github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
55 228 коммитов 1 541 ветка 132 Теги 497 MiB
Граф коммитов

55228 Коммитов

Автор SHA1 Сообщение Дата
Alex Ford 606d601923 qlformat 2023-06-01 16:26:05 +01:00
Alex Ford d09f6d318c
Merge branch 'main' into maikypedia/sqli-sink 2023-06-01 15:02:44 +01:00
Alex Ford 40cf09996a
Merge pull request #13066 from maikypedia/maikypedia/sqli-sink-2 
Ruby: Add Sequel as SQL Injection Sink
 2023-06-01 15:01:38 +01:00
Erik Krogh Kristensen 96a720cfa0
Merge pull request #13285 from erik-krogh/redoshelp 
ReDoS: fix whitespace in the samples in ReDoS.qhelp
 2023-06-01 15:53:58 +02:00
Alex Ford 7d943c7621 Ruby: update test output 2023-06-01 13:50:32 +01:00
Alex Ford 4794066d3c
Merge branch 'main' into maikypedia/sqli-sink-2 2023-06-01 13:04:54 +01:00
Ian Lynagh c28af7672d
Merge pull request #13286 from igfoo/igfoo/kotlin-1.9b 
Kotlin: Support 1.9.0
 2023-06-01 13:02:04 +01:00
Jami 10bab71c60
Merge pull request #12249 from jcogs33/jcogs33/add-heuristic-neutral-models 
Java: add some neutral models discovered with heuristics
 2023-06-01 07:51:55 -04:00
Maiky 7579f182ad Add requested changes 2023-06-01 11:00:35 +02:00
Tony Torralba c1bd04e802
Merge pull request #13332 from atorralba/atorralba/java/gson-serializability 
Java: Fix GsonDeserializableField
 2023-06-01 10:45:32 +02:00
Tony Torralba aecaf82405
Merge pull request #13340 from github/workflow/coverage/update 
Update CSV framework coverage reports
 2023-06-01 10:43:32 +02:00
github-actions[bot] 3ef08d5baf Add changed framework coverage reports 2023-06-01 00:20:17 +00:00
Maiky 13ce6a6d8e
Update Frameworks.qll 2023-06-01 00:53:01 +02:00
Jami Cogswell 82f208ca7a Java: add isNeutralSink test case 2023-05-31 17:47:36 -04:00
Mathias Vorreiter Pedersen 4497aa5eb1
Merge pull request #13333 from geoffw0/macroname 
C++: Make Macro.getName() more efficient.
 2023-05-31 13:56:58 -07:00
Ian Lynagh 82578af349 Kotlin: Use @files for compiler arguments 
Avoids problems with large line lengths.
 2023-05-31 19:43:45 +01:00
Ian Lynagh a13678c35c Kotlin: Update expected test output 2023-05-31 19:43:45 +01:00
Ian Lynagh 0090429d53 Kotlin: Support 1.9.0 2023-05-31 19:43:45 +01:00
Alexandre Boulgakov 67cd6b7fa6
Merge pull request #13337 from MathiasVP/revert-13207 
Revert #13207
 2023-05-31 19:41:01 +01:00
Mathias Vorreiter Pedersen 52eb7aee5e Revert "Merge pull request #13207 from MathiasVP/use-equiv-class-in-getInstruction" 
This reverts commit 5bc844c4c6, reversing
changes made to b2fb2aa0d1.
 2023-05-31 11:26:09 -07:00
Mathias Vorreiter Pedersen 3d9c282f48
Merge pull request #13320 from jketema/ptr-deref-dedup 2023-05-31 10:12:05 -07:00
Arthur Baars c211b704f3
Merge pull request #13272 from github/post-release-prep/codeql-cli-2.13.3 
Post-release preparation for codeql-cli-2.13.3
 2023-05-31 15:33:12 +02:00
Tony Torralba 282ee08ba9 Java: Fix GsonDeserializableField 2023-05-31 13:26:35 +02:00
Charis Kyriakou 24b99aef7a
Merge pull request #13206 from github/charisk/mrva-remove-token-perms 
Remove GITHUB_TOKEN permissions note since it's no longer required
 2023-05-31 12:22:49 +01:00
Arthur Baars 5981ce4cb1 Swift: accept test output from failed CFG consistency queries 2023-05-31 12:15:21 +02:00
Jeroen Ketema ace7b6b711
C++: Add `cpp/invalid-pointer-deref` FP test case 2023-05-31 11:54:53 +02:00
Geoffrey White a9811fe2c3 Swift: Make Macro.getName() more efficient. 2023-05-31 10:53:02 +01:00
Taus b39a5a64af
Merge pull request #13317 from github/java/update-mad-decls-after-triage-2023-05-30T14-11-29 
Java: Update MaD Declarations after Triage
 2023-05-31 11:40:49 +02:00
Tony Torralba 482bb94ad9
Merge pull request #13179 from pwntester/java_gson 
[Java] Add basic support for Google's Gson library
 2023-05-31 11:16:19 +02:00
Tony Torralba fe26aca238 Remove non-ASCII character 2023-05-31 09:25:37 +02:00
Tony Torralba 6f302a43ea
Merge pull request #13297 from atorralba/atorralba/java/playmvc-models 
Java: Add models for the Play Framework
 2023-05-31 09:02:17 +02:00
Michael Nebel 2266e28583
Merge pull request #13262 from michaelnebel/flowsummary/refactorgetcomponentstack 
C#: Re-factor getComponent.
 2023-05-31 08:22:44 +02:00
Erik Krogh Kristensen b9ffa11915
Merge pull request #13328 from github/dependabot/cargo/ql/chrono-0.4.26 
Bump chrono from 0.4.25 to 0.4.26 in /ql
 2023-05-31 07:42:37 +02:00
dependabot[bot] 75f6355bd6
Bump chrono from 0.4.25 to 0.4.26 in /ql 
Bumps [chrono](https://github.com/chronotope/chrono) from 0.4.25 to 0.4.26.
- [Release notes](https://github.com/chronotope/chrono/releases)
- [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md)
- [Commits](https://github.com/chronotope/chrono/compare/v0.4.25...v0.4.26)

---
updated-dependencies:
- dependency-name: chrono
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-31 04:06:22 +00:00
Mathias Vorreiter Pedersen a646749380
Merge pull request #13318 from MathiasVP/exclude-std-in-constant-size-array-off-by-one 
C++: Exclude `StdNamespace` sources in `cpp/constant-size-array-off-by-one`
 2023-05-30 14:31:18 -07:00
Mathias Vorreiter Pedersen 65eebf1f40
Merge branch 'main' into exclude-std-in-constant-size-array-off-by-one 2023-05-30 13:40:01 -07:00
Arthur Baars 490d22d123 Merge remote-tracking branch 'upstream/main' into post-release-prep/codeql-cli-2.13.3 2023-05-30 21:31:28 +02:00
Arthur Baars 60a5ef744f
Merge pull request #13319 from aibaars/print-cfg 
Ruby: add print-cfg query
 2023-05-30 21:15:06 +02:00
Jeroen Ketema dd30acf1e3
C++: Add nodes query predicate to `cpp/invalid-pointer-deref` 2023-05-30 18:43:01 +02:00
Jeroen Ketema f5ed02a433
C++: Take into account the delta at the final sink in `cpp/invalid-pointer-deref` 2023-05-30 18:33:20 +02:00
Jeroen Ketema de974cc18a
C++: Add `cpp/invalid-pointer-deref` test case that shows some duplicate results 2023-05-30 18:18:13 +02:00
Jeroen Ketema a8c76388c0
C++: Fix configuration names in comments in `cpp/invalid-pointer-deref` 2023-05-30 18:15:37 +02:00
Tony Torralba 70138448c3 Visibility 2023-05-30 17:54:59 +02:00
Tony Torralba 0151a728f8 Add change note 2023-05-30 17:53:03 +02:00
Tony Torralba d3d67f0fb0 Add tests & stubs 2023-05-30 17:52:00 +02:00
Tony Torralba 977263a126 Use container flow for more precision 2023-05-30 17:51:41 +02:00
Tony Torralba 54e011188d Formatting 2023-05-30 17:50:50 +02:00
Andrew Eisenberg 6ba8f9eb36
Merge pull request #13314 from github/aeisenberg/adds-to-pack 
Fix `addsTo.pack` references
 2023-05-30 08:30:16 -07:00
Arthur Baars d91fa2d038 Ruby: add print-cfg query 2023-05-30 17:30:04 +02:00
Mathias Vorreiter Pedersen f00b29d3d2 C++: The small-string optimization commonly used inside 'std::string' is causing a lot of FPs. Let's exclude this for now to reduce the number of results for this query. 2023-05-30 07:33:07 -07:00