github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
14 418 коммитов 1 541 ветка 132 Теги 497 MiB
Граф коммитов

14418 Коммитов

Автор SHA1 Сообщение Дата
Marcono1234 b835d7879c Update query console links in introduce-libraries-java.rst 
Removes 'eclipse-cdt/cdt' and 'gradle/gradle' from the queried projects
because they cannot be queried currently, and instead queries all demo
projects which are currently available.
 2020-07-05 22:06:26 +02:00
Marcono1234 2b3b64cdbc Update query console links in expressions-statements.rst 
Removes 'eclipse-cdt/cdt' and 'gradle/gradle' from the queried projects
because they cannot be queried currently, and instead queries all demo
projects which are currently available.
 2020-07-05 20:04:36 +02:00
Marcono1234 c10a598670 Update query console links in call-graph.rst 
Removes 'eclipse-cdt/cdt' and 'gradle/gradle' from the queried projects
because they cannot be queried currently, and instead queries all demo
projects which are currently available.
 2020-07-05 19:54:27 +02:00
Marcono1234 ab2456630c Update query console links in annotations.rst 
Removes 'eclipse-cdt/cdt' and 'gradle/gradle' from the queried projects
because they cannot be queried currently, and instead queries all demo
projects which are currently available.
 2020-07-05 19:43:48 +02:00
Marcono1234 13ffd7307c Update query console links in types-class-hierarchy.rst 
Removes 'gradle/gradle' from the queried projects because it cannot be
queried currently, and instead queries all demo projects which are currently
available.
 2020-07-05 19:20:42 +02:00
Marcono1234 f8e474f89a Add missing java.nio.file.Files methods to FileReadWrite.qll 2020-07-05 18:39:26 +02:00
Arthur Baars 19a481f809 Java: Arrays: add tests 2020-07-03 17:15:17 +02:00
Arthur Baars 0b89efbee4 Java: model Arrays::addList 2020-07-03 17:15:17 +02:00
Arthur Baars a07af79fff Java: model java.util.Arrays 2020-07-03 17:15:17 +02:00
Arthur Baars 1485f7c876 Java: model some new Set,List,Map methods 
Models the taint propagation for the copyOf(..),
of(..), ofEntries(..) and entry(..) methods
 2020-07-03 17:14:53 +02:00
Max Schaefer 163257a6c5
Merge pull request #3891 from aibaars/exclude-experimental 
CodeQL: exclude `experimental`  queries from LGTM suites
 2020-07-03 16:14:29 +01:00
Arthur Baars c629f6b13a
Merge pull request #3869 from aibaars/util-collections 
Java: model java.util.Collections
 2020-07-03 17:09:14 +02:00
yoff 687bb4dfc8
Merge pull request #3890 from github/tausbn-add-paths-ignore-to-code-scanning-config 
Code Scanning: Don't scan the Python directory.
 2020-07-03 16:03:41 +02:00
Taus 01c4852360
Merge pull request #3701 from yoff/SharedDataflow 
Python: Start using the shared data flow libraries
 2020-07-03 16:03:20 +02:00
Asger Feldthaus b5104ae42d JS: Add StartsWith sanitizer 2020-07-03 14:46:07 +01:00
Asger Feldthaus 4c06eb8bfe JS: Add test showing FPs 2020-07-03 14:45:42 +01:00
Rasmus Lerchedahl Petersen fe9520b50b Python: correct doc for toString 2020-07-03 15:04:54 +02:00
Arthur Baars 5fff41f35b Don't track taint on Map keys 2020-07-03 14:47:25 +02:00
Rasmus Lerchedahl Petersen 33cf96ccb8 Python: Address review comments 2020-07-03 14:11:58 +02:00
Anders Schack-Mulligen 6de612a566 Java: Split SpringWebRequestGetMethod into its own class. 2020-07-03 14:06:54 +02:00
Arthur Baars 2b248fb24f CodeQL: exclude queries from CodeScanning suites 2020-07-03 14:03:00 +02:00
Arthur Baars bb01dbd2ae CodeQL: exclude queries from LGTM suites 2020-07-03 14:01:20 +02:00
Taus b99ec29f6e
Code Scanning: Additionally exclude Java and C++. 2020-07-03 13:56:25 +02:00
Taus 39bc978573
Code Scanning: Don't scan the Python directory. 
... Possibly some of the other language teams want to get on this? 🙂 
If so, give me a shout!
 2020-07-03 13:46:30 +02:00
yoff d201eb2c12
Update python/ql/src/experimental/dataflow/internal/DataFlowPrivate.qll 
Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
 2020-07-03 13:33:27 +02:00
yoff 59d611ddd5
Update python/ql/src/experimental/dataflow/internal/DataFlowPublic.qll 
Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
 2020-07-03 13:32:03 +02:00
yoff 8891fbf006
Update python/ql/src/experimental/dataflow/internal/DataFlowPublic.qll 
Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
 2020-07-03 13:31:38 +02:00
yoff 40a6728748
Update python/ql/src/experimental/dataflow/internal/TaintTrackingPrivate.qll 
Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
 2020-07-03 13:30:10 +02:00
Rasmus Lerchedahl Petersen e3666004cf Python: add some links to readme 2020-07-03 10:37:38 +02:00
Rasmus Lerchedahl Petersen a9e0288e5b Python: exclude global vars from local flow 2020-07-03 08:41:10 +02:00
Rasmus Lerchedahl Petersen bdc68ce6b6 Python: refactor `Node` class 2020-07-03 08:01:44 +02:00
Erik Krogh Kristensen 078b6a8df2 autoformat 2020-07-03 00:21:55 +02:00
semmle-qlci 04a0d47ab9
Merge pull request #3870 from hvitved/csharp/cfg/cond-out-param 
Approved by calumgrant
 2020-07-02 18:48:05 +01:00
Arthur Baars 5f2a5f1b55 Java: Collections: add tests 2020-07-02 19:18:02 +02:00
Taus ba634af86e
Merge pull request #3362 from RasmusWL/python-keyword-only-args 
Python: properly support keyword only arguments
 2020-07-02 18:21:59 +02:00
Rasmus Lerchedahl Petersen 5f18fb427a Python: update TODO 2020-07-02 16:20:38 +02:00
Erik Krogh Kristensen 261821b32c Merge remote-tracking branch 'upstream/master' into queryStuff 2020-07-02 16:08:05 +02:00
semmle-qlci b5c8f2238b
Merge pull request #3805 from esbena/js/seal-freeze-flow 
Approved by asgerf
 2020-07-02 13:54:54 +01:00
Rasmus Wriedt Larsen 513c2974bd Merge branch 'master' into python-keyword-only-args 2020-07-02 14:48:32 +02:00
Erik Krogh Kristensen 2b0a091921 split out type-tracking into two predicates, to avoid catastrophic join-order 2020-07-02 14:28:28 +02:00
Rasmus Wriedt Larsen b2f8638ff0 Python: Update dbscheme with new comment 2020-07-02 14:17:55 +02:00
Taus eecc3ca5dd
Merge pull request #3503 from RasmusWL/python-fix-django-taint-sinks 
Python: Fix django taint sinks
 2020-07-02 13:32:35 +02:00
Tom Hvitved 527a099a26 C#: Fix CFG for conditional method calls with `out` parameters 2020-07-02 13:12:53 +02:00
Tom Hvitved 090205d9e9 C#: Add CFG test for conditional call to method with `out` parameter 2020-07-02 13:09:40 +02:00
Arthur Baars 21a4b8d6c0 Java: remove useless casts 2020-07-02 13:03:15 +02:00
Arthur Baars d80bf3395f Add Navigable variants and sort method names 2020-07-02 13:02:38 +02:00
semmle-qlci 97128b1475
Merge pull request #3829 from asger-semmle/js/xss-substr 
Approved by erik-krogh
 2020-07-02 11:58:32 +01:00
Arthur Baars e7b495e7d3 Java: model Collections::addAll 2020-07-02 12:38:22 +02:00
Rasmus Wriedt Larsen 26b7a301d6 Merge branch 'master' into python-keyword-only-args 2020-07-02 12:27:02 +02:00
Arthur Baars 5cf5c77b09 Java: model java.util.Collections 2020-07-02 12:25:55 +02:00