github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
12 708 коммитов 1 534 Ветки 130 Теги 471 MiB
Граф коммитов

12708 Коммитов

Автор SHA1 Сообщение Дата
Asger Feldthaus f49b36aec7 JS: Change note 2020-05-19 09:52:26 +01:00
Asger Feldthaus 91b9e95010 JS: Fix join ordering in analysis of add expressions 2020-05-18 22:45:59 +01:00
Asger Feldthaus 6a37e4b7a3 JS: Cache clobberedProp 2020-05-18 22:45:59 +01:00
Asger Feldthaus 5213c511b9 JS: Improve perf of GlobalVarUse.isIncomplete 2020-05-18 22:45:59 +01:00
Asger Feldthaus 7d9923038e JS: Fix perf issue from overriding isIncomplete 2020-05-18 22:45:59 +01:00
Asger Feldthaus e58683769d JS: Fix bad join order in exploratoryBoundInvokeStep 2020-05-18 22:45:59 +01:00
Asger Feldthaus 9581bb52cb JS: Update test output 2020-05-18 22:45:59 +01:00
Asger Feldthaus 430bf2da8a JS: Fix whitelisting in UselessConditional 2020-05-18 22:45:56 +01:00
Asger Feldthaus 1d994b017f JS: Update type inference 2020-05-18 22:42:12 +01:00
Asger Feldthaus d5d08da545 JS: Update getEnclosingExpr 2020-05-18 22:42:12 +01:00
Asger Feldthaus 12cc228946 JS: Update getFallbackTypeAnnotation 2020-05-18 22:42:12 +01:00
Asger Feldthaus b06cd6db30 JS: Update Node.isIncomplete 2020-05-18 22:42:12 +01:00
Asger Feldthaus 5568f0e182 JS: Pass local arguments to parameter value node, not SSA node 2020-05-18 22:34:42 +01:00
Asger Feldthaus dc2d6a5fd9 JS: Make ValueNode the ParameterNode with a step to the SSA node 2020-05-18 22:34:42 +01:00
Asger Feldthaus 37ddccfa15 JS: Merge DestructuringPatternNode into ValueNode 2020-05-18 22:29:33 +01:00
Asger Feldthaus b3161b1c41 JS: Factor TNode into a separate file 2020-05-18 22:29:33 +01:00
Asger Feldthaus d9123833af JS: Avoid misoptimization in mayReturnImplicitValue 2020-05-18 22:29:33 +01:00
Asger Feldthaus eddbdffe62 JS: Add more tests for implicit returns 2020-05-18 22:29:33 +01:00
Asger Feldthaus 6a63f5b677 JS: Avoid bad join order in ImplicitProcessImport 2020-05-18 22:29:32 +01:00
Asger Feldthaus c869812563 JS: Add UselessConditional test 2020-05-18 22:29:32 +01:00
semmle-qlci 192bf918c3
Merge pull request #3488 from asger-semmle/js/sql-type-tracking 
Approved by erik-krogh
 2020-05-18 19:57:32 +01:00
Asger F 96d6115452
Merge branch 'master' into js/sql-type-tracking 2020-05-18 15:58:42 +01:00
semmle-qlci 0da1e68462
Merge pull request #3498 from max-schaefer/js/remote-exec 
Approved by esbena
 2020-05-18 14:17:20 +01:00
Asger F a9983fdb49
Update javascript/ql/src/semmle/javascript/frameworks/SQL.qll 
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
 2020-05-18 13:23:22 +01:00
Max Schaefer bdd778f989 JavaScript: Add change note. 2020-05-18 12:08:36 +01:00
Max Schaefer 6797fec1a3 JavaScript: Add more models of packages that execute commands over SSH. 2020-05-18 12:08:14 +01:00
semmle-qlci 14664be467
Merge pull request #3468 from p0/imp/nodejs-vm-sinks 
Approved by esbena
 2020-05-18 11:10:13 +01:00
Asger Feldthaus a18e0b37cf JS: simplify sequelize model 2020-05-18 09:34:17 +01:00
Asger F f52c827966
Apply suggestions from code review 
Base type of EscapingSanitizer

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
 2020-05-18 09:31:09 +01:00
Asger F ffb22c061a
Apply suggestions from code review 
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
 2020-05-18 09:28:22 +01:00
semmle-qlci 6041d52936
Merge pull request #3424 from asger-semmle/js/express-param-handler 
Approved by esbena
 2020-05-18 08:48:24 +01:00
semmle-qlci 135eae9895
Merge pull request #3483 from esbena/js/fix-qhelp-FNs 
Approved by asgerf
 2020-05-18 08:47:05 +01:00
semmle-qlci 0230b79efc
Merge pull request #3391 from erik-krogh/SplitFPs 
Approved by esbena
 2020-05-18 08:46:26 +01:00
semmle-qlci 8d41ce1630
Merge pull request #3480 from erik-krogh/moreSlip 
Approved by esbena
 2020-05-16 21:17:27 +01:00
Mathias Vorreiter Pedersen a42d80aa14
Merge pull request #3481 from dbartol/github/codeql-c-analysis-team/69 
C++/C#: Allow memory operands to lack a definition
 2020-05-16 11:53:00 +02:00
Asger Feldthaus 897a3e39c9 JS: Autoformat 2020-05-16 09:37:16 +01:00
Asger Feldthaus 0171c9e10c JS: Autoformat 2020-05-16 09:25:18 +01:00
Asger Feldthaus d279845a43 JS: Minor fixes 2020-05-16 09:24:53 +01:00
yo-h 4f00e40257
Merge pull request #3474 from aschackmull/java/string-formatted 
Java: Add taint steps for String.formatted.
 2020-05-15 22:04:36 -04:00
yo-h 69ab158910
Merge pull request #3473 from aschackmull/java/switchexpr 
Java: Extend library support for switch expressions.
 2020-05-15 20:46:37 -04:00
Dave Bartolomeo 96c87b309b C++/C#: Use `unique` to get a better join order 
The previous changes made the optimizer choose a bad join order for the RHS of the antijoin in `addressOperandAllocationAndOffset`. Once again, `unique` to the rescue.
 2020-05-15 17:36:43 -04:00
Asger Feldthaus 435f9ea09f JS: Change note 2020-05-15 17:27:30 +01:00
Asger Feldthaus 5249e84359 JS: Type track spanner model 2020-05-15 17:27:30 +01:00
Asger Feldthaus d225715828 JS: Type track mssql model 2020-05-15 17:27:30 +01:00
Asger Feldthaus 6dcee5a0ef JS: Type track sqlite model 2020-05-15 17:27:30 +01:00
Asger Feldthaus 84cd02cf01 JS: Type track pg model 2020-05-15 17:27:27 +01:00
Asger Feldthaus f7771f17d1 JS: Type track mysql model 2020-05-15 17:27:27 +01:00
Asger Feldthaus 3e9849b7c4 JS: Type track sequelize model 2020-05-15 17:27:24 +01:00
Jonas Jensen b08de6c051
Merge pull request #3482 from MathiasVP/getlim-taint-source 
C++: Add GetDelim as taint step
 2020-05-15 15:54:29 +02:00
Calum Grant 5787871734
Merge pull request #3351 from hvitved/csharp/unification-nested-types 
C#: Teach unification library about nested types
 2020-05-15 14:11:00 +01:00