codeql

Граф коммитов

Автор	SHA1	Сообщение	Дата
Erik Krogh Kristensen	90382c4d1c	Merge pull request #11178 from erik-krogh/passcode JS/RB/PY: Recognize `passcode` as sensitive	2022-11-10 17:58:34 +01:00
Erik Krogh Kristensen	724a31b746	fix comment that wasn't updated in test Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2022-11-10 15:56:44 +01:00
Michael Nebel	9c6875ec0f	Merge pull request #10777 from michaelnebel/csharp/generatedataextensions C#: Generate data extension files	2022-11-10 13:08:31 +01:00
Asger F	83291f378b	Merge pull request #11157 from asgerf/js/yaml-locations JS: fix issue with zero-column yaml locations	2022-11-09 15:57:54 +01:00
Erik Krogh Kristensen	c537c80ed6	Merge pull request #11095 from erik-krogh/exportRead JS: recognize more re-exported values as exported	2022-11-09 12:39:41 +01:00
erik-krogh	23add8a72b	recognize `passcode` as sensitive	2022-11-09 11:30:57 +01:00
erik-krogh	e0bcfe2afb	add failing test	2022-11-09 11:30:31 +01:00
Erik Krogh Kristensen	138a16f0b3	use `getImportedModuleNode()` Co-authored-by: Asger F <asgerf@github.com>	2022-11-09 09:53:23 +01:00
Asger F	694d987365	JS: Update test output	2022-11-09 09:36:03 +01:00
Erik Krogh Kristensen	e01cbb2ffa	Merge pull request #10378 from erik-krogh/aliasFlow JS: expand localFieldStep to use access-paths, and build access-paths in more cases	2022-11-08 14:26:12 +01:00
Asger F	69f5879384	JS: Update TRAP test output	2022-11-08 13:02:26 +01:00
Asger F	44e94f6615	JS: Change note	2022-11-08 11:51:26 +01:00
Asger F	fef922e417	JS: Bump extractor version string	2022-11-08 11:44:40 +01:00
Asger F	92e8f059c8	JS: Avoid emitting column zero in yaml files	2022-11-08 11:38:26 +01:00
Asger F	a887ff4f09	JS: Add test cases to include results with column-zero end locations	2022-11-07 15:13:25 +01:00
Stephan Brandauer	577f1a588b	Merge pull request #11143 from github/codeql-ci/atm/release-0.4.0 JS: Bump version numbers of ML-powered packs after 0.4.0 release	2022-11-07 15:03:24 +01:00
Erik Krogh Kristensen	d67235b3c1	Merge pull request #11071 from erik-krogh/fixCanon ReDoS: fix canonicalization in NfaUtils	2022-11-07 14:10:50 +01:00
github-actions[bot]	69df9f9daa	JS: Bump version of ML-powered library and query packs to 0.4.1	2022-11-07 13:06:46 +00:00
github-actions[bot]	82277d8f56	JS: Bump minor version of ML-powered library and query packs	2022-11-07 13:00:28 +00:00
github-actions[bot]	268a990aa6	JS: Bump version of ML-powered model pack to 0.3.1	2022-11-07 13:00:28 +00:00
github-actions[bot]	a1e0bf022e	ATM: Update model pack dependency of ML-powered model building and query packs	2022-11-07 13:00:27 +00:00
github-actions[bot]	be808deb59	JS: Bump minor version of ML-powered model pack	2022-11-07 12:59:44 +00:00
erik-krogh	fc38bf0429	Merge branch 'main' into aliasFlow	2022-11-07 09:46:48 +01:00
Dave Bartolomeo	b8e1aa67d8	Merge pull request #11134 from github/post-release-prep/codeql-cli-2.11.3 Post-release preparation for codeql-cli-2.11.3	2022-11-05 13:54:49 -04:00
github-actions[bot]	fca754bddd	Post-release preparation for codeql-cli-2.11.3	2022-11-05 14:30:48 +00:00
Dave Bartolomeo	013b7eff1c	Apply suggestions from code review Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>	2022-11-04 18:46:32 -04:00
github-actions[bot]	508327235a	Release preparation for version 2.11.3	2022-11-04 20:16:23 +00:00
tiferet	833041c62e	Fix QLDoc style errors	2022-11-04 09:30:31 -07:00
tiferet	2aa4651534	Remove predicates not yet used from the current PR	2022-11-04 09:30:31 -07:00
tiferet	74c8bfff4f	Minor changes from code review	2022-11-04 09:30:31 -07:00
tiferet	e60c016fc6	Format fixes	2022-11-04 09:30:31 -07:00
tiferet	cbf81b8839	Improve the import structure	2022-11-04 09:30:31 -07:00
tiferet	300456cd3e	Enforce the abstraction over characteristics: Make the implementations of specific `EndpointCharacteristic`s private.	2022-11-04 09:30:31 -07:00
tiferet	c0cc754fb5	Rename ClassificationReasons Change the name to EndpointCharacteristics.	2022-11-04 09:30:30 -07:00
tiferet	a4939b91e7	Generalize the definition of a known sink: If the list of reasons includes positive indicators with maximal confidence for this class, it's a known sink for the class. This negates the need for each query config to define the isKnownSink predicate individually.	2022-11-04 09:30:29 -07:00
tiferet	08bbe596a2	Create the sink ClassificationReasons Write the reasons that indicate that an endpoint is a sink for each sink type. Also fix import error.	2022-11-04 09:30:29 -07:00
Henry Mercer	3e863a539a	ATM: Fix CodeQL pack workspace references This fixes the [ATM PR checks](https://github.com/github/codeql/actions/runs/3392995797/jobs/5639827326) breaking on main as a result of https://github.com/github/codeql/pull/11004.	2022-11-04 14:03:34 +00:00
Erik Krogh Kristensen	c82d8cbacc	Merge pull request #11013 from erik-krogh/sndCmd JS: second-order-command-injection	2022-11-04 10:58:50 +01:00
Michael Nebel	3c8fb0520e	C#: Sync files.	2022-11-04 08:20:53 +01:00
Erik Krogh Kristensen	1f51bd4594	add dash in description Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>	2022-11-03 16:24:59 +01:00
erik-krogh	96ec54e5be	fix minor issues in qhelp	2022-11-03 14:01:58 +01:00
erik-krogh	b5666888b1	rewrite @description of second-order-command-injection	2022-11-03 14:00:29 +01:00
erik-krogh	655b4a4d17	recognize more re-exported values as exported	2022-11-03 11:08:00 +01:00
erik-krogh	94e864e933	add failing test	2022-11-03 11:04:04 +01:00
Dave Bartolomeo	15be488c53	Fix typo	2022-11-02 12:40:55 -04:00
Dave Bartolomeo	7cad4b7918	Revert changes to ATM, which isn't in the workspace	2022-11-02 12:37:30 -04:00
erik-krogh	15416a9c86	fix getCanonicalCharClass in NfaUtils	2022-11-01 21:35:07 +01:00
erik-krogh	78e35e2f29	add failing test	2022-11-01 21:33:19 +01:00
Dave Bartolomeo	9d5e5e3ee7	`${workspace}` all the things	2022-11-01 13:29:05 -04:00
Dave Bartolomeo	49c4c554c4	Merge from `main`	2022-11-01 13:22:40 -04:00

1 2 3 4 5 ...

8260 Коммитов