github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
50 424 коммитов 1 534 Ветки 130 Теги 471 MiB
Граф коммитов

24 Коммитов

Автор SHA1 Сообщение Дата
Mathias Vorreiter Pedersen ea35f56212 C++: Add a query for detecting uses of expired stack pointers that escaped through global variables. 2022-02-22 19:12:08 +00:00
Paolo Tranquilli 1e4861a944 C++: shorten `VeryLikelyOverrunWrite` `@name` 2022-01-13 11:59:47 +00:00
Paolo Tranquilli 4a85b9b0cc C++: add `VeryLikelyOverrunWrite.ql` to `cwe-120` 2022-01-13 11:59:47 +00:00
Mathias Vorreiter Pedersen d9d82fc56a C++: Update change-notes 2021-02-04 16:24:56 +01:00
Mathias Vorreiter Pedersen 4bcf1f498b C++: Add new query for unsafe use of this. 2020-11-10 17:23:55 +01:00
Mathias Vorreiter Pedersen 303c6aa5b7 C++: Added query to suites and change-notes 2020-01-17 14:51:40 +01:00
Jonas Jensen 9bbebfc01f C++: Add new queries to C suite too 2019-12-09 17:00:33 +01:00
Jonas Jensen ff7b6e2ce7 C++: Add new queries in 1.23 to legacy suites 
I didn't add `JapaneseEraDate.ql` since it's not displayed on LGTM by
default.
 2019-12-09 15:36:51 +01:00
Arthur Baars 9197c186e1 Drop: ImportAdditionalLibraries.ql 2019-06-28 15:53:07 +02:00
Geoffrey White 665510a13c CPP: Add DangerousFunctionOverflow.ql to the security suite. 2019-05-29 16:36:02 +01:00
Ziemowit Laski 03aa86ed4d Merge branch 'master' into cpp340a 
So as to get to change-notes/1.21/analysis-cpp.md
 2019-04-01 18:51:03 -07:00
Ziemowit Laski 3ec988c39b [CPP-340] Rename 'UnspecifiedFunctions' to 'Unspecified Functions' 
Make MistypedFunctionArguments.ql more restrictive (allowing
          type matching only in the presence of no-op conversions).
 2019-04-01 18:39:46 -07:00
Geoffrey White 193c61c5b5 CPP: Re-enable OverflowDestination.ql on the security dashboard. 2019-03-25 17:40:22 +00:00
Max Schaefer 7f5e2630a1
Merge pull request #1032 from xiemaisi/master-for-merge 
Merge master into rc/1.20
 2019-03-04 21:23:51 +00:00
Geoffrey White 3f2e902912 CPP: Remove it from the security dashboard (OverrunWrite.ql is already on there). 2019-02-27 13:09:09 +00:00
Jonas Jensen 12084fc904 C++: Add new query to new `experimental` suite 
This suite isn't referenced from anywhere yet, but it'll be included in
a standard ODASA dist because the dist includes all files in the `c` and
`cpp` directories. We can modify the nightly test jobs to include the
experimental suite.
 2019-02-21 10:13:25 +01:00
Robert Marsh 9642a78bde C++: add FutileParams.ql to C++ suite 
In theory this query will produce no results on C++ code; in practice, I
suspect the "cpp" suite is often run on code compiled as C, so it is
likely to be worth running anyways.
 2019-01-28 09:40:19 -08:00
Robert Marsh 54fdf9f29d C++/Docs: respond to doc comments on PR 2019-01-28 09:34:45 -08:00
Raul Garcia 242d40369b
Merge branch 'master' into users/raulga/c6277 2018-10-12 15:59:54 -07:00
Raul Garcia 85283d63ce C++ : NULL application name with an unquoted path in call to CreateProcess 
Calling a function of the CreatePorcess* family of functions, which may result in a security vulnerability if the path contains spaces.
 2018-10-12 15:57:01 -07:00
Jonas Jensen 308631e8ff C++: Add two recent queries to query suites 2018-10-01 13:42:12 +02:00
Dave Bartolomeo 1f36f5552f Normalize all text files to LF 
Use `* text=auto eol=lf`
 2018-09-23 16:24:31 -07:00
Jonas Jensen 3e1247257f C++: Move C/C++ suites to ql repo 
As the queries live here, it makes sense for the suites to be versioned
together with them. The LGTM suite has already been moved. This commit
moves the actively-maintained non-LGTM suites.
 2018-08-14 11:41:31 +02:00
Jonas Jensen 5c4292932f C++: Move LGTM suites to submodule 
This follows what's been done for JavaScript. The `cpp-alerts-lgtm`
suite is now empty and will be auto-generated when building a dist.

This commit has no effect in itself, but these files need to be in place
when the corresponding changes are made in Semmle/code.
 2018-08-09 10:35:05 +02:00