github / codeql-go

Model zap

Update actions codeql to 2.4.3

[CWE-369] Query for divide by zero detection

…st-panic-edges Remove panicking edges leading from an equality test where possible

fix test fix Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.qhelp Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.qhelp Co-authored-by: Chris Smowton <[email protected]>

Update ql/src/experimental/CWE-369/DivideByZero.qhelp Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.qhelp Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.qhelp Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]>

Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]>

Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]> Update ql/src/experimental/CWE-369/DivideByZero.ql Co-authored-by: Chris Smowton <[email protected]>

Add -overlay to recognized go build flags

Create CODEOWNERS

This is so that `@codeql-go` is automatically suggested as a reviewer for PRs

…-models Remove models for html/template execution

These escape HTML and JavaScript anyhow; because they don't write to their return value they don't quite fit the form of EscapeFunction, so to be expedient I've simply removed their models entirely. Presumably the case where someone HTML-templates something and then uses it for a purpose where HTML sanitisation is insufficient is very rare anyhow.

Promote Insecure RNG Query

These exist because an equality comparison of explicitly-incomparable interface values can panic, as can comparisons of arrays or structs containing them. Other type comparisons cannot panic.

Also give it a precision

Model elazarl/goproxy

Add gokit models

…cope Move reused barrier guards into separate files

This way only the barrier guards that are used will be imported. This is important because of the comment above BarrierGuard, which warns about the potential danger of having classes that extend BarrierGuard in scope which are not used.

…-specific Make PathContainmentCheck more specific

Commits on Feb 13, 2021

Merge pull request #476 from owen-mc/model-zap

Model zap

owen-mc committed Feb 13, 2021

Verified

This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.

GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits

4a2a187

Commits on Feb 1, 2021

Move InsecureRandomness out of experimental

sauyon committed Feb 1, 2021

Unverified

This user has not uploaded their public key yet.

GPG key ID: 334CB3C2DDC0AEC9 Learn about signing commits

cfb9593

Jan	FEB	Apr
	14
2020	2021	2022

github / codeql-go

Commits on Feb 13, 2021

Commits on Feb 11, 2021

Commits on Feb 10, 2021

Commits on Feb 9, 2021

Commits on Feb 8, 2021

Commits on Feb 6, 2021

Commits on Feb 4, 2021

Commits on Feb 2, 2021

Commits on Feb 1, 2021

Commits on Jan 28, 2021

Commits on Jan 27, 2021

Commits on Jan 26, 2021

Commits on Jan 25, 2021