syntax error in js/react/inconsistent-state-update example 2018-12-05 16:44:40 -08:00
calum 919d7cbf01 C#: Fix [INVALID_KEY] errors. 2018-12-05 13:55:55 +00:00
Geoffrey White f6a87574f0 CPP: Add query ID to change note. 2018-12-05 13:55:46 +00:00
Geoffrey White d0a0d2300e CPP: Change note. 2018-12-05 10:03:21 +00:00
Geoffrey White d85f4b540c CPP: Fix false positive. 2018-12-05 10:01:54 +00:00
Geoffrey White e7f19e97cb CPP: Add a test of UnusedStaticVariable.ql. 2018-12-05 10:01:54 +00:00
Max Schaefer 3c00d4be6d
Merge pull request #607 from esben-semmle/js/more-react-methods
JS: model additional React component methods
2018-12-05 08:00:16 +00:00
yh-semmle 00779c518c
Merge pull request #611 from aschackmull/java/usessl-fp-fix
Java: Fix FP in `UseSSL.ql`.
2018-12-04 19:31:53 -05:00
Esben Sparre Andreasen d63d838534 JS: add regression test for ODASA-7506 2018-12-04 22:22:46 +01:00
Anders Schack-Mulligen d3fcfb0957 Java: Fix FP in UseSSL. 2018-12-04 17:44:05 +01:00
semmle-qlci d05b11f00d
Merge pull request #587 from asger-semmle/incorrect-suffix-check
Approved by mc-semmle, xiemaisi
2018-12-04 16:18:42 +00:00
yh-semmle 0ba7633e4d
Merge pull request #553 from aschackmull/java/double-checked-locking
Java: Add two double-checked-locking queries.
2018-12-04 10:23:46 -05:00
Tom Hvitved 3bb3de23ce C#: Update change note 2018-12-04 16:08:41 +01:00
james bdda3ae477 fix typo 2018-12-04 14:01:11 +00:00
james 26f030045a address anders' feedback 2018-12-04 11:07:17 +00:00
Asger F 7121a18eba JS: address comments 2018-12-04 10:40:43 +00:00
Esben Sparre Andreasen b418968efb JS: add change note for improved React model 2018-12-04 10:55:24 +01:00
Esben Sparre Andreasen 679db191f5 JS: move shared conjunct up 2018-12-04 10:55:24 +01:00
Esben Sparre Andreasen a342fa36c6 JS: support React getSnapshotBeforeUpdate 2018-12-04 10:48:35 +01:00
Esben Sparre Andreasen 67b1487384 JS: support React shouldComponentUpdate 2018-12-04 10:48:35 +01:00
Esben Sparre Andreasen 417dac7ad6 JS: support React getDerivedStateFromProps 2018-12-04 10:48:35 +01:00
Esben Sparre Andreasen 9ff3d2ef1f JS: introduce ReactComponent::getStaticMethod 2018-12-04 10:48:35 +01:00
Esben Sparre Andreasen 0d62191d84 JS: add more React tests 2018-12-04 10:48:35 +01:00
Anders Schack-Mulligen e836fa7512 Java: Update metadata. 2018-12-04 10:12:56 +01:00
Jonas Jensen b80cf30cee
Merge pull request #562 from geoffw0/cpp-308
CPP: Fix FPs for 'Resource not released in destructor' involving virtual method calls
2018-12-03 15:57:11 +01:00
Tom Hvitved 4739a6334e C#: Fix a bug and generalize guards implication logic 2018-12-03 15:33:00 +01:00
semmle-qlci b58c263fd0
Merge pull request #602 from esben-semmle/js/additional-route-handlers-from-context
Approved by xiemaisi
2018-12-03 14:31:10 +00:00
Geoffrey White d8c7537557 CPP: * -> + 2018-12-03 13:11:52 +00:00
Geoffrey White dfbccc4bcf CPP: Additional test cases. 2018-12-03 13:11:52 +00:00
calumgrant 43d14ce011
Merge pull request #586 from hvitved/csharp/cfg/field-split
C#: Handle multiple-field Boolean CFG splitting
2018-12-03 12:52:43 +00:00
Asger F 1130d0c6f9 JS: add comment about arrays 2018-12-03 11:23:02 +00:00
Asger F 374f7ab65d JS: address comments 2018-12-03 11:23:02 +00:00
Asger F c4d7672ea7 JS: fix typo in method name 2018-12-03 11:23:02 +00:00
Asger F 0462eb4b50 JS: add IncorrectSuffixCheck query 2018-12-03 11:23:02 +00:00
Esben Sparre Andreasen 2cc235d61b
Merge pull request #556 from xiemaisi/js/invalid-entity-transcoding
JavaScript: Add new query `InvalidEntityTranscoding`.
2018-12-03 10:31:41 +01:00
Esben Sparre Andreasen 104eafec2f JS: cleanup for all `HTTP::RouteHandlerCandidate`s 2018-12-03 10:13:08 +01:00