Geoffrey White
|
02a060fbfa
|
CPP: Add a test.
|
2018-12-07 18:21:48 +00:00 |
calumgrant
|
67d4099e3f
|
Merge pull request #593 from hvitved/csharp/nullness
C#: Rewrite nullness queries
|
2018-12-07 15:57:27 +00:00 |
Geoffrey White
|
91578258f7
|
Merge pull request #595 from jf205/qhelp-guide
Query help style-guide
|
2018-12-07 15:38:58 +00:00 |
Tom Hvitved
|
2a30dee8df
|
Merge pull request #621 from calumgrant/cs/invalid-key
C#: Fix [INVALID_KEY] error
|
2018-12-07 11:24:45 +01:00 |
Tom Hvitved
|
fce805834e
|
C#: Address review comments
|
2018-12-07 09:40:49 +01:00 |
semmle-qlci
|
9e73ed71b9
|
Merge pull request #623 from esben-semmle/js/incomplete-url-sanitization
Approved by mc-semmle
|
2018-12-06 20:46:37 +00:00 |
yh-semmle
|
c2116f0d91
|
Merge pull request #560 from aschackmull/java/normalize-parentheses
Java: Normalize parentheses.
|
2018-12-06 12:38:26 -05:00 |
Esben Sparre Andreasen
|
4f53411397
|
JS: recognize HTTP URLs in js/incomplete-url-sanitization
|
2018-12-06 15:53:20 +01:00 |
Esben Sparre Andreasen
|
56fb63adbc
|
JS: change notes for js/incomplete-url-substring-sanitization
|
2018-12-06 15:53:20 +01:00 |
Esben Sparre Andreasen
|
229eea00dc
|
JS: add query js/incomplete-url-substring-sanitization
|
2018-12-06 15:53:20 +01:00 |
semmle-qlci
|
3397533045
|
Merge pull request #628 from xiemaisi/js/setUnsafeHTML
Approved by esben-semmle
|
2018-12-06 13:58:52 +00:00 |
Jonas Jensen
|
0a496c1d3d
|
Merge pull request #617 from geoffw0/unusedstatic
CPP: Fix false positives in UnusedStaticVariables.ql
|
2018-12-06 14:09:52 +01:00 |
Max Schaefer
|
ef347b3870
|
JavaScript: Teach Xss query about WinJS HTML injection functions.
|
2018-12-06 09:13:21 +00:00 |
Max Schaefer
|
75842fec1c
|
Merge pull request #627 from samlanning/inconsistentStateExample
JS: Fix syntax error in js/react/inconsistent-state-update example
|
2018-12-06 08:03:32 +00:00 |
Sam Lanning
|
2ea148016c
|
JS: Fix syntax error in js/react/inconsistent-state-update example
|
2018-12-05 16:44:40 -08:00 |
calum
|
919d7cbf01
|
C#: Fix [INVALID_KEY] errors.
|
2018-12-05 13:55:55 +00:00 |
Geoffrey White
|
f6a87574f0
|
CPP: Add query ID to change note.
|
2018-12-05 13:55:46 +00:00 |
Geoffrey White
|
d0a0d2300e
|
CPP: Change note.
|
2018-12-05 10:03:21 +00:00 |
Geoffrey White
|
d85f4b540c
|
CPP: Fix false positive.
|
2018-12-05 10:01:54 +00:00 |
Geoffrey White
|
e7f19e97cb
|
CPP: Add a test of UnusedStaticVariable.ql.
|
2018-12-05 10:01:54 +00:00 |
Max Schaefer
|
3c00d4be6d
|
Merge pull request #607 from esben-semmle/js/more-react-methods
JS: model additional React component methods
|
2018-12-05 08:00:16 +00:00 |
yh-semmle
|
00779c518c
|
Merge pull request #611 from aschackmull/java/usessl-fp-fix
Java: Fix FP in `UseSSL.ql`.
|
2018-12-04 19:31:53 -05:00 |
Esben Sparre Andreasen
|
d63d838534
|
JS: add regression test for ODASA-7506
|
2018-12-04 22:22:46 +01:00 |
Anders Schack-Mulligen
|
d3fcfb0957
|
Java: Fix FP in UseSSL.
|
2018-12-04 17:44:05 +01:00 |
semmle-qlci
|
d05b11f00d
|
Merge pull request #587 from asger-semmle/incorrect-suffix-check
Approved by mc-semmle, xiemaisi
|
2018-12-04 16:18:42 +00:00 |
yh-semmle
|
0ba7633e4d
|
Merge pull request #553 from aschackmull/java/double-checked-locking
Java: Add two double-checked-locking queries.
|
2018-12-04 10:23:46 -05:00 |
Tom Hvitved
|
3bb3de23ce
|
C#: Update change note
|
2018-12-04 16:08:41 +01:00 |
james
|
bdda3ae477
|
fix typo
|
2018-12-04 14:01:11 +00:00 |
james
|
26f030045a
|
address anders' feedback
|
2018-12-04 11:07:17 +00:00 |
Asger F
|
7121a18eba
|
JS: address comments
|
2018-12-04 10:40:43 +00:00 |
Esben Sparre Andreasen
|
b418968efb
|
JS: add change note for improved React model
|
2018-12-04 10:55:24 +01:00 |
Esben Sparre Andreasen
|
679db191f5
|
JS: move shared conjunct up
|
2018-12-04 10:55:24 +01:00 |
Esben Sparre Andreasen
|
a342fa36c6
|
JS: support React getSnapshotBeforeUpdate
|
2018-12-04 10:48:35 +01:00 |
Esben Sparre Andreasen
|
67b1487384
|
JS: support React shouldComponentUpdate
|
2018-12-04 10:48:35 +01:00 |
Esben Sparre Andreasen
|
417dac7ad6
|
JS: support React getDerivedStateFromProps
|
2018-12-04 10:48:35 +01:00 |
Esben Sparre Andreasen
|
9ff3d2ef1f
|
JS: introduce ReactComponent::getStaticMethod
|
2018-12-04 10:48:35 +01:00 |
Esben Sparre Andreasen
|
0d62191d84
|
JS: add more React tests
|
2018-12-04 10:48:35 +01:00 |
Anders Schack-Mulligen
|
e836fa7512
|
Java: Update metadata.
|
2018-12-04 10:12:56 +01:00 |
Jonas Jensen
|
b80cf30cee
|
Merge pull request #562 from geoffw0/cpp-308
CPP: Fix FPs for 'Resource not released in destructor' involving virtual method calls
|
2018-12-03 15:57:11 +01:00 |
Tom Hvitved
|
4739a6334e
|
C#: Fix a bug and generalize guards implication logic
|
2018-12-03 15:33:00 +01:00 |
semmle-qlci
|
b58c263fd0
|
Merge pull request #602 from esben-semmle/js/additional-route-handlers-from-context
Approved by xiemaisi
|
2018-12-03 14:31:10 +00:00 |
Geoffrey White
|
d8c7537557
|
CPP: * -> +
|
2018-12-03 13:11:52 +00:00 |
Geoffrey White
|
dfbccc4bcf
|
CPP: Additional test cases.
|
2018-12-03 13:11:52 +00:00 |
calumgrant
|
43d14ce011
|
Merge pull request #586 from hvitved/csharp/cfg/field-split
C#: Handle multiple-field Boolean CFG splitting
|
2018-12-03 12:52:43 +00:00 |
Asger F
|
1130d0c6f9
|
JS: add comment about arrays
|
2018-12-03 11:23:02 +00:00 |
Asger F
|
374f7ab65d
|
JS: address comments
|
2018-12-03 11:23:02 +00:00 |
Asger F
|
c4d7672ea7
|
JS: fix typo in method name
|
2018-12-03 11:23:02 +00:00 |
Asger F
|
0462eb4b50
|
JS: add IncorrectSuffixCheck query
|
2018-12-03 11:23:02 +00:00 |
Esben Sparre Andreasen
|
2cc235d61b
|
Merge pull request #556 from xiemaisi/js/invalid-entity-transcoding
JavaScript: Add new query `InvalidEntityTranscoding`.
|
2018-12-03 10:31:41 +01:00 |
Esben Sparre Andreasen
|
104eafec2f
|
JS: cleanup for all `HTTP::RouteHandlerCandidate`s
|
2018-12-03 10:13:08 +01:00 |