github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
69 443 коммитов 1 534 Ветки 130 Теги 471 MiB
Граф коммитов

8770 Коммитов

Автор SHA1 Сообщение Дата
Felicity Chapman fcb2b5730f
Update CookieInjection.ql to remove period 2024-08-15 13:17:13 +01:00
Tom Hvitved 51077ce2e7
Merge pull request #17173 from hvitved/shared/inline-flow-provenance 
Shared: Apply `ShowProvenance` in `InlineFlowTest.qll`
 2024-08-13 14:15:08 +02:00
Tom Hvitved 0fcfb47423 Sync shared files 2024-08-13 13:34:45 +02:00
Rasmus Wriedt Larsen 6dd52e45e4
Merge pull request #17154 from RasmusWL/poetry-update 
Python: Upgrade lockfile for extractor tests
 2024-08-13 11:54:15 +02:00
Alexander Eyers-Taylor ffd811a55d
Merge pull request #17182 from github/post-release-prep/codeql-cli-2.18.2 
Post-release preparation for codeql-cli-2.18.2
 2024-08-08 16:28:03 +01:00
github-actions[bot] cc6d87c276 Post-release preparation for codeql-cli-2.18.2 2024-08-08 12:56:21 +00:00
github-actions[bot] 019da8c287 Release preparation for version 2.18.2 2024-08-07 14:02:38 +00:00
Alexander Eyers-Taylor 46577b585e
Revert "Release preparation for version 2.18.2" 2024-08-07 14:24:37 +01:00
Joe Farebrother 62c2fe6b17
Merge pull request #16933 from joefarebrother/python-cookie-concept-promote 
Python: Promote the insecure cookie query from experimental
 2024-08-07 09:06:05 +01:00
Joe Farebrother 24df54804a
Review suggestion - Add link to qldoc 
Co-authored-by: yoff <lerchedahl@gmail.com>
 2024-08-06 22:59:14 +01:00
github-actions[bot] c14ba0e4bd Release preparation for version 2.18.2 2024-08-06 12:46:15 +00:00
Rasmus Wriedt Larsen d50898e114
Python: Downgrade `packaging` for Python 3.7 support 2024-08-06 11:15:48 +02:00
Rasmus Wriedt Larsen 4eb6afa880
Python: Update poetry.lock 2024-08-05 14:14:41 +02:00
Anders Schack-Mulligen 377301a55a
Merge pull request #17108 from aschackmull/dataflow/flowthrough-provenance 
Dataflow: Propagate provenance correctly for flow-through wrappers.
 2024-08-01 09:35:56 +02:00
yoff 251036c6b4
Merge pull request #17080 from sylwia-budzynska/streamlit 
Python: Add Streamlit models
 2024-07-31 18:20:11 +02:00
Anders Schack-Mulligen 9724516c84 C#/Go/Java/Python/Ruby: Accept qltest .expected changes. 2024-07-31 14:45:10 +02:00
yoff 123dcc75d1
Merge pull request #16971 from RasmusWL/mad-dict-source 
Python: Add MaD support for DictionaryElement/DictionaryElementAny for sources
 2024-07-31 13:40:07 +02:00
Sylwia Budzynska 9bd00c9e1e Change Gradio rfs test to use shared rfs test module 2024-07-31 13:25:32 +02:00
Sylwia Budzynska 2a6ad00a2f Fix typo 2024-07-31 13:22:27 +02:00
Sylwia Budzynska 72e7b6c872
Update python/ql/lib/semmle/python/frameworks/Streamlit.qll 
Co-authored-by: yoff <lerchedahl@gmail.com>
 2024-07-31 13:20:01 +02:00
Sylwia Budzynska 81f3609c4b Formatting 2024-07-30 17:49:20 +02:00
Sylwia Budzynska dfc51922ba Change regex 2024-07-30 17:39:34 +02:00
Sylwia Budzynska ef2b225144 Fix PascalCase 2024-07-30 17:36:55 +02:00
Sylwia Budzynska f796efe470 Add Streamlit SQLAlchemy models 2024-07-30 17:20:52 +02:00
Sylwia Budzynska 9741ddb926 Add remoteflowsoucre test 2024-07-30 17:20:14 +02:00
Sylwia Budzynska bfd2e4350b
Add StreamlitConnection model 
Co-authored-by: yoff <lerchedahl@gmail.com>
 2024-07-30 12:58:49 +02:00
Joe Farebrother e68ef87662 update inline tests for rest_framework tests 2024-07-29 23:35:36 +01:00
Joe Farebrother 82da8b95a7 Fix typo 2024-07-29 23:29:19 +01:00
Joe Farebrother f10d007496 Add additional test for kwargs case 2024-07-29 23:27:22 +01:00
Joe Farebrother 68512eea14 Remove remaining files from experimental tests 2024-07-29 11:19:33 +01:00
Joe Farebrother ef3bbeacd6 Add check for kwargs in cookie attribute predicates 2024-07-29 11:17:42 +01:00
Joe Farebrother 90e87a1752 Factor each framework implementation of the cookie parameters to a common concept 2024-07-29 10:51:24 +01:00
Joe Farebrother c7f9095739 Apply similar changes to httponly 2024-07-29 10:29:59 +01:00
Joe Farebrother 1127b08635 Merge branch 'main' into python-cookie-concept-promote 2024-07-29 10:26:03 +01:00
Joe Farebrother d997eee6e6
Code review suggestions - make definitions clearer 
Co-authored-by: yoff <lerchedahl@gmail.com>
 2024-07-29 10:22:33 +01:00
Joe Farebrother 58689c90fb
Merge pull request #16893 from joefarebrother/python-cookie-injectio-promote 
Python: Promote cookie injection query from experimental
 2024-07-29 10:17:01 +01:00
yoff d23d138e7d
Merge pull request #16923 from RasmusWL/impossible-isinstance 
Python: Add test for impossible isinstance flow
 2024-07-29 09:33:30 +02:00
Sylwia Budzynska a05266c236 Formatting 2024-07-26 14:55:58 +02:00
Sylwia Budzynska 358a1b3a20 Fix tests 2024-07-26 14:19:06 +02:00
Sylwia Budzynska 6d1c00742f Add tests and change note 2024-07-26 14:15:43 +02:00
Sylwia Budzynska 221c18934c Add models 2024-07-26 13:23:39 +02:00
Joe Farebrother ebeb187fd9 Remove unneeded experimental file 2024-07-25 23:16:48 +01:00
Anders Schack-Mulligen 7a48fe1102 Dataflow: Replace ppReprType with DataFlowType.toString. 2024-07-25 13:08:47 +02:00
Joe Farebrother 8f714c631f
Code reveiw suggestions. correction in changenote + style in example 
Co-authored-by: yoff <lerchedahl@gmail.com>
 2024-07-24 21:37:12 +01:00
Joe Farebrother db27fd934a Add tests for tornado and twisted 2024-07-23 13:21:37 +01:00
Joe Farebrother 44271813a5 Add change note 2024-07-23 10:15:28 +01:00
Joe Farebrother 93f70b3ad9 Add unit tests 2024-07-23 10:15:23 +01:00
Joe Farebrother b28d79960b Update ConceptsTests and make a fix 2024-07-23 10:15:09 +01:00
Joe Farebrother be87eb50d4 Add cookie models to each framework 2024-07-23 10:15:02 +01:00
Joe Farebrother a73d675e6e Remove experimental query versions 2024-07-23 10:14:55 +01:00