Skip to content

Sync Main (autogenerated) #277

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 463 commits into from
Sep 10, 2025
Merged

Sync Main (autogenerated) #277

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
463 commits
Select commit Hold shift + click to select a range
0b17208
Update java/ql/src/Violations of Best Practice/Implementation Hiding/…
Napalys Aug 7, 2025
66f2911
Update java/ql/src/Violations of Best Practice/Implementation Hiding/…
Napalys Aug 22, 2025
38b3df0
Java: Address comments
Napalys Aug 22, 2025
4705ad2
Java: Added extra test cases for fields
Napalys Aug 22, 2025
ba252cb
Java: Add a couple of difficult condition correlation tests.
aschackmull Aug 7, 2025
1c72437
Java: More nullness qltests.
aschackmull Aug 14, 2025
9fc0793
Java: More nullness qltests, including highlight of FN bug.
aschackmull Aug 22, 2025
0245270
Java: Fix bug in nullness
aschackmull Aug 22, 2025
f2352f7
Java: Teach guards that exceptions in catch-clauses are non-null.
aschackmull Aug 22, 2025
49b4adc
Rust: Add more tests for DirEntry, PathBuf, OsString.
geoffw0 Aug 20, 2025
1d2ac33
Rust: Model async-std::fs.
geoffw0 Aug 19, 2025
29e7b6a
Rust: Fill a gap in the std::fs model.
geoffw0 Aug 21, 2025
16e0de0
Rust: Fill gaps in the tokio models.
geoffw0 Aug 21, 2025
fcce862
Rust: Add an explicit test case for sinks with two relevant args.
geoffw0 Aug 21, 2025
9fbbe02
Rust: Compact these models a little.
geoffw0 Aug 21, 2025
8b04bc0
Rust: Model std::fs::OpenOptions and similar.
geoffw0 Aug 21, 2025
d1a5c9b
Rust: Add a test case resembling code seen in the wild.
geoffw0 Aug 21, 2025
2f2a975
Rust: Model path::new.
geoffw0 Aug 21, 2025
40b9754
Rust: Change note.
geoffw0 Aug 22, 2025
ea0e31f
Add changelog entry for CodeQL CLI version 2.22.4
coadaflorin Aug 22, 2025
6d7f6ff
Merge branch 'main' into patch-1
jketema Aug 22, 2025
6ce3aac
Merge pull request #12660 from moshekaplan/patch-1
jketema Aug 22, 2025
374c547
Merge pull request #18722 from superboy-zjc/main
jketema Aug 22, 2025
7279b03
Rust: Model a few more Path and PathBuf methods.
geoffw0 Aug 22, 2025
e05eca6
Merge branch 'main' into redsun82/cargo-upgrade-2
redsun82 Aug 22, 2025
e343fd3
Java: Add change note.
aschackmull Aug 22, 2025
49c4c34
Merge pull request #20221 from github/copilot/fix-20220
geoffw0 Aug 22, 2025
2e69417
rust integration test: use all output from codeql test run
hmakholm Aug 22, 2025
701aec1
Rust: Fix the canonicalize models.
geoffw0 Aug 22, 2025
3134c0a
Merge pull request #20269 from github/hmakholm/pr/test-run-output
hmakholm Aug 22, 2025
4a693d9
Update java/ql/src/Violations of Best Practice/Undesirable Calls/Call…
Napalys Aug 22, 2025
08cb038
Rust: Accept changes to other tests.
geoffw0 Aug 22, 2025
0e2bc7c
Merge remote-tracking branch 'upstream/main' into pathi
geoffw0 Aug 22, 2025
4a4f782
Rust: Accept another consistency test change.
geoffw0 Aug 22, 2025
f0542dd
Java: add summary to change note
Aug 22, 2025
4149968
Java: Remove the hardcoded path filter that excluded CodeQL's own uni…
Napalys Aug 24, 2025
38f517e
Java: Add lambda-aware test detection to VisibleForTesting query
Napalys Aug 24, 2025
e20c8e1
Merge pull request #20250 from github/redsun82/redsun82/no-lld
redsun82 Aug 25, 2025
891ce62
Merge pull request #17660 from knewbury01/knewbury01/improve-quality-…
aschackmull Aug 25, 2025
4be995d
Merge pull request #20267 from aschackmull/java/nullness-fix
aschackmull Aug 25, 2025
1d8f291
Rust: Include `getAttributeMacroExpansion` in `isInMacroExpansion`
hvitved Aug 25, 2025
9ef839d
Rust: Include synthetic type parameters in `Type.getATypeParameter`
hvitved Aug 25, 2025
bf7e3da
Python: Only include relevant YAML in `printAst.ql`
hvitved Aug 25, 2025
88059d9
Merge pull request #20275 from hvitved/python/fix-print-ast-yaml
hvitved Aug 25, 2025
d5e0298
Python: Add support for Psycopg2 database connection pools
tausbn Aug 25, 2025
311e3ac
C#: Taint entire return for Byte- and Char array summaries.
michaelnebel Aug 25, 2025
be123cf
C#: Update test expected output.
michaelnebel Aug 25, 2025
7394a80
C#: Add change-note.
michaelnebel Aug 25, 2025
0752c07
C++: Update expected test results after extractor changes
jketema Aug 25, 2025
1008ca9
Python: Add `psycopg2.pool` tests
tausbn Aug 25, 2025
7de34e4
Merge pull request #20055 from github/redsun82/cargo-upgrade-2
redsun82 Aug 25, 2025
a104600
Merge branch 'main' into cpp/use-flow-state-inout-barriers
jketema Aug 25, 2025
9b4d37d
Add change note
hvitved Aug 25, 2025
83ca08c
Rust: Update expected test output
hvitved Aug 25, 2025
7a3973b
Merge pull request #20279 from jketema/loc-cleanup
jketema Aug 26, 2025
fb7c3f3
Merge pull request #20283 from hvitved/rust/update-test-output
hvitved Aug 26, 2025
d6d0645
Rust: Remove skip_path_resolution config variable (hardhoded to true).
geoffw0 Aug 26, 2025
b271f1f
Java: Renamed query `java/mocking-all-non-private-methods-means-unit-…
Napalys Aug 26, 2025
1abb8ad
Java: Use strictcount instead of count for method counting
Napalys Aug 26, 2025
75786e9
C++: Revert changes to `cpp/constant-array-overflow`
jketema Aug 26, 2025
456f560
Rust: Remove ResolvePaths enum and resolve_paths arguments up to Tran…
geoffw0 Aug 26, 2025
078fbc6
Rust: Remove resolve_paths from the translator.
geoffw0 Aug 26, 2025
17f7b7f
Rust: Fix examples in qldoc
paldepind Aug 26, 2025
80031e5
Merge pull request #20273 from hvitved/rust/attribute-in-macro-expansion
hvitved Aug 26, 2025
629a96c
Merge pull request #5 from jketema/cpp/use-flow-state-inout-barriers
asgerf Aug 26, 2025
704ae1a
Java: Update integration test after query removal
jketema Aug 26, 2025
54f2648
Merge branch 'main' into cpp/use-flow-state-inout-barriers
jketema Aug 26, 2025
8017fae
Java: Simplify mock call location check using getEnclosingCallable
Napalys Aug 26, 2025
680aeea
Merge pull request #14331 from asgerf/cpp/use-flow-state-inout-barriers
jketema Aug 26, 2025
02b4c1f
Rust: downgrade uncompiled source files from warning to info
redsun82 Aug 26, 2025
999920c
Rust: accept test changes
redsun82 Aug 26, 2025
d5f4a39
Merge pull request #20287 from jketema/not-included
jketema Aug 26, 2025
600417a
Rust: Fix minor typo in bound in comment
paldepind Aug 26, 2025
dd00df7
Rust: Remove unused wiring.
geoffw0 Aug 26, 2025
42a40c1
Rust: reword macro expansion error
redsun82 Aug 26, 2025
3675e4b
Merge branch 'main' into jcogs33/java/insecure-spring-actuator-config…
jcogs33 Aug 26, 2025
4ed0fb7
Merge pull request #20289 from github/rust/typo-in-bound
paldepind Aug 26, 2025
87d1a14
Merge pull request #20286 from github/rust/fix-examples
paldepind Aug 26, 2025
3527fca
Merge pull request #20274 from hvitved/rust/type-synth-type-param
hvitved Aug 26, 2025
6453b71
Rust: Add more cases to `inferCertainType`
hvitved Aug 26, 2025
bd5f863
Rust: Remove uncalled methods.
geoffw0 Aug 26, 2025
70600fe
Rust: Remove unused traits and things.
geoffw0 Aug 26, 2025
a8f7f74
Rust: Remove unused use decls.
geoffw0 Aug 26, 2025
6c51ba8
Update java/ql/src/Violations of Best Practice/Undesirable Calls/Call…
Napalys Aug 26, 2025
b3f90bb
Update java/ql/src/Violations of Best Practice/Undesirable Calls/Call…
Napalys Aug 26, 2025
531955e
Merge branch 'main' into redsun82/rust-less-warnings
redsun82 Aug 26, 2025
dd68d68
Merge pull request #20288 from github/redsun82/rust-less-warnings
redsun82 Aug 26, 2025
feca565
Update codeql-cli-2.22.4.rst
coadaflorin Aug 26, 2025
3cd057f
Rust: Remove Resolvable from the schema.
geoffw0 Aug 26, 2025
499e432
Merge pull request #20268 from github/changedocs/2.22.4
coadaflorin Aug 26, 2025
e9b00f1
C++: Add tables that represent the creation and use of PCH files
jketema Aug 26, 2025
e20ce57
C++: Expose PCH file creation as usage in QL
jketema Aug 26, 2025
896a802
C++: Add upgrade and downgrade scripts
jketema Aug 26, 2025
b7c1e1e
Merge pull request #20006 from jcogs33/jcogs33/java/insecure-spring-a…
jcogs33 Aug 26, 2025
be32579
JS: Change pruning to not rely on Import
asgerf Aug 27, 2025
dcf63fc
JS: Remove synthetic locations
asgerf Aug 27, 2025
4a687a1
JS: Add deprecated alias
asgerf Aug 27, 2025
f232335
Merge pull request #20291 from hvitved/rust/type-inference-more-certa…
hvitved Aug 27, 2025
c7947a0
Rust: Remove built-in methods from Addressable in the schema.
geoffw0 Aug 26, 2025
152ae1d
Rust: Codegen.
geoffw0 Aug 26, 2025
5d060d6
Rust: Remove leftover QL use of Resolvable.
geoffw0 Aug 26, 2025
1d815b1
Rust: Update test expectations.
geoffw0 Aug 26, 2025
9b19ccf
C++: Update dbscheme stats file
jketema Aug 27, 2025
a3aacfb
Merge pull request #20190 from Napalys/java/jvm-exit-query-promotion
Napalys Aug 27, 2025
97d3982
C++: Add change note
jketema Aug 27, 2025
fd752d3
C++: Add missing QLDoc
jketema Aug 27, 2025
1981668
Rust: Add pattern match type inference test
paldepind Aug 27, 2025
0ff4dbc
Rust: Fix type inference inconsistency
paldepind Aug 27, 2025
2f4e2d6
Rust: Infer certain types for logical operators
paldepind Aug 27, 2025
4c10f07
Rust: Add type inference test with range full expression
paldepind Aug 27, 2025
08f025f
Rust: Infer range expressions certainly and support full ranges
paldepind Aug 27, 2025
6f64129
C++: Add ComPtr tests.
MathiasVP Aug 27, 2025
246ed9d
C++: Add a model for ComPtr.
MathiasVP Aug 27, 2025
9e9f6dd
C++: Accept test changes.
MathiasVP Aug 27, 2025
5b0beb9
Update python/ql/src/Functions/IncorrectRaiseInSpecialMethod.qhelp
joefarebrother Aug 27, 2025
2c6b2df
Update python/ql/src/Classes/SubclassShadowing/SubclassShadowing.qhelp
joefarebrother Aug 27, 2025
96b6986
C++: Fix duplicated entries.
MathiasVP Aug 27, 2025
7c05622
C++: Add missing type and accept test changes.
MathiasVP Aug 27, 2025
8c07a3e
C++: Add testcase with missing model.
MathiasVP Aug 27, 2025
bebfe03
C++: Add missing model and accept test changes.
MathiasVP Aug 27, 2025
ada0b37
Merge pull request #20120 from joefarebrother/python-qual-unexpected-…
joefarebrother Aug 27, 2025
bb08611
Merge pull request #20301 from MathiasVP/add-comptr-model
MathiasVP Aug 27, 2025
a075ed5
Rust: Remove telemetry about extractor generated paths.
geoffw0 Aug 27, 2025
028f1cb
Merge pull request #20299 from paldepind/rust/certain-extensions
paldepind Aug 27, 2025
2e747bb
Merge branch 'main' into oldpaths1 (some generated files are left unm…
geoffw0 Aug 27, 2025
83df113
Rust: Codegen.
geoffw0 Aug 27, 2025
9efb6ea
Rust: Cargo fmt.
geoffw0 Aug 27, 2025
f838494
Rust: Remove empty impls.
geoffw0 Aug 27, 2025
194363c
Rust: Codegen.
geoffw0 Aug 27, 2025
dcaf4a7
Rust: Fallback crate resolution
hvitved Aug 14, 2025
c6ababd
Fix test output
joefarebrother Aug 28, 2025
f87f52d
Address review comments
hvitved Aug 28, 2025
45910b9
Merge remote-tracking branch 'origin/python-qual-subclass-shadow' int…
joefarebrother Aug 28, 2025
bde143e
Merge pull request #20038 from joefarebrother/python-qual-comparison
joefarebrother Aug 28, 2025
bf47f66
Python: Add jump-to-def tests for unpacking assignments
hvitved Aug 28, 2025
bd31e7f
Merge pull request #20278 from michaelnebel/csharp/streamlinebulkmodels2
michaelnebel Aug 28, 2025
4437f47
Merge pull request #20297 from asgerf/js/simpler-summary-pruning
asgerf Aug 28, 2025
d117c52
JS: Use the LHS as the location for SsaExplicitDefinition
asgerf Aug 28, 2025
73ce2a2
C#: Convert Blazor test to use pretty print models processing.
michaelnebel Aug 28, 2025
c2bb379
C#: Add data flow test
hvitved Aug 28, 2025
1e46dd8
Rust: Remove redundant code.
geoffw0 Aug 28, 2025
fa7295f
Merge pull request #20303 from hvitved/python/jump-to-def-unpack-tests
hvitved Aug 28, 2025
ad6ca51
Update java/ql/src/Likely Bugs/Frameworks/JUnit/ExcessivePublicMethod…
Napalys Aug 28, 2025
d0e766d
C++: Add a testcase with invalid IR.
MathiasVP Aug 28, 2025
2033552
C++: Handle conversions in new initializers.
MathiasVP Aug 28, 2025
4116292
C++: Accept test changes.
MathiasVP Aug 28, 2025
3112664
Update cpp/ql/lib/semmle/code/cpp/PchFile.qll
jketema Aug 28, 2025
aa3f4e1
C#: Fix context-sensitive dispatch when using `base` qualifier
hvitved Aug 28, 2025
919ed3c
Merge pull request #20304 from michaelnebel/csharp/prettyprintmad
michaelnebel Aug 28, 2025
e860600
Rust: Remove the canonical_path_disabled test entirely.
geoffw0 Aug 28, 2025
970167b
Java: moved `java/mocking-all-non-private-methods-means-unit-test-is-…
Napalys Aug 28, 2025
1949d9f
Merge branch 'main' into java/mocking-all-non-private-methods-means-u…
Napalys Aug 28, 2025
7ef2b01
Merge pull request #20142 from joefarebrother/python-qual-subclass-sh…
joefarebrother Aug 28, 2025
73c8f3d
Merge pull request #20205 from Napalys/java/mocking-all-non-private-m…
Napalys Aug 28, 2025
d3be456
Update java/ql/src/Violations of Best Practice/Implementation Hiding/…
Napalys Aug 28, 2025
c836104
Update java/ql/src/Violations of Best Practice/Implementation Hiding/…
Napalys Aug 28, 2025
e8b7ce4
Merge pull request #20270 from geoffw0/pathi
geoffw0 Aug 28, 2025
1847a45
Merge pull request #20298 from jketema/pch-expose
jketema Aug 28, 2025
2c2b1e4
Merge pull request #20306 from MathiasVP/fix-new-initializer-bug
MathiasVP Aug 28, 2025
f135ed9
C++: Add testcases with missing model.
MathiasVP Aug 28, 2025
3e78572
C++: Drive-by fix: Add missing '@'.
MathiasVP Aug 28, 2025
e59de9a
C++: Add models for the remaining member functions (and conversions) …
MathiasVP Aug 28, 2025
ddf0f37
C++: Accept test changes.
MathiasVP Aug 28, 2025
759e339
C++: Add change note.
MathiasVP Aug 28, 2025
b9cd7a8
C++: Fix conflation in models.
MathiasVP Aug 28, 2025
b8917c8
Merge branch 'main' into add-comptr-model-now-with-more-models
jketema Aug 28, 2025
5c90b90
Rust: Lower the thresholds in rust/diagnostic/database-quality to mor…
geoffw0 Aug 28, 2025
9e0a31c
Rust: Change note.
geoffw0 Aug 28, 2025
5d14ef5
Rust: Change note.
geoffw0 Aug 28, 2025
0cc9ff8
Merge pull request #20225 from hvitved/rust/path-resolution-crate-fal…
hvitved Aug 28, 2025
6e1d975
Bump actions/checkout from 4 to 5
dependabot[bot] Aug 29, 2025
6132900
Java: add full stops for ql docs
Napalys Aug 29, 2025
bafe22c
Merge pull request #20048 from Napalys/js/xml_bomb_sinks
Napalys Aug 29, 2025
b4d6cb6
Merge pull request #20178 from Napalys/java/visible-for-testing-abuse
Napalys Aug 29, 2025
a6bdab1
Merge branch 'main' into oldpaths1
geoffw0 Aug 29, 2025
bdc1f17
Rust: Add upgrade and downgrade scripts (template).
geoffw0 Aug 29, 2025
611eca4
Add change note
hvitved Aug 29, 2025
a145e52
C++: Add uninitialized local test
jketema Aug 29, 2025
6b580ac
C++: Update expected test results
jketema Aug 29, 2025
277f5ef
C++: Update dbscheme stats file
jketema Aug 29, 2025
cc8fe10
JS: Update locations in expected files
asgerf Aug 28, 2025
7c5b04a
Merge pull request #20315 from jketema/uninit-test
jketema Aug 29, 2025
d650d56
Rust: Implement upgrade and downgrade scripts.
geoffw0 Aug 29, 2025
f89fae3
Merge pull request #20276 from github/tausbn/python-model-psycopg2-co…
tausbn Aug 29, 2025
45d6fc0
Merge pull request #20312 from geoffw0/dbquality
geoffw0 Aug 29, 2025
b361b0f
Merge pull request #20310 from MathiasVP/add-comptr-model-now-with-mo…
jketema Aug 29, 2025
55869f2
Specify default queries in `codeql-extractor.yml`
henrymercer Aug 29, 2025
c1c7127
Rust: Add examples where trait visibility affects path and method res…
paldepind Aug 28, 2025
aa60442
Merge pull request #20305 from hvitved/csharp/dataflow-base-non-exact…
hvitved Sep 1, 2025
0d0eaa2
Merge pull request #20302 from asgerf/js/simpler-locations
asgerf Sep 1, 2025
67a1c2f
Update javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
asgerf Sep 1, 2025
51f96de
Add shared LocOption module for optional types with locations
joefarebrother Aug 13, 2025
fc5501b
Add LocOption2 for types with `getLocation`.
joefarebrother Aug 13, 2025
8e5efb5
Add change note
joefarebrother Aug 25, 2025
80ab35c
Apply review suggestions - rename things and clean up style.
joefarebrother Aug 26, 2025
1b808fe
Fix incorrect switch of None and Some cases
joefarebrother Aug 28, 2025
119837b
BasicBlock: Add CFG signature.
aschackmull Aug 18, 2025
bb3abc8
SSA: Update input to use member predicates.
aschackmull Aug 18, 2025
e53b22d
SSA/VariableCapture: Use shared BasicBlock signature.
aschackmull Aug 18, 2025
f459ddc
Languages: Adapt to api changes.
aschackmull Aug 19, 2025
a7b2a2f
C++: Sync files.
aschackmull Aug 19, 2025
3821f17
Guards/Java: Use BasicBlock signature in Guards library.
aschackmull Aug 20, 2025
6ffb9b1
C++: Extend final IRBlock
aschackmull Aug 22, 2025
e2eb6db
Ruby: Fix query compilation.
aschackmull Aug 29, 2025
09b2c5a
BasicBlock: Replace entryBlock predicate with subclass.
aschackmull Sep 1, 2025
42e8b32
Merge pull request #20280 from joefarebrother/shared-loc-option
joefarebrother Sep 1, 2025
93f4721
Merge pull request #20316 from jketema/stats
jketema Sep 1, 2025
cbdc54a
Merge pull request #20313 from github/dependabot/github_actions/actio…
mbg Sep 1, 2025
70a871c
Merge pull request #20253 from aschackmull/shared/basicblock-signature2
aschackmull Sep 1, 2025
7491352
C#: Fix some Ql4Ql violations.
michaelnebel Sep 1, 2025
ea664e0
Go: Fix some Ql4Ql violations.
michaelnebel Sep 1, 2025
77113b2
Java: Fix some Ql4Ql violations.
michaelnebel Sep 1, 2025
c5cf46b
Ruby: Fix some Ql4Ql violations.
michaelnebel Sep 1, 2025
011f8dd
Swift: Fix a Ql4Ql violation.
michaelnebel Sep 1, 2025
beeb91d
C#: Add some XmlDictionaryReader models.
michaelnebel Aug 26, 2025
1d35bd1
C#: Update expected test output.
michaelnebel Aug 26, 2025
8b2ebaa
C#: Promote some generated- and refine models for XmlReader.
michaelnebel Aug 27, 2025
8a480b6
C#: Update test expected output.
michaelnebel Aug 27, 2025
5cd30f0
C#: Add some XmlTextReader models.
michaelnebel Aug 27, 2025
525c095
C#: Update expected test output.
michaelnebel Aug 27, 2025
aa8a72d
C#: Add change-note.
michaelnebel Aug 26, 2025
55dd098
C#: Address review comments.
michaelnebel Sep 1, 2025
d71991f
Merge pull request #20320 from github/henrymercer/default-queries
henrymercer Sep 1, 2025
5b51bb2
Rust: Deref as taint step
hvitved Sep 1, 2025
322ef4d
Rust: Account for trait visibility when resolving paths and methods
paldepind Aug 29, 2025
0c5c798
Merge pull request #20290 from michaelnebel/csharp/xmldictionaryreader
michaelnebel Sep 2, 2025
ef4b41a
C#: Replace exists with any.
michaelnebel Sep 2, 2025
d0323a6
Fix one more violation.
michaelnebel Sep 2, 2025
1130595
Merge pull request #20340 from hvitved/rust/taint-tracking-implicit-d…
hvitved Sep 2, 2025
367027e
Ql: Fix some Ql4Ql violations.
michaelnebel Sep 1, 2025
a732b36
Update java/ql/src/experimental/quantum/Analysis/ArtifactReuse.qll
michaelnebel Sep 2, 2025
55e5281
Go: Fix a couple more spelling errors.
michaelnebel Sep 2, 2025
0ed6428
Merge pull request #20321 from paldepind/rust/trait-method-scope-2
paldepind Sep 2, 2025
9bae0bf
Merge pull request #20295 from geoffw0/oldpaths1
hvitved Sep 2, 2025
19fa29d
Merge pull request #20307 from asgerf/js/overlay-extract-and-discard-…
asgerf Sep 2, 2025
11309e9
Fix changenote
joefarebrother Sep 2, 2025
f73f9a0
Merge pull request #20334 from michaelnebel/swift/ql4ql
michaelnebel Sep 2, 2025
39d3741
Merge pull request #20326 from michaelnebel/csharp/ql4ql
michaelnebel Sep 2, 2025
9a88e38
Merge pull request #20327 from michaelnebel/go/ql4ql
michaelnebel Sep 2, 2025
ab641b3
Merge pull request #20344 from joefarebrother/fix-changenote
joefarebrother Sep 2, 2025
2a932f0
Merge pull request #20328 from michaelnebel/java/ql4ql
michaelnebel Sep 2, 2025
88ee20f
Merge pull request #20331 from michaelnebel/ql/ql4ql
michaelnebel Sep 2, 2025
7ae5d40
Merge pull request #20332 from michaelnebel/ruby/ql4ql
michaelnebel Sep 2, 2025
0bfa938
Release preparation for version 2.23.0
invalid-email-address Sep 2, 2025
28f02c0
Merge pull request #20346 from github/release-prep/2.23.0
aibaars Sep 2, 2025
5a90fc4
Merge tag 'codeql-cli/latest' into auto/sync-main-pr
Sep 4, 2025
bd3f774
Merge branch 'main' of https://github.com/microsoft/codeql into auto/…
Sep 5, 2025
f2f18fe
Merge branch 'main' of https://github.com/microsoft/codeql into auto/…
Sep 5, 2025
bc99894
Merge branch 'main' of https://github.com/microsoft/codeql into auto/…
Sep 9, 2025
bce32b4
PS: Fixup libraries after github/codeql#20253.
MathiasVP Sep 10, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
The table of contents is too big for display.
Diff view
Diff view
  •  
  •  
  •  
4 changes: 0 additions & 4 deletions .bazelrc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,10 +33,6 @@ common --@rules_dotnet//dotnet/settings:strict_deps=false
# we only configure a nightly toolchain
common --@rules_rust//rust/toolchain/channel=nightly

# rust does not like the gold linker, while bazel does by default, so let's avoid using it
common:linux --linkopt=-fuse-ld=lld
common:macos --linkopt=-fuse-ld=lld

# Reduce this eventually to empty, once we've fixed all our usages of java, and https://github.com/bazel-contrib/rules_go/issues/4193 is fixed
common --incompatible_autoload_externally="+@rules_java,+@rules_shell"

Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/build-ripunzip.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,15 +20,15 @@ jobs:
os: [ubuntu-22.04, macos-13, windows-2022]
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
with:
repository: google/ripunzip
ref: ${{ inputs.ripunzip-version }}
# we need to avoid ripunzip dynamically linking into libssl
# see https://github.com/sfackler/rust-openssl/issues/183
- if: runner.os == 'Linux'
name: checkout openssl
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
repository: openssl/openssl
path: openssl
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/buildifier.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
uses: actions/checkout@v5
- name: Check bazel formatting
uses: pre-commit/action@646c83fcd040023954eafda54b4db0192ce70507
with:
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/check-implicit-this.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ jobs:
check:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Check that implicit this warnings is enabled for all packs
shell: bash
run: |
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/check-overlay-annotations.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:
sync:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Check overlay annotations
run: python config/add-overlay-annotations.py --check java

2 changes: 1 addition & 1 deletion .github/workflows/check-qldoc.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ jobs:
runs-on: ubuntu-latest

steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
with:
fetch-depth: 2

Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/check-query-ids.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,6 @@ jobs:
name: Check query IDs
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Check for duplicate query IDs
run: python3 misc/scripts/check-query-ids.py
2 changes: 1 addition & 1 deletion .github/workflows/codeql-analysis.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,7 @@ jobs:
dotnet-version: 9.0.100

- name: Checkout repository
uses: actions/checkout@v4
uses: actions/checkout@v5

# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/compile-queries.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ jobs:
runs-on: ubuntu-latest-xl

steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Setup CodeQL
uses: ./.github/actions/fetch-codeql
with:
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/cpp-swift-analysis.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@ jobs:

steps:
- name: Checkout repository
uses: actions/checkout@v4
uses: actions/checkout@v5

# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/csharp-qltest.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,7 @@ jobs:
os: [ubuntu-latest, windows-latest]
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Setup dotnet
uses: actions/setup-dotnet@v4
with:
Expand All @@ -55,7 +55,7 @@ jobs:
stubgentest:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- uses: ./csharp/actions/create-extractor-pack
- name: Run stub generator tests
run: |
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/csv-coverage-metrics.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@v4
uses: actions/checkout@v5
- name: Setup CodeQL
uses: ./.github/actions/fetch-codeql
- name: Create empty database
Expand Down Expand Up @@ -51,7 +51,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@v4
uses: actions/checkout@v5
- name: Setup CodeQL
uses: ./.github/actions/fetch-codeql
- name: Create empty database
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/csv-coverage-pr-artifacts.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,11 +35,11 @@ jobs:
GITHUB_CONTEXT: ${{ toJSON(github.event) }}
run: echo "$GITHUB_CONTEXT"
- name: Clone self (github/codeql) - MERGE
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
path: merge
- name: Clone self (github/codeql) - BASE
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
fetch-depth: 2
path: base
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/csv-coverage-pr-comment.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ jobs:
GITHUB_CONTEXT: ${{ toJSON(github.event) }}
run: echo "$GITHUB_CONTEXT"
- name: Clone self (github/codeql)
uses: actions/checkout@v4
uses: actions/checkout@v5
- name: Set up Python 3.8
uses: actions/setup-python@v4
with:
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/csv-coverage-timeseries.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,11 +12,11 @@ jobs:

steps:
- name: Clone self (github/codeql)
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
path: script
- name: Clone self (github/codeql) for analysis
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
path: codeqlModels
fetch-depth: 0
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/csv-coverage-update.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ jobs:
GITHUB_CONTEXT: ${{ toJSON(github.event) }}
run: echo "$GITHUB_CONTEXT"
- name: Clone self (github/codeql)
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
path: ql
fetch-depth: 0
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/csv-coverage.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,11 +16,11 @@ jobs:

steps:
- name: Clone self (github/codeql)
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
path: script
- name: Clone self (github/codeql) for analysis
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
path: codeqlModels
ref: ${{ github.event.inputs.qlModelShaOverride || github.ref }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/fast-forward.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ jobs:
exit 1

- name: Checkout
uses: actions/checkout@v4
uses: actions/checkout@v5

- name: Git config
shell: bash
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/go-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ jobs:
runs-on: ubuntu-latest-xl
steps:
- name: Check out code
uses: actions/checkout@v4
uses: actions/checkout@v5
- name: Run tests
uses: ./go/actions/test
with:
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/kotlin-build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,7 @@ jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- run: |
bazel query //java/kotlin-extractor/...
# only build the default version as a quick check that we can build from `codeql`
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/mad_modelDiff.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,12 +28,12 @@ jobs:
slug: ${{fromJson(github.event.inputs.projects || '["apache/commons-codec", "apache/commons-io", "apache/commons-beanutils", "apache/commons-logging", "apache/commons-fileupload", "apache/commons-lang", "apache/commons-validator", "apache/commons-csv", "apache/dubbo"]' )}}
steps:
- name: Clone github/codeql from PR
uses: actions/checkout@v4
uses: actions/checkout@v5
if: github.event.pull_request
with:
path: codeql-pr
- name: Clone github/codeql from main
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
path: codeql-main
ref: main
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/mad_regenerate-models.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,11 +30,11 @@ jobs:
ref: "placeholder"
steps:
- name: Clone self (github/codeql)
uses: actions/checkout@v4
uses: actions/checkout@v5
- name: Setup CodeQL binaries
uses: ./.github/actions/fetch-codeql
- name: Clone repositories
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
path: repos/${{ matrix.ref }}
ref: ${{ matrix.ref }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/python-tooling.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ jobs:
check-python-tooling:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- uses: actions/setup-python@v5
with:
python-version: '3.12'
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/qhelp-pr-preview.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -43,7 +43,7 @@ jobs:
if-no-files-found: error
retention-days: 1

- uses: actions/checkout@v4
- uses: actions/checkout@v5
with:
fetch-depth: 2
persist-credentials: false
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/ql-for-ql-build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ jobs:
runs-on: ubuntu-latest-xl
steps:
### Build the queries ###
- uses: actions/checkout@v4
- uses: actions/checkout@v5
with:
fetch-depth: 0
- name: Find codeql
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/ql-for-ql-dataset_measure.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@ jobs:
- github/codeql
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5

- name: Find codeql
id: find-codeql
Expand All @@ -46,7 +46,7 @@ jobs:
env:
CODEQL: ${{ steps.find-codeql.outputs.codeql-path }}
- name: Checkout ${{ matrix.repo }}
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
repository: ${{ matrix.repo }}
path: ${{ github.workspace }}/repo
Expand Down Expand Up @@ -75,7 +75,7 @@ jobs:
runs-on: ubuntu-latest
needs: measure
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- uses: actions/download-artifact@v4
with:
name: measurements
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/ql-for-ql-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ jobs:
qltest:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Find codeql
id: find-codeql
uses: github/codeql-action/init@main
Expand Down Expand Up @@ -64,7 +64,7 @@ jobs:
needs: [qltest]
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Install GNU tar
if: runner.os == 'macOS'
run: |
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/query-list.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ jobs:

steps:
- name: Clone self (github/codeql)
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
path: codeql
- name: Set up Python 3.8
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/ruby-build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -47,7 +47,7 @@ jobs:
runs-on: ${{ matrix.os }}

steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Install GNU tar
if: runner.os == 'macOS'
run: |
Expand Down Expand Up @@ -113,7 +113,7 @@ jobs:
if: github.repository_owner == 'github'
runs-on: ubuntu-latest-xl
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Fetch CodeQL
uses: ./.github/actions/fetch-codeql
- name: Cache compilation cache
Expand Down Expand Up @@ -146,7 +146,7 @@ jobs:
runs-on: ubuntu-latest
needs: [build, compile-queries]
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- uses: actions/download-artifact@v4
with:
name: ruby.dbscheme
Expand Down Expand Up @@ -209,7 +209,7 @@ jobs:
runs-on: ${{ matrix.os }}
needs: [package]
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- name: Fetch CodeQL
uses: ./.github/actions/fetch-codeql

Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/ruby-dataset-measure.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,14 +30,14 @@ jobs:
repo: [rails/rails, discourse/discourse, spree/spree, ruby/ruby]
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5

- uses: ./.github/actions/fetch-codeql

- uses: ./ruby/actions/create-extractor-pack

- name: Checkout ${{ matrix.repo }}
uses: actions/checkout@v4
uses: actions/checkout@v5
with:
repository: ${{ matrix.repo }}
path: ${{ github.workspace }}/repo
Expand All @@ -62,7 +62,7 @@ jobs:
runs-on: ubuntu-latest
needs: measure
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v5
- uses: actions/download-artifact@v4
with:
path: stats
Expand Down
Loading
Loading