75eee04f3e
Merge pull request #15890 from intrigus-lgtm/patch-9
...
[cpp-docs] Fix 404 link in guards library doc.
2024-04-02 12:49:03 +01:00
e610573411
Merge pull request #16078 from igfoo/igfoo/exprs_changes
...
Kotlin 2: Accept more changes
2024-04-02 12:19:17 +01:00
e5999f76b0
Merge pull request #16079 from igfoo/igfoo/del
...
Kotlin 2: Accept some more location changes
2024-04-02 12:18:58 +01:00
409f46ef7b
Merge pull request #14308 from hmac/hmac-rb-csrf-not-enabled
...
Ruby: Add a query for CSRF protection not enabled
2024-04-02 11:30:36 +01:00
3c8c45872e
Merge pull request #16060 from jketema/qual-fix
...
C++: Output destructor calls for delete expressions
2024-04-02 11:49:51 +02:00
9409d7fdca
Merge pull request #16066 from github/henrymercer/ql-run-diagnostics
...
QL: Run diagnostics and summary metrics in code scanning
2024-04-02 10:45:50 +01:00
01183800a6
C++: Fix formatting
2024-04-02 11:38:19 +02:00
9190bf25ce
C++: Add example to QLDoc
2024-04-02 11:35:43 +02:00
a5d4fad806
C++: Output destructor calls for delete expressions
2024-04-02 10:32:03 +02:00
a8dac17aec
Merge pull request #16016 from hvitved/csharp/remove-lgtm-autobuilder-options
...
C#: Remove support for legacy LGTM options in autobuilder
2024-04-02 10:03:10 +02:00
332c1e3b8a
Merge pull request #16026 from erik-krogh/htmlSafeSan
...
RB: Add barrier guard for `.html_safe?` to the XSS queries
2024-04-02 07:54:19 +02:00
0fd89549da
Merge pull request #16033 from github/dependabot/cargo/ql/regex-1.10.4
...
Bump regex from 1.10.3 to 1.10.4 in /ql
2024-04-02 07:52:17 +02:00
58bf0b709f
Merge pull request #16077 from github/dependabot/cargo/ql/chrono-0.4.37
...
Bump chrono from 0.4.35 to 0.4.37 in /ql
2024-04-02 07:51:49 +02:00
0bc9318400
Merge pull request #16086 from github/post-release-prep/codeql-cli-2.17.0
...
Post-release preparation for codeql-cli-2.17.0
2024-04-01 08:41:39 -07:00
8e61c6625b
Post-release preparation for codeql-cli-2.17.0
2024-04-01 15:27:42 +00:00
6475034b09
Merge pull request #16085 from github/release-prep/2.17.0
...
Release preparation for version 2.17.0
2024-04-01 06:53:52 -07:00
ec97d9a304
Release preparation for version 2.17.0
2024-04-01 13:46:57 +00:00
d889e3cf98
Merge pull request #14854 from jcogs33/jcogs33/unsafe-url-forward-promotion
...
Java: Promote Unsafe URL Forward query from experimental
2024-03-29 16:34:06 -04:00
2f8c4df309
docs wording updates
...
Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
2024-03-28 16:15:05 -04:00
5b1cae5fc2
Merge pull request #16076 from github/jf205-patch-1
...
Make customizing-library-models-for-javascript.rst visible to search and the docs TOC
2024-03-28 17:05:32 +00:00
ef2e2e4067
Merge pull request #16071 from github/calumgrant/cpp-analysis
...
Add C++ analysis in separate workflow
2024-03-28 17:53:53 +01:00
3acdc73f22
Kotlin 2: Accept some more location changes
2024-03-28 16:15:37 +00:00
568fba6940
Kotlin 2: Accept some more test changes
2024-03-28 15:28:36 +00:00
0fdc71bf57
Kotlin 2: Accept a test change
...
For
if(r != null) {
val r2: Rectangle = r
in Kotlin 2 mode, there is no IMPLICIT_NOTNULL check in Kotlin 2 mode:
then: BLOCK type=kotlin.Unit origin=null
VAR name:r2 type:java.awt.Rectangle [val]
- TYPE_OP type=java.awt.Rectangle origin=IMPLICIT_NOTNULL typeOperand=java.awt.Rectangle
- GET_VAR 'val r: @[FlexibleNullability] java.awt.Rectangle? [val] declared in <root>.foo' type=@[FlexibleNullability] java.awt.Rectangle? origin=null
+ GET_VAR 'val r: @[FlexibleNullability] java.awt.Rectangle? [val] declared in <root>.foo' type=@[FlexibleNullability] java.awt.Rectangle? origin=null
VAR name:height type:kotlin.Int [val]
GET_FIELD 'FIELD IR_EXTERNAL_JAVA_DECLARATION_STUB name:height type:kotlin.Int visibility:public' type=kotlin.Int origin=null
receiver: GET_VAR 'val r2: java.awt.Rectangle [val] declared in <root>.foo' type=java.awt.Rectangle origin=null
2024-03-28 15:23:27 +00:00
96723b1a8f
Kotlin 2: Accept some loc changes
2024-03-28 15:11:19 +00:00
24c4c3e068
Kotlin 2: Accept a test change
...
With:
open class Root {}
class Subclass1: Root() {}
fun typeTests(x: Root, y: Subclass1) {
val y1: Subclass1 = if (x is Subclass1) { x } else { y }
}
we now get a slightly different AST, which means we no longer need to
insert a StmtExpr:
BRANCH
if: TYPE_OP type=kotlin.Boolean origin=INSTANCEOF typeOperand=<root>.Subclass1
GET_VAR 'x: <root>.Root declared in <root>.typeTests' type=<root>.Root origin=null
- then: TYPE_OP type=<root>.Subclass1 origin=IMPLICIT_CAST typeOperand=<root>.Subclass1
- BLOCK type=<root>.Root origin=null
+ then: BLOCK type=<root>.Subclass1 origin=null
+ TYPE_OP type=<root>.Subclass1 origin=IMPLICIT_CAST typeOperand=<root>.Subclass1
GET_VAR 'x: <root>.Root declared in <root>.typeTests' type=<root>.Root origin=null
2024-03-28 15:07:30 +00:00
73f71d8ace
Merge pull request #15979 from github/mbg/go/deal-with-incorrect-versions
2024-03-28 14:16:14 +00:00
f6c22d466f
Update toolchain_test.go
...
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
2024-03-28 13:32:02 +00:00
aeacfb82c1
Merge pull request #16073 from hmac/ruby-re-add-mad-docs
...
Ruby: Re-add MaD docs
2024-03-28 09:18:04 -04:00
2fa2a5a53c
Merge pull request #15984 from github/alexdenisov/swift-5.10
...
Swift: upgrade to 5.10
2024-03-28 13:58:39 +01:00
977ac71b26
Update toolchain_test.go
...
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
2024-03-28 11:15:30 +00:00
5dcd635403
Merge pull request #15961 from igfoo/igfoo/MissingEnumInSwitch
...
Java: Limit the amount of results that MissingEnumInSwitch produces per switch
2024-03-28 11:13:45 +00:00
a34bb2608d
Swift: fix ql format
2024-03-28 11:57:33 +01:00
ece0d1f477
Swift: add upgrade/downgrade scripts
2024-03-28 11:54:18 +01:00
bfce01cef6
Swift: add change note for Swift 5.10 upgrade
2024-03-28 11:38:39 +01:00
d57e8efaf2
Update codeql-for-javascript.rst
2024-03-28 10:28:37 +00:00
3d8ac1441a
Merge pull request #16074 from jketema/reuse-val-cat
...
C++: Add value category column to the expr_reuse relation
2024-03-28 10:14:32 +01:00
07f9614dc2
Bump chrono from 0.4.35 to 0.4.37 in /ql
...
Bumps [chrono](https://github.com/chronotope/chrono ) from 0.4.35 to 0.4.37.
- [Release notes](https://github.com/chronotope/chrono/releases )
- [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md )
- [Commits](https://github.com/chronotope/chrono/compare/v0.4.35...v0.4.37 )
---
updated-dependencies:
- dependency-name: chrono
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-03-28 03:07:21 +00:00
9eb51a9b9e
C++: Add value category column to the expr_reuse relation
2024-03-27 22:49:40 +01:00
9e47909208
Merge pull request #16065 from geoffw0/codeowners
...
C++: Divide CODEOWNERS responsibilities.
2024-03-27 22:22:15 +01:00
3690f294da
Ruby: add MaD doc to TOC tree
2024-03-27 21:02:25 +00:00
b6a1266ade
Java: Accept test changes for MissingEnumInSwitch Oxford commas
2024-03-27 18:48:22 +00:00
ce0edcc265
Ruby: Make MaD doc visible to search
...
Co-authored-by: James Fletcher <42464962+jf205@users.noreply.github.com>
2024-03-27 17:29:18 +00:00
04edd6ec69
Update docs/codeql/codeql-language-guides/codeql-for-javascript.rst
2024-03-27 17:08:47 +00:00
121fed63a0
Update codeql-for-javascript.rst
2024-03-27 17:06:31 +00:00
fbc0f57280
Update customizing-library-models-for-javascript.rst
2024-03-27 16:58:11 +00:00
e9957aa4a6
Swift: make `result` a child in `ThenStmt`
2024-03-27 17:53:36 +01:00
f6e2e1319b
Ruby: Link to MaD docs from Ruby doc page
...
Also remove an internal link from the docs.
2024-03-27 15:30:05 +00:00
e6ba0a34f4
Revert "Ruby: remove customizing-library-models-for-ruby.rst"
...
This reverts commit 5b46256fdb
2024-03-27 15:24:30 +00:00
45b41bb506
Go: Mirror stdout/stderr output in `InstallVersion`
2024-03-27 15:18:24 +00:00
Felicity Chapman
Ian Lynagh
Harry Maclean
Jeroen Ketema
Henry Mercer
Jeroen Ketema
Tom Hvitved
Erik Krogh Kristensen
Chuan-kai Lin
github-actions[bot]
Jami
James Fletcher
Calum Grant
Michael B. Gale
Sid Shankar
Paolo Tranquilli
dependabot[bot]