github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
47 550 коммитов 1 541 ветка 130 Теги 483 MiB
Граф коммитов

47550 Коммитов

Автор SHA1 Сообщение Дата
erik-krogh 045e6ef148
remove unused environment variable 2022-11-30 09:59:20 +01:00
erik-krogh 3d0c9c4642
Merge branch 'main' into test-ci 2022-11-30 09:47:08 +01:00
Tony Torralba 594b7efb84
Merge pull request #11485 from github/workflow/coverage/update 
Update CSV framework coverage reports
 2022-11-30 09:16:05 +01:00
Paolo Tranquilli da5730706d
Merge pull request #11483 from github/redsun82/cache 
Swift: tentative fix for the bazel cache
 2022-11-30 08:25:39 +01:00
Tiferet Gazit e2e3667698
Merge pull request #11323 from github/tiferet/simplify-configs 
ATM: Simplify query configurations
 2022-11-29 17:39:11 -08:00
github-actions[bot] 13f4a0e284 Add changed framework coverage reports 2022-11-30 00:18:26 +00:00
tiferet c5184d37e7 Suggestion from code review: 
Name the query configuration e.g. `NosqlInjectionATMConfig` rather than `Configuration`.
 2022-11-29 15:46:05 -08:00
Harry Maclean 375403fb9d
Merge pull request #11114 from hmac/case-barrier-guard-3 
Ruby: Add case string comparison barrier guard
 2022-11-30 11:21:07 +13:00
tiferet 6f807e9d43 Doc suggestion from code review 2022-11-29 13:20:47 -08:00
tiferet 75cd7a9ebc Remove code duplication in query .ql files: 
Define the query for finding ATM alerts in the base class `AtmConfig`, and call it from each query's .ql file.
 2022-11-29 13:20:47 -08:00
tiferet a710b723d1 Move the definition of `isSink` to the base class: 
Holds if `sink` is a known taint sink or an "effective" sink.
 2022-11-29 13:20:47 -08:00
tiferet cd24ec88d6 Move the definition of `isSource` to the base class: 
A long as we're not boosting sources, `isSource` is identical to `isKnownSource`.
 2022-11-29 13:20:47 -08:00
tiferet 50291c7b7c `AtmConfig` inherits from `TaintTracking::Configuration`. 
That way the specific configs which inherit from `AtmConfig` also inherit from `TaintTracking::Configuration`.

This removes the need for two separate config classes for each query.
 2022-11-29 13:20:47 -08:00
tiferet 05a943c9b5 Delete `StandardEndpointFilters`. 
All remaining functionality in `StandardEndpointFilters` is only being used in `EndpointCharacteristics`, so it can be moved there as a small set of helper predicates.
 2022-11-29 13:20:47 -08:00
tiferet 5402f047bf Delete `CoreKnowledge`. 
All remaining functionality in `CoreKnowledge` is only being used in `EndpointCharacteristics`, so it can be moved there as a small set of helper predicates.
 2022-11-29 13:20:47 -08:00
Tiferet Gazit 2241252202
Merge pull request #11321 from github/tiferet/complexity-reduction 
ATM: Remove redundant code
 2022-11-29 13:17:55 -08:00
tiferet 1d4b2ccab4 Merge branch 'main' into tiferet/complexity-reduction 2022-11-29 12:47:18 -08:00
Tiferet Gazit f375b0cc1b
Merge pull request #11281 from github/tiferet/endpoint-filters 
ATM: Implement the current endpoint filters as EndpointCharacteristics
 2022-11-29 12:38:12 -08:00
Ian Lynagh 7eaef0cd3d
Merge pull request #11436 from igfoo/igfoo/NamingConventionsRefTypes 
Kotlin: Enable java/misnamed-type query
 2022-11-29 18:39:18 +00:00
Paolo Tranquilli 47702b9e14 Swift: tentative fix for the bazel cache 2022-11-29 18:16:33 +01:00
Paolo Tranquilli c779b8f711
Merge pull request #11479 from erik-krogh/swift-ignore-errors 
Swift: don't crash on non-existing cache
 2022-11-29 17:04:11 +01:00
Nora Dimitrijević e8fe0b0213
Merge pull request #11473 from github/d10c-preparedbupgrade-md 
Update docs/prepare-db-upgrade.md
 2022-11-29 15:27:58 +01:00
erik-krogh e5f1fe86e4
don't crash on non-existing cache in swift 2022-11-29 15:02:08 +01:00
Tom Hvitved 5bcb9b285a
Merge pull request #11142 from JarLob/const 
C#: Extend `Constant Condition` query with `String.IsNullOrEmpty`.
 2022-11-29 14:32:48 +01:00
Paolo Tranquilli d7313082c9
Merge pull request #11466 from github/redsun82/cache 
Swift: optimize bazel caching in CI
 2022-11-29 14:31:16 +01:00
Ian Lynagh 3b31b50983 Kotlin: Rename compilerGeneratedKind to compilerGeneratedKindOverride 2022-11-29 13:07:47 +00:00
Arthur Baars 442c4e9a4e
Merge pull request #11474 from github/aibaars-patch-2 
Ruby: fix upgrade script
 2022-11-29 13:45:06 +01:00
Tom Hvitved b075c55a60
Merge pull request #11449 from hvitved/csharp/autobuild-env-vars-integration-test 
C#: Add integration test that checks whether env vars are passed through autobuilder
 2022-11-29 13:43:15 +01:00
Arthur Baars 52cf27653f
Ruby: fix upgrade script 2022-11-29 13:12:14 +01:00
Paolo Tranquilli a3a68fe83d Tweak comment in `incremental-cache` action 2022-11-29 13:09:45 +01:00
Arthur Baars cf7ebe2fa8
Merge pull request #11471 from github/rc/3.8 
Merge rc/3.8 into main
 2022-11-29 12:57:34 +01:00
Michael Nebel bc6f0c1622
Merge pull request #11243 from michaelnebel/java/dataextensions 
Java: Use data extensions for MaD models.
 2022-11-29 12:43:26 +01:00
Nora Dimitrijević 1ee04dc020
Update prepare-db-upgrade.md 
Clarify the test steps based on my experience, where I got a "database may be too new" error when the `--search-path=<codeql-root>` directory was not specified.
 2022-11-29 12:36:51 +01:00
erik-krogh cd770e0906
Merge branch 'main' into test-ci 2022-11-29 12:17:05 +01:00
erik-krogh 7c1435b7c6
use withFileTypes in move-caches.js some more 2022-11-29 12:16:38 +01:00
Erik Krogh Kristensen 3cb31ef030
use `withFileTypes` in move-caches.js 
Co-authored-by: Arthur Baars <aibaars@github.com>
 2022-11-29 12:10:00 +01:00
Geoffrey White 3304e9f422
Merge pull request #11459 from geoffw0/constructor 
Swift: Constructor and destructor related cleanup
 2022-11-29 11:00:22 +00:00
Paolo Tranquilli 52a117aaf5 Swift: optimize bazel caching in CI 
Previously the cache would become stale. Now the same incremental
cache mechanism in use for the QL cache is adopted (and factored out
in a separate action).

Namely, pushes on main will populate the cache using the commit hash as
key, while PRs will try to use the cache of their merge base, read-only.

To avoid the cache growing out of control, a simple cache eviction is
done on pushes.
 2022-11-29 11:43:54 +01:00
Geoffrey White 63c139fdbe
Merge branch 'main' into constructor 2022-11-29 10:40:19 +00:00
AlexDenisov 0f87eb45db
Merge pull request #11470 from github/redsun82/swift-fix-ci 
Swift: revert `swift-actions/setup-swift`
 2022-11-29 11:39:08 +01:00
Paolo Tranquilli 9a25de3ef1 Swift: revert `swift-actions/setup-swift` 2022-11-29 11:17:08 +01:00
Mathias Vorreiter Pedersen 4233c91a7e
Merge pull request #11469 from atorralba/atorralba/swift/fix-local-taint 
Swift: Fix local taint
 2022-11-29 10:00:12 +00:00
erik-krogh 915d680fcc
use a node script instead of bash to move the compilation cache 2022-11-29 10:41:08 +01:00
erik-krogh 67e9841bf3
place the compilation cache in the temp dir 2022-11-29 10:40:54 +01:00
Tony Torralba 0e59257442 Fix local taint steps 
Local taint should include local flow and simple summaries through library code
 2022-11-29 10:36:56 +01:00
Tom Hvitved f3dca95958
Merge pull request #11087 from hvitved/dataflow/summary-ctx 
Data flow: Add summary/return context to pruning stages 2-4
 2022-11-29 10:36:53 +01:00
Geoffrey White c3dc9672f7
Merge branch 'main' into constructor 2022-11-29 09:30:03 +00:00
Geoffrey White e0c8a8ecff
Merge pull request #11458 from geoffw0/simplify 
Swift: Simplify some QL.
 2022-11-29 09:29:12 +00:00
Felicity Chapman 5898615f5a
Merge pull request #11420 from github/felicitymay-8441-query-guides-java 
LGTM deprecation: updates to CodeQL for Java articles
 2022-11-29 09:23:21 +00:00
Felicity Chapman 9780990836
Merge pull request #11433 from github/8441-general-changes 
LGTM deprecation: miscellaneous changes
 2022-11-29 09:06:31 +00:00