github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
8 634 коммитов 1 544 Ветки 131 Тег 485 MiB
Граф коммитов

8634 Коммитов

Автор SHA1 Сообщение Дата
Geoffrey White 5c87ed5ab2 CPP: Remove unused code. 2019-11-12 14:45:43 +00:00
Geoffrey White 0343bd6b9c CPP: Inline BufferAccess into NtohlArrayNoBound.qll (we'd prefer other queries to be written with the models library or Security.BufferAccess). 2019-11-12 14:44:20 +00:00
Geoffrey White f50dd84c49 CPP: Rename good and bad example files. 2019-11-12 14:09:54 +00:00
Calum Grant e990bea248 C#: Update upgrade script 2019-11-12 13:40:58 +00:00
Calum Grant 7c21ebb526 C#: Change dbscheme from nullability_member to nullability_parent 2019-11-12 13:40:58 +00:00
Calum Grant 41b441614b C#: Address review comments part 1. 2019-11-12 13:40:58 +00:00
Calum Grant fe83bac0fb C#: Fix up test output 
C#: Fix a qltest whereby a tuple type having multiple underlying types was causing an issue with the IR sanity checks.
C#: Revert more changes.
C#: Fix tests and remove dead code.
 2019-11-12 13:40:58 +00:00
Calum Grant a261cbaeef C#: Fix type ID generation from merge 2019-11-12 13:40:58 +00:00
Calum Grant ce188c0c22 C#: Autoformat 2019-11-12 13:40:58 +00:00
Calum Grant 4d13957eed C#: Modify db upgrade script 2019-11-12 13:40:58 +00:00
Calum Grant 657c839e2b C#: Change varchar to string in the dbscheme. 2019-11-12 13:40:58 +00:00
Calum Grant 61630118fe C#: Fix ql tests. 2019-11-12 13:40:58 +00:00
Calum Grant 58e14af9cd C#: Address review comments. Create a TNullability type annotation and restructure TAnnotation. 2019-11-12 13:40:58 +00:00
Calum Grant f00276a82c C#: Remove non-essential changes 2019-11-12 13:40:58 +00:00
Calum Grant a0fa7dad79 C#: Autoformat 2019-11-12 13:40:58 +00:00
Calum Grant c8225adf1b C#: Add missing file & minor fixes. 2019-11-12 13:40:58 +00:00
Calum Grant e7f5fd6b4b C#: DB upgrade script 2019-11-12 13:40:58 +00:00
Calum Grant 163b931d49 C#: Update db stats 2019-11-12 13:40:58 +00:00
Calum Grant 9fd4a9ceb6 C#: Implement NullabilityEntity to model structured nullability on the side 2019-11-12 13:40:57 +00:00
Calum Grant 61ab9431ab C#: Fix DB inconsistencies, and rework id generation. 2019-11-12 13:40:57 +00:00
Tom Hvitved 05684b350f C#: Add change note 2019-11-12 12:13:19 +01:00
Tom Hvitved 28141c9d4d C#: Teach unification library about tuple types 2019-11-12 12:09:58 +01:00
Tom Hvitved ee2496ab7c C#: Add unification tests for tuple types 2019-11-12 12:08:03 +01:00
semmle-qlci 39a45ceefe
Merge pull request #2297 from erik-krogh/returnlessAttr 
Approved by max-schaefer
 2019-11-12 10:26:12 +00:00
Geoffrey White d198b56b3a CPP: Move VirtualDispatch.qll into the controlflow directory (I don't see the point in having a subdirectory for one file, when we don't anticipate any other files ever being added there). 2019-11-12 09:55:23 +00:00
Geoffrey White 60c7cb38e8 CPP: Relocate the test as well. 2019-11-12 09:55:22 +00:00
Geoffrey White dff490e658 CPP: Remove the 'boostorg' subdirectory (these queries could be extended to support other libraries, as their names and descriptions already suggest). 2019-11-12 09:55:22 +00:00
Geoffrey White 784c3047da CPP: Merge the duplicate IgnoreReturnValueSAL.ql query into the older existing one. 2019-11-12 09:54:56 +00:00
Geoffrey White 806703b929 CPP: Relocate the test as well. 2019-11-12 09:54:55 +00:00
Geoffrey White 2b9428df32 CPP: Remove the 'Buffer Overflow' subdirectory (we have many buffer overflow queries, putting one in a special directory will only create confusion). 2019-11-12 09:54:46 +00:00
Geoffrey White b917264770 CPP: Rename NtohlArrayNoBoundOpenSource.ql -> NtohlArrayNoBound.ql (I believe the 'OpenSource' part is a remnant from the way the contributor organizes their queries). 2019-11-12 09:53:59 +00:00
Rasmus Wriedt Larsen 54246660c6 Python: Add test-case to password_in_cookie 2019-11-12 10:36:12 +01:00
Rasmus Wriedt Larsen 3ad43f32b6 Python: Add flask xss examples to flask tests 2019-11-12 10:36:10 +01:00
Jonas Jensen 18cc539c8d Merge branch 'master' into pointer-wraparound-query 2019-11-12 10:22:46 +01:00
Anders Schack-Mulligen e6d0a2eca5
Merge pull request #2215 from yh-semmle/java-remove-obsolete-queries 
Java: remove some obsolete metric queries
 2019-11-12 10:14:55 +01:00
Jonas Jensen c36b73f09c
Merge pull request #2232 from geoffw0/formatsymbols 
CPP: Fully support n$ in format strings
 2019-11-12 09:43:20 +01:00
Erik Krogh Kristensen 6f6c4c4fcc fix tests after change from tabs to spaces 2019-11-12 08:48:01 +01:00
Dave Bartolomeo 303bab61b5
Merge pull request #2289 from jbj/ConvertToNonVirtualBaseInstruction 
C++ IR: clearly distinguish between virtual and non-virtual base conversions
 2019-11-11 13:37:07 -07:00
Rasmus Wriedt Larsen 8476bc7d42 Python: correctly handle flask.make_response 
Fixes https://github.com/Semmle/ql/issues/1572

Adjust mock so it's more aligned with what the flask code actually does. Tests
were passing before, even though we didn't handle the case in real code :\
 2019-11-11 17:24:36 +01:00
Rasmus Wriedt Larsen 002190f8db Python: Autoformat flask library 2019-11-11 17:18:26 +01:00
Rasmus Wriedt Larsen a9d43a2c49 Python: Modernise flask library 2019-11-11 17:18:26 +01:00
Rasmus Wriedt Larsen edfcf39137 Python: Add flask tests from internal repo 2019-11-11 17:18:26 +01:00
Jonas Jensen ec79bfacf8
Merge pull request #2249 from geoffw0/tlsperf 
CPP: TlsSettingsMisconfiguration.ql performance and cleanup
 2019-11-11 16:47:53 +01:00
Geoffrey White a4250be72f CPP: Un-deprecate getNumArgNeeded(n). Turns out I missed a place where it's used. 2019-11-11 15:28:09 +00:00
Geoffrey White ed87f25886 CPP: Performance improvement. 2019-11-11 15:28:09 +00:00
Geoffrey White 695d4ff511 CPP: Change note. 2019-11-11 15:28:08 +00:00
Geoffrey White a9fbe221ba CPP: Try to make the predicate names and qldoc a bit more consistent. 2019-11-11 15:27:23 +00:00
Geoffrey White dff21e02db CPP: Fully support positional arguments. 2019-11-11 15:27:23 +00:00
Geoffrey White 2430bf4c83 CPP: Deprecate helper version of getNumArgNeeded. 2019-11-11 15:27:23 +00:00
Geoffrey White 27478640f2 CPP: Bring the logic for argument indices together in getFormatArgumentIndexFor. 2019-11-11 15:27:22 +00:00