codeql

Граф коммитов

Автор	SHA1	Сообщение	Дата
Anders Schack-Mulligen	a3fb54c9de	Merge pull request #10007 from aschackmull/dataflow/source-node-identity Dataflow: Fix identification of source PathNodes in the presence of source-to-source flow	2022-08-15 10:39:17 +02:00
Erik Krogh Kristensen	887f6557ed	fix common misspellings throughout github/codeql	2022-08-10 23:21:41 +02:00
Anders Schack-Mulligen	abad133ab5	Dataflow: Fix identification of source PathNodes in the presence of source-to-source flow.	2022-08-10 15:02:56 +02:00
Tom Hvitved	19043bdf38	Merge pull request #9976 from hvitved/ruby/hash-literal-summary-simplification Ruby: Simplify flow summaries for hash literals	2022-08-10 08:57:33 +02:00
Erik Krogh Kristensen	d008975ff4	Merge pull request #9825 from erik-krogh/repeatedWord QL: add ql/repeated-word query	2022-08-10 07:25:26 +02:00
Harry Maclean	30ff18aec8	Merge pull request #9919 from hmac/hmac/ar-associations Ruby: ActiveRecord associations	2022-08-10 11:13:39 +12:00
Erik Krogh Kristensen	559ec7ba56	Merge branch 'main' into repeatedWord	2022-08-09 21:22:47 +02:00
Tom Hvitved	28c8d9b885	Ruby: Add two more hash flow tests	2022-08-09 14:17:07 +02:00
Tom Hvitved	975edac34e	Merge pull request #9969 from hvitved/ruby/kwargs-missing-flow Ruby: Support more flow through keyword arguments	2022-08-09 09:59:57 +02:00
Harry Maclean	22d7b046ab	Ruby: Fix <<	2022-08-09 15:08:17 +12:00
Harry Maclean	e3115b5ed7	Ruby: Add test for other=	2022-08-09 15:08:17 +12:00
Harry Maclean	831f722402	Ruby: Make room for new test	2022-08-09 15:08:17 +12:00
Harry Maclean	58b628b6d1	Ruby: Add change note	2022-08-09 15:08:17 +12:00
Harry Maclean	dc853d9728	Ruby: Model ActiveRecord associations	2022-08-09 15:08:17 +12:00
Tom Hvitved	9268437a58	Ruby: Generalize `SynthHashSplatParameterNode` to also work for synthesized methods	2022-08-08 14:05:06 +02:00
Tom Hvitved	d16a154f9e	Address review comment	2022-08-08 10:45:55 +02:00
Anders Schack-Mulligen	3d47875b60	Dataflow: Generate shorter RA/DIL names.	2022-08-05 11:00:56 +02:00
Anders Schack-Mulligen	d3dcc3ce3a	Dataflow: Sync.	2022-08-05 11:00:56 +02:00
Tom Hvitved	e0dadb4df6	Ruby: Simplify flow summaries for hash literals	2022-08-05 10:20:07 +02:00
Harry Maclean	74d529d3e3	Merge pull request #9918 from hmac/hmac/mime-type-match Ruby: Model Mime::Type	2022-08-05 11:51:45 +12:00
Tom Hvitved	01c0d4b59f	Ruby: Support more flow through keyword arguments	2022-08-04 16:20:08 +02:00
Tom Hvitved	38ede25385	Ruby: Add test that illustrates missing flow for keyword arguments	2022-08-04 14:39:22 +02:00
Harry Maclean	ee9e6b1f2e	Ruby: Add change note	2022-08-04 17:27:34 +12:00
Harry Maclean	452811dbf2	Ruby: move change note	2022-08-04 17:25:55 +12:00
Harry Maclean	83393dc195	Ruby: Recognise more AR write accesses This change means we recognise calls like ```rb User.create(params) User.update(id, params) ``` as instances of `PersistentWriteAccess`.	2022-08-04 17:22:46 +12:00
Harry Maclean	21b4918904	Ruby: Add getPositionalArgument This gets positional arguments from a call. These are arguments which are not keyword arguments.	2022-08-04 17:22:46 +12:00
Harry Maclean	d4f7f2b75e	Ruby: Add test for AR PersistentWriteAccesses	2022-08-04 17:22:46 +12:00
Harry Maclean	7ed81db32d	Ruby: Move ActiveRecord tests to new directory	2022-08-04 17:22:46 +12:00
Harry Maclean	def1b3c3b3	Ruby: QLDoc fix	2022-08-04 17:21:29 +12:00
Harry Maclean	fdbe16945f	Ruby: Add change note	2022-08-04 17:19:05 +12:00
Alex Ford	440547c958	Merge branch 'main' into post-release-prep/codeql-cli-2.10.2	2022-08-03 13:44:37 +01:00
Arthur Baars	35f7fdf24b	Update ruby/ql/lib/codeql/ruby/printAst.qll Co-authored-by: Tom Hvitved <hvitved@github.com>	2022-08-03 12:06:47 +02:00
Arthur Baars	d8592a2b05	Ruby: PrintAST: more stable order for synthesized nodes	2022-08-03 09:02:38 +02:00
Harry Maclean	2034498690	Ruby: Fix QLDoc warnings	2022-07-29 12:20:32 +12:00
Harry Maclean	f42d33312f	Ruby: Model Mime::Type Add type summaries to recognise instances of Mime::Type, and recognise arguments to Mime::Type.match? and Mime::Type.=~ as regular expression interpretations.	2022-07-29 11:41:48 +12:00
Harry Maclean	b7be25e18f	Ruby: Make isInterpretedAsRegExp extensible This allows frameworks to add new instances where a node is interpreted as a regular expression. We introduce a class RegExpInterpretation::Range that represents these nodes. In the future we may want to make this a full Concept, but it's not necessary at the moment.	2022-07-29 11:39:41 +12:00
Harry Maclean	c29eb814b2	Ruby: Reorganise ActionDispatch framework Put routing modelling inside a Routing module.	2022-07-29 10:44:36 +12:00
github-actions[bot]	e8747d3176	Post-release preparation for codeql-cli-2.10.2	2022-07-28 20:00:09 +00:00
Jeroen Ketema	15a979cfc6	Update ruby/ql/lib/change-notes/released/0.3.2.md	2022-07-28 15:45:01 +02:00
Jeroen Ketema	3137addfc1	Update ruby/ql/lib/CHANGELOG.md	2022-07-28 15:44:53 +02:00
github-actions[bot]	212786ed91	Release preparation for version 2.10.2	2022-07-28 13:38:35 +00:00
Paolo Tranquilli	9b26921cb6	Control flow: add order disambuigation customization	2022-07-28 09:11:42 +02:00
Paolo Tranquilli	ebf650c0c0	Control Flow: add more ordering for edges	2022-07-27 15:01:17 +02:00
Nick Rolfe	a61ec78f03	Merge pull request #9883 from github/nickrolfe/trap-buffering Ruby/QL: speed up trap writing by putting BufWriter in front of GzEncoder	2022-07-25 08:48:54 +01:00
Harry Maclean	681e58c8e0	Merge pull request #9850 from hmac/hmac/arel Ruby: Model Arel.sql	2022-07-25 12:09:18 +12:00
Harry Maclean	cb3ebeedf9	Merge pull request #9696 from thiggy1342/experimental-strong-params RB: Experimental strong params query	2022-07-25 12:08:55 +12:00
thiggy1342	6cfde70898	Merge branch 'main' into experimental-strong-params	2022-07-22 20:41:33 -04:00
thiggy1342	b4d762fb21	Merge branch 'main' into experimental-manually-check-request-verb	2022-07-22 20:41:23 -04:00
thiggy1342	0c0ba925a7	this one should have no tag	2022-07-22 18:44:03 +00:00
thiggy1342	f39ca1aad2	correct cwe tagged	2022-07-22 18:36:25 +00:00

1 2 3 4 5 ...

1567 Коммитов