github / codeql Public

35 Pull requests merged by 17 people

• Ruby: fix bug with captured variable reads in lambdas

  #8517 merged Mar 23, 2022

• Add query for double-fetch vulnerability

  #8461 merged Mar 23, 2022

• JS: Add dedicated API graph label for the receiver, instead of parameter -1

  #8523 merged Mar 23, 2022

• C++: Fix expensive getWideCharType().

  #8479 merged Mar 23, 2022

• JS: Bump version numbers of ML-powered packs after 0.2.0 release

  #8536 merged Mar 23, 2022

• C#: Model generator improvements and more tests

  #8451 merged Mar 23, 2022

• Python: Fix syntax error in `with` test output

  #8289 merged Mar 23, 2022

• C++: Consider columns in `Location.isBefore`

  #8525 merged Mar 23, 2022

• C++: Use flow states in `cpp/command-line-injection`

  #8491 merged Mar 23, 2022

• Python/JS/Ruby: Shared concepts scaffolding

  #8476 merged Mar 23, 2022

• C++: Add internal `ExtractionError` query

  #8526 merged Mar 22, 2022

• Fix broken links

  #8528 merged Mar 22, 2022

• Python: switch to shared implementation of IncompleteHostnameRegExp.ql

  #8486 merged Mar 22, 2022

• JS: filter away reads of .src that end in a URL sink for js/xss-through-dom

  #8509 merged Mar 22, 2022

• C++: Make getUnderlyingType nomagic

  #8507 merged Mar 22, 2022

• Python: Add data-flow through Django ORM models

  #8061 merged Mar 22, 2022

• C#: Refactor asPartial to allow re-use.

  #8466 merged Mar 22, 2022

• Ruby: sync ExponentialBackTracking.qll

  #8521 merged Mar 22, 2022

• Revert "Fix MaD workflows to be more resilient to missing files"

  #8519 merged Mar 22, 2022

• Fix MaD workflows to be more resilient to missing files

  #8294 merged Mar 22, 2022

• Ruby: Add rb/http-to-file-access query

  #8224 merged Mar 22, 2022

• Ruby: Add rb/tainted-format-string query

  #8272 merged Mar 21, 2022

• Fix dead link in `CONTRIBUTING.md`

  #8512 merged Mar 21, 2022

• Release preparation for version 2.8.4

  #8510 merged Mar 21, 2022

• C#: Deprecate the StructuralComparisonConfiguration interface and use sameGvn instead.

  #8391 merged Mar 21, 2022

• Ruby: add `rb/clear-text-storage-sensitive-data` query

  #8395 merged Mar 21, 2022

• JS: fix context sensitivity bug in store-load matching

  #8478 merged Mar 21, 2022

• C++: Add additional command line injection tests

  #8483 merged Mar 18, 2022

• Ruby: Use taint tracking instead of type tracking to define `regExpSource`

  #8332 merged Mar 18, 2022

• Ruby: IncompleteHostnameRegExp.ql

  #7917 merged Mar 18, 2022

• Java: Add Guard Classes for checking OS & unify System Property Access

  #8032 merged Mar 18, 2022

• Ruby: initial prototype of models-as-data

  #8254 merged Mar 18, 2022

• Dataflow: Flow-state changing steps should always be in path explanations

  #8474 merged Mar 18, 2022

• QL: expand redundant-inline-cast, and rename to redundant-cast

  #8473 merged Mar 17, 2022

• JS: Refactor the XSS / Client-side-url queries

  #8304 merged Mar 17, 2022

29 Pull requests opened by 20 people

• JS: recognize string replacement chains as scheme checks in js/incomplete-url-scheme-check

  #8481 opened Mar 18, 2022

• C#: Capture[Source|Sink]Models utility.

  #8482 opened Mar 18, 2022

• Ruby: Rework `getConstantValue` implementation

  #8484 opened Mar 18, 2022

• Ruby: refactor regex libraries

  #8489 opened Mar 18, 2022

• [Java]: Add precondition support for testing library asserts

  #8493 opened Mar 19, 2022

• Java: Delayed unsafe deserialization

  #8501 opened Mar 19, 2022

• Java/C#: Generalize script for generating flow models.

  #8506 opened Mar 21, 2022

• Java: Add ErrorExpr, ErrorStmt

  #8508 opened Mar 21, 2022

• Python: Use `Query.qll` suffix for dataflow configuration definitions

  #8511 opened Mar 21, 2022

• Post-release preparation for codeql-cli-2.8.4

  #8514 opened Mar 21, 2022

• C++: generate IR for global variables with initializers

  #8515 opened Mar 21, 2022

• Python: Reduce duplicated alerts for flask sources

  #8516 opened Mar 21, 2022

• Ruby: Fix missing API Graphs result

  #8518 opened Mar 22, 2022

• Fix MaD workflows to be more resilient to missing files

  #8520 opened Mar 22, 2022

• ReDoS refactorizations

  #8522 opened Mar 22, 2022

• Ruby: Minor change of SSRF concept

  #8524 opened Mar 22, 2022

• Java: Fix harmless search-replace mistake

  #8529 opened Mar 22, 2022

• InlineExpectationsTest: Allow URLs as values

  #8530 opened Mar 22, 2022

• JS/Ruby/Python: move more code into ReDoSUtil.qll

  #8532 opened Mar 22, 2022

• JS/Ruby: Represent non-positional arguments with Argument/Parameter tokens

  #8533 opened Mar 23, 2022

• C++: Handle bitwise copies in copy constructors

  #8534 opened Mar 23, 2022

• Ruby: fix location of setter-call argument

  #8535 opened Mar 23, 2022

• Java: Improvements to UnsafeAndroidAccess

  #8537 opened Mar 23, 2022

• Ruby: Fix bad join-order in `RegExpTerm::hasLocationInfo`

  #8538 opened Mar 23, 2022

• Rename ql-for-ql-build.yml to var5-ql-for-ql-build.yml

  #8539 opened Mar 23, 2022

• Python: Add call graph meta-query

  #8540 opened Mar 23, 2022

• Java: Promote HashWithoutSalt query

  #8541 opened Mar 23, 2022

• C++: Use `iterated (post)dominance frontier` algorithm in `IRBlock`

  #8542 opened Mar 23, 2022

• Ruby: Fix bad name of lambda in test

  #8543 opened Mar 23, 2022

5 Issues closed by 5 people

• LGTM alert beyond response limit!

  #7889 closed Mar 23, 2022

• CodeQL for Go language guide has broken links

  #8513 closed Mar 22, 2022

• Can I define only sink and not source? I want to use this way to list the data flow diagram

  #8480 closed Mar 22, 2022

• Error reporting using vscode ast viewer

  #8472 closed Mar 18, 2022

• Detecting C-style variadic function

  #8468 closed Mar 17, 2022

10 Issues opened by 7 people

• Is there any way to see the data flow graph of the query results?

  #8527 opened Mar 22, 2022

• LGTM.com - false positive - [cs/dereferenced-value-may-be-null]

  #8505 opened Mar 20, 2022

• LGTM.com - false positive - [cs/comparison-of-identical-expressions]

  #8504 opened Mar 20, 2022

• LGTM.com - false positive - [cs/useless-assignment-to-local] in `for` loop

  #8503 opened Mar 20, 2022

• Running codeql on prebuild-container

  #8502 opened Mar 20, 2022

• C/C++ data flow analysis doesn't produce paths

  #8498 opened Mar 19, 2022

• [CPP][Questions]No effective API to qeury macro used in function parameter declaration

  #8497 opened Mar 19, 2022

• False Negative: Guards in while loop with break fail to 'control' variable usage outside

  #8490 opened Mar 18, 2022

• LGTM.com - false positive: The 'const' modifier has no effect on return types. The 'const' modifying the return type can be removed.

  #8488 opened Mar 18, 2022

• LGTM.com - false positive: 'Function create should return a value of type fix but does not return a value here'

  #8487 opened Mar 18, 2022

28 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• en CPP: Add query for CWE-476: NULL Pointer Dereference when using exception handling blocks

  #8245 commented on Mar 23, 2022 • 15 new comments

• C#: Extensive use of stubs in testcases.

  #8279 commented on Mar 17, 2022 • 7 new comments

• new expression parsing failure

  #8467 commented on Mar 18, 2022 • 6 new comments

• Add query to detect ZipSlip

  #8004 commented on Mar 23, 2022 • 6 new comments

• JS: Add StoredXss XssThroughDom to all QL required for endpoint pipeline

  #8392 commented on Mar 23, 2022 • 6 new comments

• Ruby: Add `rb/weak-cryptographic-algorithm` query

  #8421 commented on Mar 20, 2022 • 5 new comments

• Sign, Modulus, and Range analysis for C++ using sharable semantic layer

  #8445 commented on Mar 21, 2022 • 4 new comments

• Java: CWE-378: Temp Directory Hijacking Race Condition Vulnerability

  #4473 commented on Mar 18, 2022 • 3 new comments

• Java: Add ReDoS queries

  #7723 commented on Mar 23, 2022 • 2 new comments

• [CPP][Linux Kernel]Add ql to detect CVE-2017-5123

  #8423 commented on Mar 22, 2022 • 2 new comments

• Python: Add CSV injection model

  #8443 commented on Mar 24, 2022 • 2 new comments

• LGTM.com - TypeScript unused import false positive

  #7490 commented on Mar 23, 2022 • 1 new comment

• How to extract source files when using a special compiler (e.g. TMS320C2000 C/C++ Compiler)?

  #8453 commented on Mar 24, 2022 • 1 new comment

• QL: add unused-field query

  #7763 commented on Mar 17, 2022 • 1 new comment

• Ruby: separate constant propagation of regexps from strings

  #7985 commented on Mar 22, 2022 • 1 new comment

• Python: Fix bad `fastTC` in `ASTNode::contains`

  #8028 commented on Mar 17, 2022 • 1 new comment

• JS: configure MaD report generators to include javascript

  #8290 commented on Mar 22, 2022 • 1 new comment

• C++: New query cpp/potential-system-data-exposure

  #8318 commented on Mar 22, 2022 • 1 new comment

• Incomplete url string sanitization

  #8354 commented on Mar 18, 2022 • 1 new comment

• [Java]: Best Practice InterruptedException handling

  #8469 commented on Mar 17, 2022 • 1 new comment

• Java: Fix incorrect CSV models; add validation predicate

  #7034 commented on Mar 21, 2022 • 0 new comments

• Merge codeql-go

  #7302 commented on Mar 23, 2022 • 0 new comments

• Python: Cache more predicates and improve performance.

  #7339 commented on Mar 22, 2022 • 0 new comments

• Data flow: Use parameterized module to share code between pruning stages

  #8301 commented on Mar 22, 2022 • 0 new comments

• python: minimal CSRF implementation

  #8340 commented on Mar 23, 2022 • 0 new comments

• C#: ExternalAPI implementation for Telemetry.

  #8348 commented on Mar 18, 2022 • 0 new comments

• renaming more upper-case acronyms to PascalCase

  #8444 commented on Mar 21, 2022 • 0 new comments

• ATM: undo unsound performance optimizations

  #8470 commented on Mar 17, 2022 • 0 new comments