File tree
719 files changed
+2280
-1524
lines changed- cpp/ql
- lib
- change-notes
- released
- semmle/code/cpp/controlflow
- utils/test
- dataflow
- internal
- test
- experimental/library-tests/rangeanalysis/rangeanalysis
- library-tests
- controlflow
- guards-ir
- guards
- dataflow
- asExpr
- dataflow-tests
- external-models
- fields
- models-as-data
- parameters-without-defs
- smart-pointers-taint
- source-sink-tests
- taint-tests
- ir
- modulus-analysis
- points_to
- range-analysis
- sign-analysis
- types
- query-tests
- Critical
- MissingCheckScanf
- SizeCheck
- Security/CWE
- CWE-022/semmle/tests
- CWE-193
- csharp
- documentation/library-coverage
- ql
- lib
- change-notes
- ext
- utils/test
- internal
- test
- TestUtilities/inline-tests
- experimental/Security Features/CWE-759
- library-tests
- dataflow
- async
- barrier-guards
- collections
- constructors
- external-models
- fields
- flowsources/stored
- database/dapper
- file
- global
- library
- operators
- patterns
- threat-models
- tuples
- typeflow-dispatch
- types
- frameworks/EntityFramework
- query-tests
- Security Features
- CWE-020
- CWE-022
- TaintedPath
- ZipSlip
- CWE-078
- CWE-079
- StoredXSS
- XSSAsp
- XSS
- CWE-089
- CWE-090
- CWE-091/XMLInjection
- CWE-094
- CWE-099
- CWE-112
- CWE-114/AssemblyPathInjection
- CWE-117
- CWE-134
- CWE-201/ExposureInTransmittedData
- CWE-209
- CWE-321/HardcodedSymmetricEncryptionKey
- CWE-338
- CWE-502
- UnsafeDeserializationUntrustedInputNewtonsoftJson
- UnsafeDeserializationUntrustedInput
- CWE-601/UrlRedirect
- CWE-611
- CWE-643
- CWE-730
- ReDoSGlobalTimeout
- ReDoS
- RegexInjection
- CWE-807
- CWE-838
- Useless Code/UnusedLabel
- utils
- inline-tests
- queries
- modelgenerator
- dataflow
- typebasedflow
- go
- documentation/library-coverage
- ql
- lib/utils/test
- internal
- test
- experimental
- CWE-090
- CWE-203
- CWE-287
- CWE-369
- CWE-522-DecompressionBombs
- CWE-74
- CWE-79
- CWE-918
- frameworks
- CleverGo
- Fiber
- library-tests/semmle/go
- Function
- Types
- aliases
- DataflowFields
- InterfaceImpls
- concepts
- HTTP
- LoggerCall
- dataflow
- ArrayConversion
- ChannelField
- ExternalFlowInheritance
- ExternalFlowVarArgs
- ExternalTaintFlow
- ExternalValueFlow
- GenericFunctionsAndTypes
- GlobalVariableSideEffects
- GuardingFunctions
- HiddenNodes
- ListOfConstantsSanitizerGuards
- MapReadsAndStores
- PromotedFields
- PromotedMethods
- SliceExpressions
- Switch
- TypeAssertions
- VarArgsWithExternalFlow
- VarArgsWithFunctionModels
- VarArgs
- flowsources/local
- commandargs
- environment
- file
- stdin
- frameworks
- Afero
- AwsLambda
- BeegoOrm
- Beego
- Chi
- CouchbaseV1
- Echo
- ElazarlGoproxy
- EvanphxJsonPatch
- Fasthttp
- Fiber
- Gin
- GoKit
- GoMicro
- Iris
- K8sIoApiCoreV1
- K8sIoApimachineryPkgRuntime
- K8sIoClientGo
- Macaron
- NoSQL
- Protobuf
- Revel
- SQL
- Gorm
- Sqlx
- bun
- gogf
- gorqlite
- Spew
- StdlibTaintFlow
- Twirp
- XNetHtml
- Yaml
- Zap
- gqlgen
- query-tests
- InconsistentCode/UnhandledCloseWritableHandle
- Security
- CWE-020/IncompleteHostnameRegexp
- CWE-022
- CWE-078
- CWE-079
- CWE-089
- CWE-117
- CWE-190
- CWE-312
- CWE-327
- CWE-338/InsecureRandomness
- CWE-347
- CWE-601
- BadRedirectCheck
- OpenUrlRedirect
- CWE-640
- CWE-643
- CWE-681
- CWE-770
- CWE-918
- javascript/ql
- lib/utils/test
- internal
- test
- library-tests
- EndpointNaming
- Generators
- Routing
- Security/heuristics
- frameworks
- Nest
- Vuex
- data
- threat-models/sources
- query-tests/Security
- CWE-022/TaintedPath
- CWE-073
- CWE-078
- CWE-079
- DomBasedXss
- ExceptionXss
- ReflectedXss
- StoredXss
- UnsafeHtmlConstruction
- UnsafeJQueryPlugin
- XssThroughDom
- CWE-089/untyped
- CWE-502
- CWE-611
- CWE-770/ResourceExhaustion
- CWE-915/PrototypePollutingAssignment
- CWE-918
- java/ql
- integration-tests/kotlin/all-platforms/default-parameter-mad-flow
- lib/utils/test
- internal
- src/utils/flowtestcasegenerator
- test-kotlin1/library-tests/dataflow/summaries
- test-kotlin2/library-tests/dataflow/summaries
- test
- experimental/query-tests/security
- CWE-020
- CWE-022
- CWE-073
- CWE-078
- CWE-089/src/main
- CWE-094
- CWE-1004
- CWE-200
- CWE-208
- NotConstantTimeCheckOnSignature
- TimingAttackAgainstSignagure
- CWE-299
- CWE-327
- CWE-346
- CWE-347
- CWE-348
- CWE-352
- CWE-400
- CWE-470
- CWE-502
- CWE-522-DecompressionBombs
- CWE-598
- CWE-600
- CWE-601
- CWE-625
- CWE-652
- CWE-755
- CWE-759
- ext/TestModels
- library-tests
- dataflow
- callback-dispatch
- callctx
- capture
- collections
- entrypoint-types
- field-value
- flowfeature
- fluent-methods
- implicit-read
- range-analysis-inline
- state
- stream-collect
- stream-read
- subpaths
- synth-global
- taint-format
- taint-gson
- taint-jackson
- taintsources
- typeflow-dispatch
- frameworks
- JaxWs
- android
- asynctask
- content-provider-summaries
- content-provider
- external-storage
- flow-steps
- intent
- notification
- slice
- sources
- taint-database
- uri
- widget
- apache-ant
- apache-collections
- apache-commons-compress
- apache-commons-lang3
- apache-http
- gson
- guava
- generated
- cache
- collect
- handwritten
- hudson
- jackson
- javax-json
- jdk
- java.io
- java.net
- java.nio.file
- jms
- json-java
- lastaflute
- netty
- generated
- manual
- okhttp
- play
- rabbitmq
- ratpack
- retrofit
- spring
- beans
- cache
- context
- controller
- data
- http
- ui
- util
- validation
- webmultipart
- webutil
- stapler
- stream
- thymeleaf
- logging
- neutrals/neutralsinks
- optional
- pathsanitizer
- paths
- regex
- scanner
- xml
- query-tests/security
- CWE-022/semmle/tests
- CWE-023/semmle/tests
- CWE-074
- CWE-078
- CWE-079/semmle/tests
- CWE-089/semmle/examples
- CWE-090
- CWE-094
- CWE-113/semmle/tests
- CWE-117
- CWE-1204
- CWE-129/semmle/tests
- CWE-134/semmle/tests
- CWE-190/semmle/tests
- CWE-200/semmle/tests
- SensitiveNotification
- SensitiveTextView
- TempDirLocalInformationDisclosure
- CWE-266
- CWE-273
- CWE-287
- InsecureKeys
- Test1
- Test2
- InsecureLocalAuth
- CWE-295
- AndroidMissingCertificatePinning
- Test1
- Test2
- Test3
- Test4
- Test5
- ImproperWebVeiwCertificateValidation
- InsecureTrustManager
- CWE-297
- CWE-311/CWE-319
- CWE-312/android/CleartextStorage
- CWE-326
- CWE-327/semmle/tests
- CWE-330
- CWE-347
- CWE-352
- CWE-441
- CWE-470
- CWE-489
- debuggable-attribute
- webview-debugging
- CWE-501
- CWE-502
- CWE-522
- CWE-524
- CWE-532
- CWE-552
- CWE-601/semmle/tests
- CWE-611
- CWE-643
- CWE-681/semmle/tests
- CWE-730
- CWE-749
- CWE-780
- CWE-798/semmle/tests
- CWE-807/semmle/tests
- CWE-917
- CWE-918
- CWE-925
- CWE-926
- incomplete_provider_permissions
- CWE-927
- CWE-940
- utils/modelgenerator
- dataflow
- typebasedflow
- misc/bazel
- python/ql
- lib
- semmle/python/dataflow/new/internal
- utils/test
- dataflow
- internal
- test
- experimental
- import-resolution
- library-tests/CallGraph
- meta
- debug
- query-tests/Security
- CWE-022-UnsafeUnpacking
- CWE-074-RemoteCommandExecution
- CWE-409
- library-tests
- ApiGraphs
- py2
- py3
- InlineExpectationsTest/missing-relevant-tag
- dataflow
- basic
- calls
- coverage
- exceptions
- fieldflow
- global-flow
- match
- model-summaries
- module-initialization
- path-graph
- regression
- sensitive-data
- summaries
- tainttracking/generator-flow
- typetracking-summaries
- typetracking
- variable-capture
- essa/ssa-compute
- frameworks
- django-orm
- internal-ql-helpers
- regexparser
- regex
- query-tests
- Functions/ModificationOfParameterWithDefault
- Numerics
- Security
- CWE-022-PathInjection
- CWE-078-CommandInjection
- CWE-078-UnsafeShellCommandConstruction
- CWE-094-CodeInjection
- CWE-209-StackTraceExposure
- CWE-943-NoSqlInjection
- ql/ql
- src/utils/test
- test/dataflow/getAStringValue
- ruby/ql
- lib/utils/test
- internal
- test
- library-tests
- concepts
- dataflow
- api-graphs
- array-flow
- barrier-guards
- call-sensitivity
- erb
- flow-summaries
- global
- hash-flow
- local
- params
- pathname-flow
- ssa-flow
- string-flow
- summaries
- frameworks
- action_controller
- action_mailer
- active_support
- arel
- json
- sinatra
- query-tests
- experimental/improper-memoization
- security
- cwe-022
- cwe-116/IncompleteMultiCharacterSanitization
- cwe-300
- cwe-829
- rust
- ast-generator/src
- extractor/src
- generated
- translate
- ql
- lib
- codeql/rust
- controlflow/internal/generated
- elements
- internal
- generated
- utils/test
- internal
- test
- extractor-tests/generated
- SelfParam
- library-tests
- dataflow
- barrier
- closures
- global
- local
- models
- sources
- taint
- variables
- query-tests
- security
- CWE-089
- CWE-327
- CWE-696
- unusedentities
- schema
- swift
- extractor
- ql
- integration-tests/autobuilder/unsupported-os
- lib/utils/test
- internal
- test
- library-tests
- dataflow
- capture
- dataflow
- flowsources
- taint
- core
- libraries
- regex
- query-tests/Security
- CWE-022/PathInjection
- CWE-094
- CWE-312
- CWE-611
- CWE-946
- tools
- diagnostics
- incompatible-os
Some content is hidden
Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.
719 files changed
+2280
-1524
lines changedLines changed: 1 addition & 1 deletion
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
6 | 6 | | |
7 | 7 | | |
8 | 8 | | |
9 | | - | |
| 9 | + | |
10 | 10 | | |
11 | 11 | | |
12 | 12 | | |
| |||
Lines changed: 4 additions & 0 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
| 1 | + | |
| 2 | + | |
| 3 | + | |
| 4 | + | |
Lines changed: 1 addition & 1 deletion
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
6 | 6 | | |
7 | 7 | | |
8 | 8 | | |
9 | | - | |
| 9 | + | |
0 commit comments