github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
14 450 коммитов 1 541 ветка 130 Теги 483 MiB
Граф коммитов

14450 Коммитов

Автор SHA1 Сообщение Дата
Tamas Vajk 17e256b2c7 C#: Add VS Code tasks to build and test the C# bits 2020-07-31 16:56:51 +02:00
Tom Hvitved c5a4a6be05
Merge pull request #3871 from hvitved/csharp/autobuilder/dotnet-delegate 
C#: Introduce delegate type in autobuilder
 2020-07-27 16:51:24 +02:00
Taus f40242dc3f
Merge pull request #3396 from porcupineyhairs/python-ssti 
Python : Add query to detect Server Side Template Injection
 2020-07-27 14:43:39 +02:00
Tom Hvitved f5c1de8a17
Merge pull request #3960 from calumgrant/cs/tag-inefficient-containskey 
C#: Fix tags typo
 2020-07-27 11:44:58 +02:00
Calum Grant 09f45ac9fe
Merge pull request #3877 from calumgrant/cs/autobuilder-alerts 
C#: Make fields readonly
 2020-07-27 10:43:04 +01:00
Porcupiney Hairs 7a71ca3e0f fix tests. 2020-07-24 00:57:19 +05:30
Rasmus Wriedt Larsen c49311e69e
Python: Fix JinjaSSTISinks.expected 2020-07-23 20:11:27 +02:00
Rasmus Wriedt Larsen 03d22fa8e3
Python: Fix filenames in qhelp 2020-07-23 17:32:01 +02:00
Rasmus Wriedt Larsen e283d289fd
Python: Update TemplateInjection.qhelp 
Moved things around so there is only a single `<example>` tag (and had to rewrite contents a bit).
 2020-07-23 17:23:26 +02:00
Porcupiney Hairs 1e7921e575 add qhelp and fix tests. 2020-07-23 20:04:32 +05:30
porcupineyhairs 8e85dc755a
Apply suggestions from code review 
Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
 2020-07-23 19:37:40 +05:30
semmle-qlci bb5b161d72
Merge pull request #3972 from shati-patel/merge-rc 
Approved by mchammer01
 2020-07-23 11:30:45 +01:00
Shati Patel 2326f31749 Merge branch 'rc/1.24' into merge-rc 2020-07-23 12:18:30 +02:00
Rasmus Wriedt Larsen a97f942a17 Python: Autoformat 2020-07-23 11:38:34 +02:00
Felicity Chapman 40c998fa13
Merge pull request #3969 from alexey-tereshenkov-oxb/master 
Python: Fix typo in qhelp file
 2020-07-23 10:37:37 +01:00
Mathias Vorreiter Pedersen a4242bcb5d
Merge pull request #3962 from rdmarsh2/ir-barrierguard-checks-expr 
C++: make IR BarrierGuard::checks match AST
 2020-07-23 09:21:37 +02:00
Alexey Tereshenkov 7840dfce3b
Put the closing tag back 2020-07-22 20:51:29 +01:00
Alexey Tereshenkov e2939377e9
Update python/ql/src/Expressions/WrongNumberArgumentsForFormat.qhelp 
Co-authored-by: intrigus-lgtm <60750685+intrigus-lgtm@users.noreply.github.com>
 2020-07-22 20:07:34 +01:00
Alexey Tereshenkov a6eb3caa5f
Update python/ql/src/Expressions/WrongNumberArgumentsForFormat.qhelp 
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2020-07-22 20:07:27 +01:00
Alexey Tereshenkov a5f566b563
Fix typo 2020-07-22 15:39:50 +01:00
Rasmus Wriedt Larsen 91e6222662 Python: Fix SSTI query by importing UntrustedStringKind 
Without a concrete ExternalStringKind class, there will be no flow for
ExternalStringKind by default.
 2020-07-21 18:01:27 +05:30
Rasmus Wriedt Larsen 9dbd280d31 Python: Fix syntax error 2020-07-21 18:01:27 +05:30
Porcupiney Hairs 49df4169cf Python : Add query to detect Server Side Template Injection 2020-07-21 18:01:27 +05:30
Robert Marsh 0bb6d0c7ca C++: make IR BarrierGuard::checks match AST 2020-07-17 15:43:57 -07:00
Calum Grant 79f412ff54 C#: Fix tags typo 2020-07-17 15:30:33 +01:00
Geoffrey White 2e5af67626
Merge pull request #3952 from MathiasVP/output-parameter-index-for-UserDefinedFormattingFunction 
C++: Add getOutputParameterIndex override to UserDefinedFormattingFunction class.
 2020-07-15 18:11:09 +01:00
Nick Rolfe c7b668193b
Merge pull request #3929 from igfoo/static_assert 
C++: Give static assertions an enclosing element
 2020-07-15 18:03:26 +01:00
Mathias Vorreiter Pedersen 289a908eb8 C++: Update qldoc in reponse to PR comments 2020-07-15 16:24:47 +02:00
Mathias Vorreiter Pedersen c4b97a3a62 C++: Accept more test changes 2020-07-15 16:19:51 +02:00
Mathias Vorreiter Pedersen edc33b6516 C++: Add getOutputParameterIndex override to UserDefinedFormattingFunction and accept test changes 2020-07-15 14:46:08 +02:00
Mathias Vorreiter Pedersen d711c22cd2 C++: Add testcase demonstrating lost query results 2020-07-15 14:42:45 +02:00
Robert Marsh 7dd2677746
Merge pull request #3950 from MathiasVP/simple-range-analysis-unsigned-multiplication-tests 
C++: Add test cases for range analysis for unsigned multiplication
 2020-07-14 14:18:06 -07:00
Mathias Vorreiter Pedersen 174b30461a C++: Fix syntax error in testfile 2020-07-14 19:47:21 +02:00
Calum Grant dcff87fb2e
Merge pull request #3366 from hvitved/csharp/dataflow/arrays 
C#: Precise data-flow for collections
 2020-07-14 17:12:29 +01:00
Mathias Vorreiter Pedersen 834ad92453 C++: Add test cases for unsigned multiplication and fix missing return value in existing tests 2020-07-14 16:57:47 +02:00
semmle-qlci 0bee0687cb
Merge pull request #3911 from RasmusWL/python-call-graph-tracing 
Approved by tausbn
 2020-07-14 15:33:45 +01:00
Ian Lynagh 616bad7b5c C++: Add an upgrade script 2020-07-14 13:53:46 +01:00
Ian Lynagh c254de464a C++: Update stats following `static_asserts` change 2020-07-14 13:53:01 +01:00
Rasmus Wriedt Larsen f1601d643a Python: autoformat 2020-07-14 14:12:56 +02:00
Rasmus Wriedt Larsen 1d9c3b3bcd Python: call-graph tracing: callable => callee 
to use consistent naming
 2020-07-14 14:12:02 +02:00
semmle-qlci f8c03dcae6
Merge pull request #3924 from RasmusWL/python-metrics-queries-for-dist-compare 
Approved by tausbn
 2020-07-14 13:03:02 +01:00
Rasmus Wriedt Larsen ee42d0839e Python: Rename target => callee 
To use a standardised naming :)
 2020-07-14 11:26:05 +02:00
Rasmus Wriedt Larsen d913d33289 Python: Autoformat 2020-07-14 11:21:55 +02:00
Taus ee13e87f3b
Merge pull request #3947 from RasmusWL/python-fix-tests 
Python: Make experimental/library-tests/CallGraph pass for Python 2
 2020-07-13 22:10:34 +02:00
Arthur Baars 67b6018079
Merge pull request #3729 from luchua-bc/java-hardcoded-aws-credentials 
Java: Hardcoded AWS credentials
 2020-07-13 18:04:42 +02:00
Rasmus Wriedt Larsen dc7d92ba2f Python: Autoformat experimental/library-tests/CallGraph/ 2020-07-13 16:20:02 +02:00
Rasmus Wriedt Larsen 83bd14b687 Python: Make experimental/library-tests/CallGraph pass for Python 2 
The import doesn't actually work the intended way, so running
```
$ python python/ql/test/experimental/library-tests/CallGraph/test.py
```

will procude no output. but our extractor will extract the things we need, so
for a quick fix this will need to suffice.
 2020-07-13 14:52:28 +02:00
luchua-bc 12803f1f53 Merge Hardcoded AWS Credentials check into the mail source folder 2020-07-13 12:22:34 +00:00
Geoffrey White 6519629472
Merge pull request #3942 from MathiasVP/remove-abstract-preprocessor 
C++: Remove abstract classes from Preprocessor.qll
 2020-07-13 10:00:50 +01:00
Rasmus Wriedt Larsen 3127bb27d0 Python: Remove strange empty line 2020-07-13 10:55:43 +02:00