github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
41 850 коммитов 1 542 Ветки 132 Теги 495 MiB
Граф коммитов

41850 Коммитов

Автор SHA1 Сообщение Дата
Erik Krogh Kristensen 51a724315f
Merge pull request #10017 from erik-krogh/forAwait 
JS: support top-level for await statements
 2022-08-15 11:58:56 +02:00
Ian Lynagh 09d249e5d8
Merge pull request #10038 from igfoo/igfoo/java-downgrades 
Java: Add initial downgrades directory
 2022-08-15 10:57:52 +01:00
Mathias Vorreiter Pedersen dfde5712a3
Merge pull request #10031 from jketema/block-assign 
C++: Handle block assignments
 2022-08-15 10:29:23 +01:00
erik-krogh a28948e836
add change note 2022-08-15 10:53:33 +02:00
Anders Schack-Mulligen a3fb54c9de
Merge pull request #10007 from aschackmull/dataflow/source-node-identity 
Dataflow: Fix identification of source PathNodes in the presence of source-to-source flow
 2022-08-15 10:39:17 +02:00
Jeroen Ketema 40334a21ce
C++: add upgrade and downgrade scripts 2022-08-13 15:09:06 +02:00
Jeroen Ketema cac6bd57ab
C++: Update DB scheme stats file 2022-08-13 01:01:30 +02:00
Jeroen Ketema 0449d914c4
C++: Add change note 2022-08-12 18:43:24 +02:00
Jeroen Ketema 4d76fd198e
C++: Handle block assignments in the IR 2022-08-12 18:43:23 +02:00
Jeroen Ketema 5c905b76b4
C++: Expose block assignment operations in the QL library 2022-08-12 18:43:23 +02:00
Jeroen Ketema ebf8161f1b
C++: Add block assignment expression to the database schema 
These can under some circumstances be generated by the frontend as part
of compiler generated copy constructors and assignment operators.
 2022-08-12 18:43:23 +02:00
Jeroen Ketema e1b1657cdd
C++: Remove unused abstract predicate 2022-08-12 18:43:23 +02:00
Jeroen Ketema de142b276d
C++: Add IR test that exposes a gap in the extractor output 2022-08-12 18:43:23 +02:00
Ian Lynagh 254c166f93 Java: Add initial downgrades directory 2022-08-12 16:19:31 +01:00
Tamás Vajk 1d56330baa
Merge pull request #9782 from tamasvajk/cs/newtonsoft-deserialization 
C#: Fix unsafe deserialization with `JsonConvert.DeserializeObject`
 2022-08-12 14:46:41 +02:00
Tamas Vajk 740265dc38 Add change note 2022-08-11 13:32:49 +02:00
Erik Krogh Kristensen 73df8e4c7d
Merge pull request #9832 from erik-krogh/misspellings 
Fix lots of misspellings
 2022-08-11 12:43:26 +02:00
Jeroen Ketema 2a9af11727
Merge pull request #10021 from jketema/consistency 
C++: Add internal metrics query for IR consistency
 2022-08-11 12:39:22 +02:00
Geoffrey White 2ee1979546
Merge pull request #10014 from geoffw0/inlinetaint 
Swift: Add an inline expectations test for taint flow
 2022-08-11 11:18:18 +01:00
Geoffrey White 1dcc44ff2f Swift: taintedFromLine -> tainted. 2022-08-11 11:01:05 +01:00
Rasmus Wriedt Larsen ff23f8ef86
Merge pull request #9855 from tausbn/python-fix-bad-scope_entry_transfer-join 
Python: Fix bad join in scope entry transfer
 2022-08-11 11:55:51 +02:00
Jeroen Ketema 5259025c67
Merge pull request #10020 from jketema/jketema/minor 
C++: Improve QLDoc based on earlier review
 2022-08-11 11:45:59 +02:00
Jeroen Ketema c89592cda7
C++: Add internal metrics query for IR consistency 2022-08-11 11:39:52 +02:00
Jeroen Ketema faaf1ec30d
C++: Improve QLDoc based on earlier review 2022-08-11 11:31:21 +02:00
Jeroen Ketema a5c0fa24d7
Merge pull request #9971 from jketema/attribute-arg 
C++: Handle all forms of constant attribute arguments
 2022-08-11 11:30:18 +02:00
Jeroen Ketema 18094fb1d8
Merge pull request #10019 from erik-krogh/deleteDeadSwift 
delete the dead TypeRepr files
 2022-08-11 11:13:54 +02:00
Chris Smowton 3d4e9061a4
Merge pull request #10016 from aschackmull/java/kotlin-test-fix 
Kotlin: Reflection test should not refer to DataFlowPrivate.
 2022-08-11 10:08:38 +01:00
Tamas Vajk 7a406d8e41 C#: Fix unsafe deserialization with `JsonConvert.DeserializeObject` 
Remove false positives when `JsonConvert.DeserializeObject` is called with not necessarily unsafe settings.
 2022-08-11 11:00:46 +02:00
Tamas Vajk 6e6bd208b1 C#: Add test case for `JsonConvert.DeserializeObject` in unsafe deserialization tests 2022-08-11 11:00:23 +02:00
erik-krogh c778b38a77
delete the dead TypeRepr files 2022-08-11 10:56:58 +02:00
Tamas Vajk 548d7ac37d C#: Regenerate Newtonsoft.Json test stub 
The newly generated stubs contain the actual values of enum constants.
 2022-08-11 10:52:48 +02:00
erik-krogh a5239bc1e8
fix one more misspelling in swift 2022-08-11 10:27:20 +02:00
erik-krogh eb6c2882f9
cleanup pack in QL-for-QL 2022-08-11 10:22:32 +02:00
erik-krogh e7f009e879
support top-level for await statements 2022-08-11 09:53:32 +02:00
Anders Schack-Mulligen 74b05d2aa4 Kotlin: Reflection test should not refer to DataFlowPrivate. 2022-08-11 09:48:10 +02:00
Anders Schack-Mulligen 87461fece4
Merge pull request #10006 from aschackmull/java/sensitive-log-dedup 
Java: Remove SensitiveLoggingQuery results that flow through a source.
 2022-08-11 09:26:33 +02:00
Anders Schack-Mulligen ced083be61
Merge pull request #10015 from github/workflow/coverage/update 
Update CSV framework coverage reports
 2022-08-11 09:20:12 +02:00
Michael Nebel b817bd43ca
Merge pull request #10005 from michaelnebel/csharp/constructorsummaries 
C#: Constructor summaries
 2022-08-11 09:16:05 +02:00
Tom Hvitved e106edc04e
Merge pull request #9989 from hvitved/csharp/lua-tracer-improvements2 
C#: Handle `dotnet exec csc.dll` and the likes in the Lua tracer
 2022-08-11 08:55:46 +02:00
github-actions[bot] 33ce9552cb Add changed framework coverage reports 2022-08-11 00:17:52 +00:00
Erik Krogh Kristensen 803e079dab
fix accidental typo 
Co-authored-by: Chris Smowton <smowton@github.com>
 2022-08-10 23:23:32 +02:00
Erik Krogh Kristensen a66229ee9d
update the expected output of the misspelling test 2022-08-10 23:21:41 +02:00
Erik Krogh Kristensen 887f6557ed
fix common misspellings throughout github/codeql 2022-08-10 23:21:41 +02:00
Erik Krogh Kristensen db614bda29
generalize the ql/misspelling query to work on all kinds of comments 2022-08-10 23:21:41 +02:00
Jeroen Ketema 32a2363f85
C++: Add change note 2022-08-10 21:11:59 +02:00
Jeroen Ketema 32db845af8
C++: Add DB scheme upgrade and downgrade scripts 2022-08-10 21:11:58 +02:00
Jeroen Ketema bdd8f2bbe9
C++: Update DB scheme stats file 2022-08-10 21:11:58 +02:00
Jeroen Ketema 8528e6b8e1
C++: Update test results for exposing attribute arguments as proper constants 2022-08-10 21:11:58 +02:00
Jeroen Ketema b20961a065
C++: Expose constant expressions as attribute arguments 2022-08-10 21:11:58 +02:00
Jeroen Ketema 553f1c496e
C++: Update DB scheme to allow for constant expression as attribute arguments 2022-08-10 21:11:58 +02:00