github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
39 576 коммитов 1 532 Ветки 130 Теги 474 MiB
Граф коммитов

97 Коммитов

Автор SHA1 Сообщение Дата
Erik Krogh Kristensen 69365ccd03 remove false positive in missingSpaceInAppend by requring the presence of a word-like fragment 2019-09-26 12:59:05 +02:00
semmle-qlci f123916f53
Merge pull request #1825 from asger-semmle/js-change-notes 
Approved by xiemaisi
 2019-08-26 14:00:32 +01:00
Asger F 17f5984101
Update change-notes/1.22/analysis-javascript.md 
Co-Authored-By: Felicity Chapman <felicity@semmle.com>
 2019-08-26 13:10:19 +01:00
Asger F 6364f8bbf7 JS: Change notes for jump-to-def and documentation improvements 2019-08-26 12:55:14 +01:00
semmle-qlci 30921d5ee7
Merge pull request #1817 from taus-semmle/python-change-notes-1.22 
Approved by felicity-semmle
 2019-08-25 13:28:14 +01:00
Taus Brock-Nannestad f08d8573c7 Address review comments and add missing notes. 2019-08-25 13:55:42 +02:00
semmle-qlci a22ada1289
Merge pull request #1819 from jbj/1.22-changenote 
Approved by felicity-semmle
 2019-08-24 18:55:41 +01:00
yh-semmle 2590019058
Merge pull request #1815 from felicity-semmle/1.22/java-finalize-change-notes 
Java 1.22: Minor tidy up to release notes
 2019-08-24 13:03:41 -04:00
Jonas Jensen 83e0a65c71 C++: improved wording 2019-08-24 17:09:58 +02:00
Jonas Jensen e379a60142 C++: Change note for flow through fields 2019-08-24 16:53:46 +02:00
Jonas Jensen 1900734484 C++: Reorganize the data flow change note 
This groups the change notes that concern the `DataFlow` library and
clarifies the change notes that concern the two different
`TaintTracking` libraries.
 2019-08-24 16:49:39 +02:00
semmle-qlci e37751e365
Merge pull request #1816 from felicity-semmle/1.22/js-finalize-change-notes 
Approved by asger-semmle
 2019-08-24 14:52:41 +01:00
Taus Brock-Nannestad 76c0113155 Python: Update change note for 1.22. 2019-08-24 15:32:26 +02:00
Tom Hvitved f17c670f90
Merge pull request #1814 from felicity-semmle/1.22/csharp-finalize-change-notes 
C# 1.22: Finalize change notes
 2019-08-24 14:59:10 +02:00
Asger F 28d0e890a8 JS: Add change note about CHA 2019-08-24 13:23:34 +01:00
Felicity Chapman 71ac4003f5 Finalize release notes 2019-08-24 12:30:33 +01:00
Felicity Chapman 64dbb88efe Minor tidy up to release notes 2019-08-24 12:10:53 +01:00
Geoffrey White c164d9390c
Add a note about QLDoc comments 
The changes aren't finished in this release, but there widespread enough we should acknowledge them.

Originally https://github.com/Semmle/ql/pull/1812.
 2019-08-24 11:48:07 +01:00
Felicity Chapman 88a6cc0914
Update change-notes/1.22/analysis-cpp.md 
Co-Authored-By: Nick Rolfe <nickrolfe@gmail.com>
 2019-08-24 11:40:38 +01:00
Felicity Chapman 9ccb0af133 Tidy up release notes 2019-08-24 11:37:07 +01:00
Felicity Chapman 22833251db Minor tidying up 2019-08-24 10:55:50 +01:00
Felicity Chapman 7a6f33890f Fix sort order for table 2019-08-24 10:48:42 +01:00
semmle-qlci af469fdeb8
Merge pull request #1773 from xiemaisi/js/undocumented-parameter-precision 
Approved by esben-semmle
 2019-08-23 21:29:10 +01:00
Anders Schack-Mulligen 66ea66582e Java/C#/C++: Add change notes for in/out barriers and barrierguards. 2019-08-23 11:42:07 +02:00
Calum Grant ff20a2ceb9
Merge pull request #1761 from hvitved/csharp/dataflow/fields 
C#: Data flow through fields
 2019-08-22 20:46:00 +01:00
Tom Hvitved ef6cf57597 C#: Add change note 2019-08-22 10:51:31 +02:00
Jonas Jensen 846e3734ce C++: Change note for recursion prevention 2019-08-21 13:12:48 +02:00
Jonas Jensen bc702debf9 C++/Java: Change notes for Configuration2 rename 2019-08-20 13:46:04 +02:00
Max Schaefer d105de81a3 JavaScript: Raise precision of `UndocumentedParameter` to `high`. 
This is more consistent with the other JSDoc queries. Results are still not shown on LGTM by default, but the query can now be enabled selectively for projects that care about JSDoc.
 2019-08-20 09:32:00 +01:00
yh-semmle 7bfed6e517 Java: add change note for `VCS.qll` removal 2019-08-18 15:37:25 -04:00
Anders Schack-Mulligen c99d0e7bd5 Java: Add change note. 2019-08-13 16:59:59 +02:00
Anders Schack-Mulligen de13d0cced Java: Adjust change note. 2019-08-12 10:39:59 +02:00
Anders Schack-Mulligen 079b453f39 Java: Add change note. 2019-08-09 13:04:34 +02:00
Nick Rolfe 257daddf3b
Merge pull request #1702 from mgrettondann/cpp-add-thread_local-support-external 
C++: add thread_local support
 2019-08-06 14:51:27 +01:00
semmle-qlci 77eac2c980
Merge pull request #1687 from esben-semmle/js/hide-conflicting-html-attribute 
Approved by xiemaisi
 2019-08-06 11:38:33 +01:00
Matthew Gretton-Dann a733625646 C++: Add Variable.isThreadLocal() 2019-08-06 11:22:26 +01:00
Rebecca Valentine 9d2061b439
Merge pull request #1669 from markshannon/python-better-handling-unknown-decorators 
Python: Treat the result of calling a missing module member as 'unknown'.
 2019-08-05 14:30:00 -07:00
Esben Sparre Andreasen c4eb258f5b JS: lower precision of js/conflicting-html-attribute 2019-08-05 09:22:10 +02:00
Luke Cartey 54d01bdeff
Merge pull request #1648 from hvitved/csharp/unchecked-return-lambda 
C#: Fix false positives in `cs/unchecked-return-value`
 2019-08-02 21:48:38 -07:00
semmle-qlci 635a8edacc
Merge pull request #1676 from xiemaisi/js/more-tests-classification 
Approved by esben-semmle
 2019-08-02 14:02:24 +01:00
Max Schaefer 97c0c97b28 JavaScript: Classify `__mocks__` and `__tests_` as tests. 
These are conventions used by jest: https://jestjs.io/docs/en/manual-mocks#mocking-user-modules.
 2019-08-02 11:15:02 +01:00
semmle-qlci bb4f00d770
Merge pull request #1015 from esben-semmle/js/cli-cli 
Approved by xiemaisi
 2019-08-02 09:57:19 +01:00
Esben Sparre Andreasen 90862fea99 JS: whitelist trivial throwers in js/superfluous-trailing-arguments 2019-08-01 11:49:43 +02:00
Mark Shannon ebd5829bfb Python: Treat the result of calling a missing module member as 'unknown'. 2019-08-01 10:37:41 +01:00
Esben Sparre Andreasen bf4a324a86 JS: add query js/indirect-command-line-injection 2019-07-31 09:24:25 +02:00
Max Schaefer 3e6629d007 JavaScript: Deprecate multi-argument `isBarrier` and `isSanitizer` predicates. 
We informally deprecated them in 1.21, this commit deprecates them properly and removes support from the implementation. The predicates themselves will be removed in a future release.
 2019-07-30 16:32:08 +01:00
Tom Hvitved 5c127ef20d C#: Fix false positives in `cs/unchecked-return-value` 2019-07-29 17:32:21 -07:00
semmle-qlci 143016ed96
Merge pull request #1635 from xiemaisi/js/dont-taint-for-in 
Approved by asger-semmle
 2019-07-26 08:32:14 +01:00
Robert Marsh 05cad96086
Merge pull request #1605 from geoffw0/bitwiseneg 
CPP: Make BitwiseSignCheck.ql more accurate
 2019-07-24 12:33:40 -07:00
Robert Marsh fa43ae241d
Merge pull request #1615 from geoffw0/exprowninit 
CPP: Test + workaround for UseInOwnInitializer.ql
 2019-07-24 12:13:24 -07:00