github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
14 413 коммитов 1 542 Ветки 132 Теги 495 MiB
Граф коммитов

14413 Коммитов

Автор SHA1 Сообщение Дата
Nick Rolfe c7b668193b
Merge pull request #3929 from igfoo/static_assert 
C++: Give static assertions an enclosing element
 2020-07-15 18:03:26 +01:00
Robert Marsh 7dd2677746
Merge pull request #3950 from MathiasVP/simple-range-analysis-unsigned-multiplication-tests 
C++: Add test cases for range analysis for unsigned multiplication
 2020-07-14 14:18:06 -07:00
Mathias Vorreiter Pedersen 174b30461a C++: Fix syntax error in testfile 2020-07-14 19:47:21 +02:00
Calum Grant dcff87fb2e
Merge pull request #3366 from hvitved/csharp/dataflow/arrays 
C#: Precise data-flow for collections
 2020-07-14 17:12:29 +01:00
Mathias Vorreiter Pedersen 834ad92453 C++: Add test cases for unsigned multiplication and fix missing return value in existing tests 2020-07-14 16:57:47 +02:00
semmle-qlci 0bee0687cb
Merge pull request #3911 from RasmusWL/python-call-graph-tracing 
Approved by tausbn
 2020-07-14 15:33:45 +01:00
Ian Lynagh 616bad7b5c C++: Add an upgrade script 2020-07-14 13:53:46 +01:00
Ian Lynagh c254de464a C++: Update stats following `static_asserts` change 2020-07-14 13:53:01 +01:00
Rasmus Wriedt Larsen f1601d643a Python: autoformat 2020-07-14 14:12:56 +02:00
Rasmus Wriedt Larsen 1d9c3b3bcd Python: call-graph tracing: callable => callee 
to use consistent naming
 2020-07-14 14:12:02 +02:00
semmle-qlci f8c03dcae6
Merge pull request #3924 from RasmusWL/python-metrics-queries-for-dist-compare 
Approved by tausbn
 2020-07-14 13:03:02 +01:00
Rasmus Wriedt Larsen ee42d0839e Python: Rename target => callee 
To use a standardised naming :)
 2020-07-14 11:26:05 +02:00
Rasmus Wriedt Larsen d913d33289 Python: Autoformat 2020-07-14 11:21:55 +02:00
Taus ee13e87f3b
Merge pull request #3947 from RasmusWL/python-fix-tests 
Python: Make experimental/library-tests/CallGraph pass for Python 2
 2020-07-13 22:10:34 +02:00
Arthur Baars 67b6018079
Merge pull request #3729 from luchua-bc/java-hardcoded-aws-credentials 
Java: Hardcoded AWS credentials
 2020-07-13 18:04:42 +02:00
Rasmus Wriedt Larsen dc7d92ba2f Python: Autoformat experimental/library-tests/CallGraph/ 2020-07-13 16:20:02 +02:00
Rasmus Wriedt Larsen 83bd14b687 Python: Make experimental/library-tests/CallGraph pass for Python 2 
The import doesn't actually work the intended way, so running
```
$ python python/ql/test/experimental/library-tests/CallGraph/test.py
```

will procude no output. but our extractor will extract the things we need, so
for a quick fix this will need to suffice.
 2020-07-13 14:52:28 +02:00
luchua-bc 12803f1f53 Merge Hardcoded AWS Credentials check into the mail source folder 2020-07-13 12:22:34 +00:00
Geoffrey White 6519629472
Merge pull request #3942 from MathiasVP/remove-abstract-preprocessor 
C++: Remove abstract classes from Preprocessor.qll
 2020-07-13 10:00:50 +01:00
Rasmus Wriedt Larsen 3127bb27d0 Python: Remove strange empty line 2020-07-13 10:55:43 +02:00
Rasmus Wriedt Larsen 0b6c3ff99d Python: Don't use PointsTo module name in metrics query 
To avoid confusion with the normal PointsTo module in
python/ql/src/semmle/python/pointsto/PointsTo.qll
 2020-07-13 10:46:03 +02:00
Rasmus Wriedt Larsen a7d23063de
Python: Fix grammar 
Co-authored-by: Taus <tausbn@github.com>
 2020-07-13 10:44:19 +02:00
Mathias Vorreiter Pedersen d6da318645 C++: Remove abstract classes from Preprocessor.qll 2020-07-10 21:55:14 +02:00
Dave Bartolomeo 912c50a881
Merge pull request #3937 from MathiasVP/replace-result-type-with-ir-result-type 
C++: Replace getResultType() with getResultIRType()
 2020-07-10 13:37:30 -04:00
Geoffrey White 456a05ecd5
Merge pull request #3940 from MathiasVP/remove-abstract-stmt 
C++: Remove abstract classes and predicates from Stmt.qll
 2020-07-10 16:41:45 +01:00
Mathias Vorreiter Pedersen 7cc83da97a C++: Remove @stmt_while from the TConditionalStmt union type. 2020-07-10 15:51:34 +02:00
Taus df3eb9f9c5
Merge pull request #3790 from RasmusWL/python-add-annotated-callgraph-tests 
Python: Add annotated call-graph tests
 2020-07-10 15:38:38 +02:00
Geoffrey White 2941f413f9
Merge pull request #3931 from aeisenberg/aeisenberg/cpp-print-ast 
Add the printAst.ql contextual query for C++
 2020-07-10 14:08:25 +01:00
Mathias Vorreiter Pedersen 567984af3d C++: Remove abstract classes from Stmt.qll 2020-07-10 14:21:56 +02:00
Anders Schack-Mulligen a1d272e870
Merge pull request #3918 from aibaars/organise-container-flow 
Java: Clean up ContainerFlow, consider more methods
 2020-07-10 14:19:44 +02:00
Arthur Baars 43b61038e9 Drop Map.merge as taint step 2020-07-10 13:00:14 +02:00
Robert Marsh 05685cc896
Merge pull request #3919 from dbartol/dbartol/IgnoreAutoBuilder 
C++: Add `.gitignore` for autobuilder
 2020-07-09 15:02:52 -07:00
Andrew Eisenberg 782759d58e Add the printAst.ql contextual query for C++ 
This query will be used by the VS Code extension for viewing
ASTs of C/C++ files.
 2020-07-09 08:28:49 -07:00
Arthur Baars 0d33a77ee3 Fix modelling of Stack.push 
Stack.push(E) returns its argument, it does not propagate taint from
the stack to the return value.
 2020-07-09 16:16:29 +02:00
Anders Schack-Mulligen 879551fc6a
Merge pull request #3936 from aibaars/object-clone 
Java: model Object.clone
 2020-07-09 16:09:01 +02:00
Anders Schack-Mulligen c8b9b779ae
Merge pull request #3927 from rvermeulen/java-importable-cwe-601 
Java: Move `UrlRedirectSink` into importable library
 2020-07-09 16:03:29 +02:00
Anders Schack-Mulligen 99a4f8fd0b
Merge pull request #3926 from rvermeulen/java-importable-cwe-089 
Java: Move `QueryInjectionSink` into importable library
 2020-07-09 16:00:56 +02:00
Mathias Vorreiter Pedersen 002f930dba C#: Sync identical files 2020-07-09 15:54:42 +02:00
Jonas Jensen 2fa54552f0
Merge pull request #3914 from geoffw0/cc_followup 
C++: Repair swap taint tests
 2020-07-09 15:54:40 +02:00
Mathias Vorreiter Pedersen 85a8280b30 C++: Replace getResultType() with getResultIRType() in IR dataflow 2020-07-09 15:54:15 +02:00
Mathias Vorreiter Pedersen 7029739691 C++: Replace getResultType() with getResultIRType() in IR range analysis 2020-07-09 15:53:54 +02:00
Mathias Vorreiter Pedersen a405a95b68 C++: Introduce isSigned() and isUnsigned() predicates on IRIntegerType to mirror IntegralType 2020-07-09 15:52:09 +02:00
Jonas Jensen 277185a792
Merge pull request #3925 from geoffw0/rangefixup 
C++: Add getFullyConverted() where missing in SimpleRangeAnalysis
 2020-07-09 15:45:58 +02:00
Remco Vermeulen 7428a8cd95 Add missing java import 2020-07-09 15:06:26 +02:00
Remco Vermeulen d3db4fa5b2 Add missing java import 2020-07-09 15:04:16 +02:00
Remco Vermeulen 54d6c8b5f4 Mark ServletUrlRedirectSink private 2020-07-09 15:03:51 +02:00
Arthur Baars e183171fea Java: model Object.clone 2020-07-09 14:50:29 +02:00
Remco Vermeulen 1212feab28 Add file-level qldoc 2020-07-09 14:11:59 +02:00
Remco Vermeulen 99228d8bc2 Optimize imports 2020-07-09 14:09:39 +02:00
Remco Vermeulen ba9f3e2a1e Join ServletUrlRedirectSink with UrlRedirectSink 2020-07-09 14:08:43 +02:00