Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .codeqlversion
Original file line number Diff line number Diff line change
@@ -1 +1 @@
2.22.4
2.23.9
Comment thread
felickz marked this conversation as resolved.
2 changes: 1 addition & 1 deletion .release.yml
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
name: "CodeQL Community Packs"
repository: "githubsecuritylab/codeql-community-packs"
version: "0.3.0"
version: "0.4.0"
prerelease: false

ecosystem: CodeQL
Expand Down
24 changes: 13 additions & 11 deletions cpp/lib/codeql-pack.lock.yml
Original file line number Diff line number Diff line change
@@ -1,26 +1,28 @@
---
lockVersion: 1.0.0
dependencies:
codeql/controlflow:
version: 2.0.23
codeql/cpp-all:
version: 5.4.1
version: 6.1.4
codeql/dataflow:
version: 2.0.13
version: 2.0.23
codeql/mad:
version: 1.0.29
version: 1.0.39
codeql/quantum:
version: 0.0.7
version: 0.0.17
codeql/rangeanalysis:
version: 1.0.29
version: 1.0.39
codeql/ssa:
version: 2.0.5
version: 2.0.15
codeql/tutorial:
version: 1.0.29
version: 1.0.39
codeql/typeflow:
version: 1.0.29
version: 1.0.39
codeql/typetracking:
version: 2.0.13
version: 2.0.23
codeql/util:
version: 2.0.16
version: 2.0.26
codeql/xml:
version: 1.0.29
version: 1.0.39
compiled: false
4 changes: 2 additions & 2 deletions cpp/lib/qlpack.yml
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
library: true
name: githubsecuritylab/codeql-cpp-libs
version: 0.3.0
version: 0.4.0
dependencies:
codeql/cpp-all: '5.4.1'
codeql/cpp-all: '6.1.4'
28 changes: 15 additions & 13 deletions cpp/src/codeql-pack.lock.yml
Original file line number Diff line number Diff line change
@@ -1,30 +1,32 @@
---
lockVersion: 1.0.0
dependencies:
codeql/controlflow:
version: 2.0.23
codeql/cpp-all:
version: 5.4.1
version: 6.1.4
codeql/cpp-queries:
version: 1.4.6
version: 1.5.8
codeql/dataflow:
version: 2.0.13
version: 2.0.23
codeql/mad:
version: 1.0.29
version: 1.0.39
codeql/quantum:
version: 0.0.7
version: 0.0.17
codeql/rangeanalysis:
version: 1.0.29
version: 1.0.39
codeql/ssa:
version: 2.0.5
version: 2.0.15
codeql/suite-helpers:
version: 1.0.29
version: 1.0.39
codeql/tutorial:
version: 1.0.29
version: 1.0.39
codeql/typeflow:
version: 1.0.29
version: 1.0.39
codeql/typetracking:
version: 2.0.13
version: 2.0.23
codeql/util:
version: 2.0.16
version: 2.0.26
codeql/xml:
version: 1.0.29
version: 1.0.39
compiled: false
6 changes: 3 additions & 3 deletions cpp/src/qlpack.yml
Original file line number Diff line number Diff line change
@@ -1,9 +1,9 @@
library: false
name: githubsecuritylab/codeql-cpp-queries
version: 0.3.0
version: 0.4.0
suites: suites
defaultSuiteFile: suites/cpp.qls
dependencies:
codeql/cpp-all: '5.4.1'
codeql/cpp-queries: '1.4.6'
codeql/cpp-all: '6.1.4'
codeql/cpp-queries: '1.5.8'
githubsecuritylab/codeql-cpp-libs: '*'
28 changes: 15 additions & 13 deletions cpp/test/codeql-pack.lock.yml
Original file line number Diff line number Diff line change
@@ -1,30 +1,32 @@
---
lockVersion: 1.0.0
dependencies:
codeql/controlflow:
version: 2.0.23
codeql/cpp-all:
version: 5.4.1
version: 6.1.4
codeql/cpp-queries:
version: 1.4.6
version: 1.5.8
codeql/dataflow:
version: 2.0.13
version: 2.0.23
codeql/mad:
version: 1.0.29
version: 1.0.39
codeql/quantum:
version: 0.0.7
version: 0.0.17
codeql/rangeanalysis:
version: 1.0.29
version: 1.0.39
codeql/ssa:
version: 2.0.5
version: 2.0.15
codeql/suite-helpers:
version: 1.0.29
version: 1.0.39
codeql/tutorial:
version: 1.0.29
version: 1.0.39
codeql/typeflow:
version: 1.0.29
version: 1.0.39
codeql/typetracking:
version: 2.0.13
version: 2.0.23
codeql/util:
version: 2.0.16
version: 2.0.26
codeql/xml:
version: 1.0.29
version: 1.0.39
compiled: false
4 changes: 2 additions & 2 deletions cpp/test/qlpack.yml
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
name: githubsecurtylab/codeql-cpp-tests
groups: [cpp, test]
dependencies:
codeql/cpp-all: '5.4.1'
codeql/cpp-queries: '1.4.6'
codeql/cpp-all: '6.1.4'
codeql/cpp-queries: '1.5.8'
githubsecuritylab/codeql-cpp-queries: '*'
githubsecuritylab/codeql-cpp-libs: '*'
extractor: cpp
Expand Down
4 changes: 2 additions & 2 deletions csharp/ext-library-sources/qlpack.yml
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
library: true
name: githubsecuritylab/codeql-csharp-library-sources
version: 0.3.0
version: 0.4.0
extensionTargets:
codeql/csharp-all: '5.2.2'
codeql/csharp-all: '5.4.4'
dataExtensions:
- 'manual/*.yml'
- 'manual/**/*.yml'
Expand Down
4 changes: 2 additions & 2 deletions csharp/ext/qlpack.yml
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
library: true
name: githubsecuritylab/codeql-csharp-extensions
version: 0.3.0
version: 0.4.0
extensionTargets:
codeql/csharp-all: '5.2.2'
codeql/csharp-all: '5.4.4'
dataExtensions:
- 'manual/*.yml'
- 'manual/**/*.yml'
Expand Down
20 changes: 10 additions & 10 deletions csharp/lib/codeql-pack.lock.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,23 +2,23 @@
lockVersion: 1.0.0
dependencies:
codeql/controlflow:
version: 2.0.13
version: 2.0.23
codeql/csharp-all:
version: 5.2.2
version: 5.4.4
codeql/dataflow:
version: 2.0.13
version: 2.0.23
codeql/mad:
version: 1.0.29
version: 1.0.39
codeql/ssa:
version: 2.0.5
version: 2.0.15
codeql/threat-models:
version: 1.0.29
version: 1.0.39
codeql/tutorial:
version: 1.0.29
version: 1.0.39
codeql/typetracking:
version: 2.0.13
version: 2.0.23
codeql/util:
version: 2.0.16
version: 2.0.26
codeql/xml:
version: 1.0.29
version: 1.0.39
compiled: false
4 changes: 2 additions & 2 deletions csharp/lib/qlpack.yml
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
library: true
name: githubsecuritylab/codeql-csharp-libs
version: 0.3.0
version: 0.4.0
dependencies:
codeql/csharp-all: "5.2.2"
codeql/csharp-all: "5.4.4"
24 changes: 12 additions & 12 deletions csharp/src/codeql-pack.lock.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,27 +2,27 @@
lockVersion: 1.0.0
dependencies:
codeql/controlflow:
version: 2.0.13
version: 2.0.23
codeql/csharp-all:
version: 5.2.2
version: 5.4.4
codeql/csharp-queries:
version: 1.3.3
version: 1.5.4
codeql/dataflow:
version: 2.0.13
version: 2.0.23
codeql/mad:
version: 1.0.29
version: 1.0.39
codeql/ssa:
version: 2.0.5
version: 2.0.15
codeql/suite-helpers:
version: 1.0.29
version: 1.0.39
codeql/threat-models:
version: 1.0.29
version: 1.0.39
codeql/tutorial:
version: 1.0.29
version: 1.0.39
codeql/typetracking:
version: 2.0.13
version: 2.0.23
codeql/util:
version: 2.0.16
version: 2.0.26
codeql/xml:
version: 1.0.29
version: 1.0.39
compiled: false
6 changes: 3 additions & 3 deletions csharp/src/qlpack.yml
Original file line number Diff line number Diff line change
@@ -1,9 +1,9 @@
library: false
name: githubsecuritylab/codeql-csharp-queries
version: 0.3.0
version: 0.4.0
suites: suites
defaultSuiteFile: suites/csharp.qls
dependencies:
codeql/csharp-all: "5.2.2"
codeql/csharp-queries: "1.3.3" # Required for Dependencies.ql
codeql/csharp-all: "5.4.4"
codeql/csharp-queries: "1.5.4" # Required for Dependencies.ql
githubsecuritylab/codeql-csharp-libs: "*"
8 changes: 4 additions & 4 deletions csharp/src/security/CWE-918/RequestForgery.qll
Original file line number Diff line number Diff line change
Expand Up @@ -131,14 +131,14 @@ module RequestForgery {
* to be a guard for Server Side Request Forgery(SSRF) Vulnerabilities.
* This guard considers all checks as valid.
*/
private predicate baseUriGuard(Guard g, Expr e, AbstractValue v) {
private predicate baseUriGuard(Guard g, Expr e, GuardValue v) {
g.(MethodCall).getTarget().hasFullyQualifiedName("System", "Uri", "IsBaseOf") and
// we consider any checks against the tainted value to sainitize the taint.
// This implies any check such as shown below block the taint flow.
// Uri url = new Uri("whitelist.com")
// if (url.isBaseOf(`taint1))
(e = g.(MethodCall).getArgument(0) or e = g.(MethodCall).getQualifier()) and
v.(AbstractValues::BooleanValue).getValue() = true
v.asBooleanValue() = true
}

private class BaseUriBarrier extends Barrier {
Expand All @@ -150,14 +150,14 @@ module RequestForgery {
* to be a guard for Server Side Request Forgery(SSRF) Vulnerabilities.
* This guard considers all checks as valid.
*/
private predicate stringStartsWithGuard(Guard g, Expr e, AbstractValue v) {
private predicate stringStartsWithGuard(Guard g, Expr e, GuardValue v) {
g.(MethodCall).getTarget().hasFullyQualifiedName("System", "String", "StartsWith") and
// Any check such as the ones shown below
// "https://myurl.com/".startsWith(`taint`)
// `taint`.startsWith("https://myurl.com/")
// are assumed to sainitize the taint
(e = g.(MethodCall).getQualifier() or g.(MethodCall).getArgument(0) = e) and
v.(AbstractValues::BooleanValue).getValue() = true
v.asBooleanValue() = true
}

private class StringStartsWithBarrier extends Barrier {
Expand Down
24 changes: 12 additions & 12 deletions csharp/test/codeql-pack.lock.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,27 +2,27 @@
lockVersion: 1.0.0
dependencies:
codeql/controlflow:
version: 2.0.13
version: 2.0.23
codeql/csharp-all:
version: 5.2.2
version: 5.4.4
codeql/csharp-queries:
version: 1.3.3
version: 1.5.4
codeql/dataflow:
version: 2.0.13
version: 2.0.23
codeql/mad:
version: 1.0.29
version: 1.0.39
codeql/ssa:
version: 2.0.5
version: 2.0.15
codeql/suite-helpers:
version: 1.0.29
version: 1.0.39
codeql/threat-models:
version: 1.0.29
version: 1.0.39
codeql/tutorial:
version: 1.0.29
version: 1.0.39
codeql/typetracking:
version: 2.0.13
version: 2.0.23
codeql/util:
version: 2.0.16
version: 2.0.26
codeql/xml:
version: 1.0.29
version: 1.0.39
compiled: false
4 changes: 2 additions & 2 deletions csharp/test/qlpack.yml
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
name: githubsecurtylab/codeql-csharp-tests
groups: [csharp, test]
dependencies:
codeql/csharp-all: "5.2.2"
codeql/csharp-queries: "1.3.3"
codeql/csharp-all: "5.4.4"
codeql/csharp-queries: "1.5.4"
githubsecuritylab/codeql-csharp-extensions: "*"
githubsecuritylab/codeql-csharp-library-sources: "*"
githubsecuritylab/codeql-csharp-libs: "*"
Expand Down
4 changes: 2 additions & 2 deletions go/ext/qlpack.yml
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
library: true
name: githubsecuritylab/codeql-go-extensions
version: 0.3.0
version: 0.4.0
extensionTargets:
codeql/go-all: '4.3.2'
codeql/go-all: '5.0.6'
dataExtensions:
- 'manual/*.yml'
- 'manual/**/*.yml'
Expand Down
Loading
Loading