github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
47 603 коммитов 1 541 ветка 130 Теги 483 MiB
Граф коммитов

47603 Коммитов

Автор SHA1 Сообщение Дата
Alex Denisov 0bfe502bb0 Swift: remove patches from the extractor 
Moved elsewhere https://github.com/dsp-testing/codeql-swift-artifacts/pull/3
 2022-11-30 15:36:09 +01:00
Owen Mansel-Chan 45e2a13c37
Merge pull request #11494 from owen-mc/dataflow/some-trivial-fixes 
Dataflow: some trivial fixes
 2022-11-30 13:59:41 +00:00
Anders Schack-Mulligen 1ce28540fb
Merge pull request #11495 from intrigus-lgtm/patch-7 
Docs: Add missing `language[monotonicAggregates]` annotation
 2022-11-30 14:58:44 +01:00
Paolo Tranquilli b4e3554af7
Merge pull request #11370 from github/alexdenisov/swift-5.7.1 
Swift: upgrade to Swift 5.7.1
 2022-11-30 14:23:12 +01:00
intrigus-lgtm 4e7e70f981
Docs: Add missing `language[monotonicAggregates]` annotation 
This adds the `language[monotonicAggregates]` annotation so that the example compiles.
 2022-11-30 13:12:06 +01:00
Alex Denisov fe0ae6bf0b Swift: add 5.7.1 migration scripts 2022-11-30 12:52:26 +01:00
Alex Denisov ad663533c7 Swift: bump setup Swift action 2022-11-30 12:40:42 +01:00
Alex Denisov 67fb56deb8 Swift: workaround an internal crash coming from Swift 5.7.1 2022-11-30 12:40:42 +01:00
Alex Denisov f618d53302 Swift: add new implicit conversion 2022-11-30 12:40:34 +01:00
Alex Denisov 90d471b486 Swift: upgrade to Swift 5.7.1 2022-11-30 12:40:27 +01:00
Mathias Vorreiter Pedersen d53d275bba
Merge pull request #11450 from d10c/swift/missing-enum-cases 
Swift: extract missing cases of `AccessorKind` and `AccessSemantics` enums
 2022-11-30 11:18:52 +00:00
Owen Mansel-Chan 75940dc8b1
Remove @codeql-go from code owners for dataflow 2022-11-30 11:16:53 +00:00
Owen Mansel-Chan 635c202ced
Use `ArgumentPosition` instead of `int` 
This matches what all of the other languages do.
 2022-11-30 11:16:52 +00:00
Owen Mansel-Chan 55c4643b20
Dataflow: Sync. 2022-11-30 11:00:07 +00:00
Anders Schack-Mulligen 3d04b267ef
Merge pull request #11492 from aschackmull/shared/util 
Shared: Add Util qlpack.
 2022-11-30 11:56:34 +01:00
Paolo Tranquilli 2f4cf592a7
Merge pull request #11490 from github/redsun82/cache 
CI: add workaround for nested composite actions issue
 2022-11-30 11:55:46 +01:00
Owen Mansel-Chan ce8a20cfd1
Fix variable name (`source` should be `sink`) 2022-11-30 10:51:59 +00:00
Anders Schack-Mulligen 758cb8b412 Shared: Fix trailing and non-ascii whitespace. 2022-11-30 11:14:43 +01:00
Owen Mansel-Chan ab276fc5d8
Merge pull request #11481 from owen-mc/dataflow/sync-go-libraries-2 
Sync go libraries
 2022-11-30 10:02:43 +00:00
Anders Schack-Mulligen ba56565125
Update shared/util/codeql/util/Option.qll 
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
 2022-11-30 10:55:07 +01:00
Paolo Tranquilli e12e86b520 Restore previous cache key 
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
 2022-11-30 10:47:29 +01:00
Paolo Tranquilli d165c4963d CI: add workaround for nested composite actions issue 
Because of https://github.com/actions/runner/issues/2009 the deeply
nested action cache was failing to save the cache in the post run phase.

For the moment we just avoid the nesting with a copy-pasted action
snippet.
 2022-11-30 10:47:29 +01:00
Paolo Tranquilli 22eb619235
Merge pull request #11467 from erik-krogh/test-ci 
CI: fix moving the compilation cache
 2022-11-30 10:47:07 +01:00
Anders Schack-Mulligen 71f5c8aa88 Shared: Add Util qlpack. 2022-11-30 10:43:33 +01:00
erik-krogh 045e6ef148
remove unused environment variable 2022-11-30 09:59:20 +01:00
erik-krogh 3d0c9c4642
Merge branch 'main' into test-ci 2022-11-30 09:47:08 +01:00
Tony Torralba 594b7efb84
Merge pull request #11485 from github/workflow/coverage/update 
Update CSV framework coverage reports
 2022-11-30 09:16:05 +01:00
Paolo Tranquilli da5730706d
Merge pull request #11483 from github/redsun82/cache 
Swift: tentative fix for the bazel cache
 2022-11-30 08:25:39 +01:00
Tiferet Gazit e2e3667698
Merge pull request #11323 from github/tiferet/simplify-configs 
ATM: Simplify query configurations
 2022-11-29 17:39:11 -08:00
github-actions[bot] 13f4a0e284 Add changed framework coverage reports 2022-11-30 00:18:26 +00:00
tiferet c5184d37e7 Suggestion from code review: 
Name the query configuration e.g. `NosqlInjectionATMConfig` rather than `Configuration`.
 2022-11-29 15:46:05 -08:00
Harry Maclean 375403fb9d
Merge pull request #11114 from hmac/case-barrier-guard-3 
Ruby: Add case string comparison barrier guard
 2022-11-30 11:21:07 +13:00
tiferet 6f807e9d43 Doc suggestion from code review 2022-11-29 13:20:47 -08:00
tiferet 75cd7a9ebc Remove code duplication in query .ql files: 
Define the query for finding ATM alerts in the base class `AtmConfig`, and call it from each query's .ql file.
 2022-11-29 13:20:47 -08:00
tiferet a710b723d1 Move the definition of `isSink` to the base class: 
Holds if `sink` is a known taint sink or an "effective" sink.
 2022-11-29 13:20:47 -08:00
tiferet cd24ec88d6 Move the definition of `isSource` to the base class: 
A long as we're not boosting sources, `isSource` is identical to `isKnownSource`.
 2022-11-29 13:20:47 -08:00
tiferet 50291c7b7c `AtmConfig` inherits from `TaintTracking::Configuration`. 
That way the specific configs which inherit from `AtmConfig` also inherit from `TaintTracking::Configuration`.

This removes the need for two separate config classes for each query.
 2022-11-29 13:20:47 -08:00
tiferet 05a943c9b5 Delete `StandardEndpointFilters`. 
All remaining functionality in `StandardEndpointFilters` is only being used in `EndpointCharacteristics`, so it can be moved there as a small set of helper predicates.
 2022-11-29 13:20:47 -08:00
tiferet 5402f047bf Delete `CoreKnowledge`. 
All remaining functionality in `CoreKnowledge` is only being used in `EndpointCharacteristics`, so it can be moved there as a small set of helper predicates.
 2022-11-29 13:20:47 -08:00
Tiferet Gazit 2241252202
Merge pull request #11321 from github/tiferet/complexity-reduction 
ATM: Remove redundant code
 2022-11-29 13:17:55 -08:00
tiferet 1d4b2ccab4 Merge branch 'main' into tiferet/complexity-reduction 2022-11-29 12:47:18 -08:00
Tiferet Gazit f375b0cc1b
Merge pull request #11281 from github/tiferet/endpoint-filters 
ATM: Implement the current endpoint filters as EndpointCharacteristics
 2022-11-29 12:38:12 -08:00
Nora Dimitrijević 91edeacb9f Swift: update .expected test files 2022-11-29 19:39:48 +01:00
Ian Lynagh 7eaef0cd3d
Merge pull request #11436 from igfoo/igfoo/NamingConventionsRefTypes 
Kotlin: Enable java/misnamed-type query
 2022-11-29 18:39:18 +00:00
Paolo Tranquilli 47702b9e14 Swift: tentative fix for the bazel cache 2022-11-29 18:16:33 +01:00
Owen Mansel-Chan 083a3bae6e
Correct headings in identical-files.json 2022-11-29 16:15:01 +00:00
Owen Mansel-Chan 5c5ec8f66a
Add go files to identical-files.json 2022-11-29 16:15:01 +00:00
Owen Mansel-Chan 1731d39119
Remove sync-dataflow-libraries from go makefile 2022-11-29 16:15:01 +00:00
Owen Mansel-Chan 818f02826c
Update shared library files for go to f3dca95 2022-11-29 16:15:01 +00:00
Owen Mansel-Chan d9f8420c86
Update shared library files for go to PR #11183 
Merge commit: 94bca43
 2022-11-29 16:15:00 +00:00