59 Pull requests merged by 24 people

• KE2: Don't actually deprecate WhenBranch.getCondition() yet

  #18096 merged Nov 26, 2024

• KE2: Remove some old debugging code

  #18095 merged Nov 26, 2024

• Java: add SHA-384 to list of secure crypto algorithms

  #18087 merged Nov 26, 2024

• java: inline range test

  #17997 merged Nov 26, 2024

• Rust: Data flow through variants

  #18078 merged Nov 26, 2024

• JS: Fix jump steps generated by IIFEs and exception flow

  #18043 merged Nov 26, 2024

• Add script and VSCode task for creating change notes

  #18086 merged Nov 26, 2024

• Rust: rename MatchExpr.expr to scrutinee in all layers

  #18107 merged Nov 26, 2024

• Rust: Add some flow source models

  #18069 merged Nov 26, 2024

• Rust: Change &String to &str

  #18105 merged Nov 26, 2024

• Rust: Add unresolved macro calls diagnostic

  #17940 merged Nov 25, 2024

• Codegen/Rust: allow renaming in QL

  #18094 merged Nov 25, 2024

• C++: Add more CommandExecutionFunctions

  #18093 merged Nov 25, 2024

• Java: add SHA3 family to list of secure crypto algorithms

  #18084 merged Nov 25, 2024

• Rust: Generate ParamBase, a superclass of Param and SelfParam

  #18092 merged Nov 25, 2024

• JS: upgrade TypeScript to 5.7

  #17953 merged Nov 25, 2024

• KE2: Add more dbscheme comments

  #18081 merged Nov 25, 2024

• Rust: Use extended canonical paths to resolve calls in data flow

  #18070 merged Nov 25, 2024

• Rust: add some toString implementations

  #18035 merged Nov 25, 2024

• KE2: Extract when expressions

  #18058 merged Nov 25, 2024

• Java: Improve weak crypto query

  #17869 merged Nov 24, 2024

• C++: Implement compilation_build_mode

  #18080 merged Nov 22, 2024

• C++: Remove FPs from cpp/too-few-arguments

  #17919 merged Nov 22, 2024

• KE2: Small refactoring

  #18075 merged Nov 22, 2024

• KE2: Add warnings-as-error to build system, but commented out for now

  #18076 merged Nov 22, 2024

• KE2: Reenable more code for ExprParent.stmt

  #18077 merged Nov 22, 2024

• KE2: Remove some dead code

  #18079 merged Nov 22, 2024

• Rust: fix regression in getFormat indexing

  #18074 merged Nov 22, 2024

• Rust: fix parent/child relationship for format entities

  #18071 merged Nov 22, 2024

• Rust: Extend data flow library instantiation for global data flow

  #18056 merged Nov 22, 2024

• Revert "C++: Implement compilation_build_mode"

  #18072 merged Nov 22, 2024

• Post-release preparation for codeql-cli-2.19.4

  #18067 merged Nov 22, 2024

• KE2: Use the right language version

  #18064 merged Nov 22, 2024

• KE2: Start working on KtTypes

  #18031 merged Nov 22, 2024

• C++: Implement compilation_build_mode

  #18009 merged Nov 22, 2024

• Python: Add some test cases for flow involving global and captured variables

  #18037 merged Nov 22, 2024

• Delete Automodel Queries

  #18022 merged Nov 22, 2024

• Rust: SQL Injection Query

  #18025 merged Nov 21, 2024

• CI: Set --ram in compile-queries.yml

  #18053 merged Nov 21, 2024

• JS: Added support for [Object, Map].groupBy ES2024 feature

  #18008 merged Nov 21, 2024

• Release preparation for version 2.19.4

  #18065 merged Nov 21, 2024

• Revert "Revert "Post-release preparation for codeql-cli-2.19.4""

  #18063 merged Nov 21, 2024

• Revert "Merge pull request #18036 from github/release-prep/2.19.4"

  #18062 merged Nov 21, 2024

• Revert "Merge pull request #17938 from MathiasVP/fix-fp-in-missing-check-scanf-fixing-take-2"

  #18057 merged Nov 21, 2024

• Revert "Post-release preparation for codeql-cli-2.19.4"

  #18059 merged Nov 21, 2024

• JS: Added taint-step String.prototype.toWellFormed ES2023 feature

  #18047 merged Nov 21, 2024

• Update CSV framework coverage reports

  #18051 merged Nov 21, 2024

• Rust: Add (auto-generated) CFG node wrapper classes

  #17918 merged Nov 21, 2024

• Data flow: Track call contexts in parameterValueFlow

  #17876 merged Nov 21, 2024

• Add Deserialize() and Deserialize<T> to System.Web.Serialization stubs

  #18052 merged Nov 21, 2024

• Rust: Include self parameters in the CFG

  #18041 merged Nov 21, 2024

• JS: Added support for Array.prototype.[findLastIndex, findLast] ES2022 feature

  #18005 merged Nov 21, 2024

• KE2: Fix build

  #18027 merged Nov 20, 2024

• Util: Refactor DenseRank implementation

  #18042 merged Nov 20, 2024

• Go: reinstate models-as-data sink conversions with fixes

  #17494 merged Nov 20, 2024

• C++: Reduce number of FPs cpp/guarded-free and turn if(x) { free(x) } cases from FNs to TPs

  #17986 merged Nov 20, 2024

• BigInt GA: update docs

  #17987 merged Nov 20, 2024

• C#: Update to .NET 9

  #18033 merged Nov 20, 2024

• Update CSV framework coverage reports

  #18040 merged Nov 20, 2024

26 Pull requests opened by 17 people

• JS: Merge 'main' and implement 'speculativeTaintStep'

  #18044 opened Nov 20, 2024

• C++: Add a dataflow model for `CComBSTR`

  #18046 opened Nov 20, 2024

• Cherry-pick -> KE2: Bazel: Flip --incompatible_use_plus_in_repo_names.

  #18048 opened Nov 20, 2024

• Brodes/seh flow phase2 splitting seh edges

  #18049 opened Nov 20, 2024

• JS: Enabled Regular Expression Unicode Sets

  #18055 opened Nov 21, 2024

• C#: Default subtypes to true.

  #18060 opened Nov 21, 2024

• JS: Reworked CWE-643 test cases

  #18066 opened Nov 21, 2024

• WIP: SimpleRA BigInt Rewrite

  #18073 opened Nov 22, 2024

• Rust: add extended canonical paths on enum variants

  #18083 opened Nov 22, 2024

• Rust: Handle `self` parameters in variables and SSA library

  #18088 opened Nov 25, 2024

• Napalys/regexp unknown flags

  #18089 opened Nov 25, 2024

• C#: Use dedicated lock type where applicable.

  #18090 opened Nov 25, 2024

• C#: Bazel build should target .NET9 framework.

  #18091 opened Nov 25, 2024

• Rust: New query for bad 'ctor' initialization

  #18097 opened Nov 25, 2024

• Remove pull request template

  #18104 opened Nov 25, 2024

• Go: model `slices` package (skipping functions that involve iterating over a function)

  #18108 opened Nov 26, 2024

• Data flow: Rework reverse flow through parameters

  #18109 opened Nov 26, 2024

• KE2: Extract lambda expressions

  #18110 opened Nov 26, 2024

• C++: Promote `cpp/guarded-free`

  #18111 opened Nov 26, 2024

• Python: Add API graph support for parameter annotations

  #18112 opened Nov 26, 2024

• Data flow: Move more logic into `DataFlowImplCommon`

  #18113 opened Nov 26, 2024

• C++: Actually check function names in MaD

  #18114 opened Nov 26, 2024

• Rust: Renamed `expr` on `CallExpr` and `LetExpr`

  #18115 opened Nov 26, 2024

• Rust: add some performance diagnostics

  #18116 opened Nov 26, 2024

• Python: Add change note for CFG pruning fix

  #18117 opened Nov 26, 2024

• KE2: Put diagnostics from the analysis API into the database

  #18118 opened Nov 26, 2024

5 Issues closed by 4 people

• Generating --dot format report output dot file with wrong syntax

  #18032 closed Nov 26, 2024

• [java] False positive

  #18082 closed Nov 25, 2024

• Java: Noisiness of java/weak-cryptographic-algorithm / MD5 detection

  #17836 closed Nov 24, 2024

• [BUG] CodeQL Fails to Process --include=<arg> in clang Commands

  #18019 closed Nov 22, 2024

• A problem about how to find a calltrace through a method

  #17872 closed Nov 21, 2024

9 Issues opened by 4 people

• False positive - Websites must specify the HttpOnly attribute on sensitive cookies

  #18119 opened Nov 26, 2024

• [C++] Assigning to function pointer in a function appears to defeat dispatch analysis

  #18103 opened Nov 25, 2024

• [C++] Dynamic Dispatch Through Member Not Detected

  #18102 opened Nov 25, 2024

• [C++] Alias analysis failure on pointer to local variable

  #18101 opened Nov 25, 2024

• [C++] Control Flow Influence not detected interprocedurally

  #18100 opened Nov 25, 2024

• [C++] Fails to detect control flow influence of nested “if”

  #18099 opened Nov 25, 2024

• [C++] [Question] How to detect taint on elements in a collection

  #18098 opened Nov 25, 2024

• [Java] - Limiting Flows Based on Patterns

  #18050 opened Nov 20, 2024

• Limit Cache Size on Disk

  #18045 opened Nov 20, 2024

13 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• Go: Models as Data Documentation

  #17258 commented on Nov 26, 2024 • 36 new comments

• Brodes/seh flow phase1 throwing models

  #18014 commented on Nov 22, 2024 • 23 new comments

• Java: IPA the CFG (second try)

  #17970 commented on Nov 22, 2024 • 4 new comments

• C++: Generate int-to-bool conversion instructions in C code

  #18017 commented on Nov 20, 2024 • 3 new comments

• Java: Add a default taint sanitizer for contains-checks on lists of constants

  #17901 commented on Nov 26, 2024 • 2 new comments

• Brodes/seh flow overhaul2

  #17676 commented on Nov 20, 2024 • 1 new comment

• Python: Promote Template Injection query from experimental

  #17922 commented on Nov 22, 2024 • 1 new comment

• C/C++: Paths reported in sarif results contain extra back slashes in latest version of CodeQL (2.19.2)

  #17972 commented on Nov 22, 2024 • 0 new comments

• Java: FileUpload Support MaD

  #17590 commented on Nov 20, 2024 • 0 new comments

• Java: make all code-scanning queries diff-informed

  #17846 commented on Nov 26, 2024 • 0 new comments

• Go: `database` local source models

  #17905 commented on Nov 25, 2024 • 0 new comments

• Rust: extract types

  #18000 commented on Nov 25, 2024 • 0 new comments

• Go: Fix missing promoted fields due to name clash

  #18001 commented on Nov 26, 2024 • 0 new comments