github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
8 703 коммитов 1 541 ветка 130 Теги 483 MiB
Граф коммитов

8703 Коммитов

Автор SHA1 Сообщение Дата
Asger F 9ecab1b5d5 JS: Port unanchored RegExp query but for hostnames only 2019-11-15 09:27:20 +00:00
Asger F e5f2f9e43e JS: Do not flag semi-anchored regexps in .replace() 2019-11-15 09:27:20 +00:00
Asger F cae09a447b JS: Update test case 2019-11-15 09:27:20 +00:00
Asger F 3e37950170 JS: Whitelist one more FP case 2019-11-15 09:27:20 +00:00
Asger F 2b151cd587 JS: Include anchor direction in message 2019-11-15 09:27:20 +00:00
Asger F 3e952cf564 JS: Restrict semi-anchored regex query more 2019-11-15 09:27:19 +00:00
Asger F 0726bd8cac JS: Add double semi-anchored test case 2019-11-15 09:27:19 +00:00
Asger F 9fa9729470 JS: Shift line numbers in SemiAnchoredRegExp testcase 2019-11-15 09:27:19 +00:00
Asger F 8bc89ee254 JS: Update semi-anchored regex query 2019-11-15 09:27:19 +00:00
Asger F c21d095d38 JS: Restrict RegExp queries to actual regular expressions 2019-11-15 09:27:19 +00:00
Asger F b8711fc642 JS: Extend RegExpTerm in ReDoS 2019-11-15 09:27:19 +00:00
Asger F b6c1c174a9 JS: Deabstractify RegExpTerm classes 2019-11-15 09:27:19 +00:00
Asger F e0bdc777b9 JS: Make ReDoS check string-based regexes 2019-11-15 09:27:19 +00:00
Asger F 97e5da1046 JS: Update ReDoS query 2019-11-15 09:27:19 +00:00
Asger F 57de6382cd JS: Update QL API 2019-11-15 09:27:19 +00:00
Asger F d3302c39c0 JS: Fix offsets in regexes parsed from strings with escapes 2019-11-15 09:27:19 +00:00
Asger F 2901b5e8bd JS: Add OffsetTranslation table (preserving behavior) 2019-11-15 09:27:19 +00:00
Asger F c327ee5d4f JS: Update TRAP 2019-11-15 09:27:19 +00:00
Asger F 591fffc5cc JS: Add test case for wide constants in char class 2019-11-15 09:27:19 +00:00
Asger F 68d23bcf8c JS: Extract surrogate pairs as one constant node 2019-11-15 09:27:19 +00:00
Asger F 6e1c995f2f JS: Merge consecutive constants in RegExps 2019-11-15 09:27:19 +00:00
Asger F 0e1246c0e5 JS: Extract RegExp ASTs from string literals 2019-11-15 09:27:18 +00:00
Asger F 0cf191f70d JS: Bump extractor version string 2019-11-15 09:27:18 +00:00
Jonas Jensen 73d9cc2e7b
Merge pull request #2309 from geoffw0/cpp418 
CPP: QLDoc enhancements
 2019-11-15 08:46:08 +01:00
Esben Sparre Andreasen 8e6a19b3d3 JS: add DefaultParsedCommandLineArgumentsAsSource 2019-11-15 08:42:02 +01:00
Tom Hvitved 74b464ded9
Merge pull request #2321 from calumgrant/cs/netcore-3.0b 
C#: Upgrade extractor to .NET Core 3.0
 2019-11-15 06:21:17 +01:00
Robert Marsh 562f62879f C++: rename variables in PointerOverflow examples 2019-11-14 15:21:26 -08:00
Robert Marsh c6d848caf9 C++: simplify PointerOverflow.qhelp 2019-11-14 15:11:39 -08:00
Dave Bartolomeo 81262d5948
Merge pull request #2328 from geoffw0/routinetest 
CPP: Add a quick test of RoutineType.
 2019-11-14 15:49:13 -07:00
Esben Sparre Andreasen 2ea7d141c8
Merge pull request #2310 from max-schaefer/js/insufficient-url-scheme-check 
JavaScript: Add query `IncompleteUrlSchemeCheck`
 2019-11-14 22:13:02 +01:00
semmle-qlci 0638907825
Merge pull request #2324 from esbena/js/torrent-as-remote-source 
Approved by max-schaefer
 2019-11-14 20:28:07 +00:00
Calum Grant f3c92c5527 C#: Address review comment 2019-11-14 17:14:51 +00:00
Calum Grant 09356a377f C#: Improved CIL instruction types to pass type consistency checks 2019-11-14 17:14:51 +00:00
Calum Grant 051dd6b3dc C#: Update qltests. 2019-11-14 17:14:51 +00:00
Calum Grant a2e0ae1e79 C#: Update project files to netcoreapp3.0 2019-11-14 17:14:51 +00:00
Max Schaefer 3b1e6c362c JavaScript: Address review comments. 2019-11-14 17:11:59 +00:00
Geoffrey White 7408726f41
Merge pull request #2312 from jbj/pointer-wraparound-query 
C++: New query: Pointer overflow check
 2019-11-14 16:13:04 +00:00
Taus d5edb651e1
Merge pull request #2329 from RasmusWL/python-codeowners 
CODEOWNERS: Add python team
 2019-11-14 17:00:46 +01:00
Rasmus Wriedt Larsen 54f89c8eda CODEOWNERS: Add python team 
(and reorder cpp, so it all follows the same pattern)
 2019-11-14 16:42:12 +01:00
Geoffrey White f2b7af7437 CPP: Add example code for RoutineType. 2019-11-14 15:25:00 +00:00
Geoffrey White dc34fa366c CPP: Add a test of RoutineType. 2019-11-14 15:13:52 +00:00
James Fletcher 4b35d35eed
Merge pull request #2326 from shati-patel/docs/snapshot 
Docs: Use "database" consistently
 2019-11-14 14:05:03 +00:00
Henning Makholm e46d9158db
Merge pull request #2314 from Semmle/lgtm.com 
Mergback lgtm.com branch into master
 2019-11-14 14:55:26 +01:00
Jonas Jensen c35229f062
Merge pull request #2327 from nickrolfe/missing_backtick 
C++: add missing backtick in qldoc comment
 2019-11-14 14:40:12 +01:00
Nick Rolfe f5513342d6 C++: add missing backtick in qldoc comment 2019-11-14 13:20:41 +00:00
Shati Patel f64633b2fe Docs: Use "database" 2019-11-14 13:11:40 +00:00
Esben Sparre Andreasen cc768345d0 JS: add security tests for malicious torrents 2019-11-14 13:54:19 +01:00
Esben Sparre Andreasen bea59ec8ad JS: add some parsed torrent properties as remote flow sources 2019-11-14 13:54:19 +01:00
Geoffrey White beb3602253
Update cpp/ql/src/semmle/code/cpp/exprs/BuiltInOperations.qll 
Co-Authored-By: Jonas Jensen <jbj@github.com>
 2019-11-14 12:49:02 +00:00
Geoffrey White 6724632413
Update cpp/ql/src/semmle/code/cpp/exprs/BuiltInOperations.qll 
Co-Authored-By: Jonas Jensen <jbj@github.com>
 2019-11-14 12:48:50 +00:00