Skip to content

Sync Main (autogenerated) #240

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 694 commits into from
Jun 12, 2025
Merged

Sync Main (autogenerated) #240

merged 694 commits into from
Jun 12, 2025

Conversation

dilanbhalla
Copy link
Collaborator

This PR syncs the latest changes from codeql-cli/latest into main.

aschackmull and others added 30 commits May 23, 2025 14:17
@aschackmull
C#: Sync.
5b21188
@redsun82
Rust: update a comment
5c29461
@MathiasVP
Merge pull request github#19569 from MathiasVP/fix-return-value-surce…
0822ded 
…s-in-mad

Shared/C++: Handle non-standard return values in MaD flow sources/sinks
@jketema
C++: Add tests for various local Windows dataflow sources
b800040
@jketema
C++: Add Windows command line and environment models
a77ddd7
@jketema
C++: Update expected test results
fbc9615
@jketema
C++: Add change note
10f6e1c
@aibaars
Merge branch 'main' into aibaars/rust-extract-libs
5b28ff1
@hvitved
Merge pull request github#19506 from github/aibaars/rust-extract-libs
16690cc
@paldepind
Rust: Add type inference test with function call to trait method
e4d1b01
@paldepind
Rust: Resolve function calls to traits methods
e778cbe
@jketema
Swift: Update to Swift 6.1.1
bb9c72f
@hvitved
Merge pull request github#19570 from hvitved/type-inference/simplify-…
fcfe0a2 
…type-path-repr

Type inference: Simplify internal representation of type paths
@jketema
Swift: Update macOS runner
27fd7c4
@aschackmull
Merge pull request github#19571 from aschackmull/rangeanalysis/guards
a519eab 
Rangeanalysis: Simplify Guards integration.
@Napalys
JS: Move query suite selector logic to `javascript-security-and-quali…
37024ad 
…ty.qls`
Merge branch 'main' into redsun82/rust-macro
add3c94
@hvitved
Rust: Also include prelude path resolution in Core
ba77264
Rust: accept test changes
a749cf9
@Napalys
Added maintainability and error-handling tags
e964b17
@paldepind
Rust: Use member predicate from path resolution
0ce06e8
@jketema
Swift: Fix type string representation
b4d2fb4
@jketema
Swift: Update expected test results
f17076e
@aibaars
Rust: add option to extract dependencies as source files
765afdb
@redsun82
Merge pull request github#19572 from github/redsun82/rust-macro
b99b25c 
Rust: turn off macro expansion in code to be expanded by attribute macros
Rust: skip unexpanded stuff in library emission
c3af98b 
This will skip all unexpanded entities in library extraction, where we
only really care about expanded things. This means skipping:

* the token tree of macro calls
* the unexpanded AST of attribute macros

In the latter case, in order to replace the single `Item` with its
expansion (which is a `MacroItems` entity), we wrap the `MacroItems` in
a dummy `MacroCall` with null path.
@paldepind
Merge pull request github#19575 from paldepind/rust/function-call-method
bf2cfab 
Rust: Resolve function calls to traits methods
@paldepind
Rust: Add inconsistency check for type mentions without a root type
96cba8b
@paldepind
Rust: Only include relevant AST nodes in TypeMention
5278064
@paldepind
Rust: Accept test changes
ba4950f
aibaars and others added 27 commits June 4, 2025 16:04
@aibaars
Merge pull request github#19630 from github/aibaars/qldoc-ast
189c16b 
Rust: add documentation for AST nodes
@IdrissRio
C++: accept new test results after changes
149c53b
@hvitved
Merge pull request github#19669 from hvitved/rust/external-location-p…
76c6d71 
…ost-processing

Rust: Remove external locations in tests using post-processing
@github-actions
Add changed framework coverage reports
401911e
@smowton
Actions: Make Env non-abstract
338d383 
`class Env` was previously abstract with no concrete descendants, so user queries like `any(Env e | ...)` would never produce results.

In the JS library the corresponding class derived from `YamlNode` and has concrete descendants representing workflow-, job- and step-level `env` nodes. However these are dubiously useful since you can always just use `any(Step s).getEnv()` to achieve the same result. Since `EnvImpl` already fully characterises an `env` node, I simply make the class concrete.
@jketema
Swift: Update to Swift 6.1.2
3f89dd3
@jketema
Swift: Remove empty line from change note
5b5d855
@jketema
C++: Update stats file after changes to DCA source suite
057d3eb
@jketema
Merge pull request github#19533 from github/idrissrio/constexpr
99ef4c7 
C++: accept new test results after changes
@smowton
Merge pull request github#19675 from github/smowton/fix/abstract-env
fbae306 
Actions: Make `Env` non-abstract
@owen-mc
Merge pull request github#19673 from github/workflow/coverage/update
238a302 
Update CSV framework coverage reports
@dependabot
Bump the extractor-dependencies group in /go/extractor with 2 updates
bbabf2c 
Bumps the extractor-dependencies group in /go/extractor with 2 updates: [golang.org/x/mod](https://github.com/golang/mod) and [golang.org/x/tools](https://github.com/golang/tools).


Updates `golang.org/x/mod` from 0.24.0 to 0.25.0
- [Commits](golang/mod@v0.24.0...v0.25.0)

Updates `golang.org/x/tools` from 0.33.0 to 0.34.0
- [Release notes](https://github.com/golang/tools/releases)
- [Commits](golang/tools@v0.33.0...v0.34.0)

---
updated-dependencies:
- dependency-name: golang.org/x/mod
  dependency-version: 0.25.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: extractor-dependencies
- dependency-name: golang.org/x/tools
  dependency-version: 0.34.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: extractor-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@jketema
C++: Fix join-order problem after stats file update
86f425d 
Before the fix:
```
Pipeline standard for AVRule79::exprReleases/3#e849cdd3@f2995ebb was evaluated in 5 iterations totaling 168745ms (delta sizes total: 12583).
              85855    ~0%    {2} r1 = SCAN `AVRule79::exprReleases/3#e849cdd3#prev_delta` OUTPUT In.1, In.2

              85855    ~0%    {2} r2 = JOIN r1 WITH `AVRule79::exprOrDereference/1#c20425a1_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
             115767    ~6%    {2}    | JOIN WITH `ASTValueNumbering::GVN.getAnExpr/0#dispred#a14f45bf_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
             333369   ~18%    {2}    | JOIN WITH `ASTValueNumbering::GVN.getAnExpr/0#dispred#a14f45bf` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
             266264  ~204%    {2}    | JOIN WITH `Access::Access.getTarget/0#dispred#cf25c8aa` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
              16379   ~21%    {3}    | JOIN WITH `Function::Function.getParameter/1#dispred#200dcf26_201#join_rhs` ON FIRST 1 OUTPUT Rhs.2, Lhs.1, Rhs.1

        13117819221    ~0%    {4} r3 = JOIN r2 WITH `Call::Call.getArgument/1#dispred#ada436ba_102#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.2, Lhs.1, Rhs.2
              10477    ~3%    {3}    | JOIN WITH `Call::FunctionCall.getTarget/0#dispred#935da4c5` ON FIRST 2 OUTPUT Lhs.0, Lhs.3, Lhs.2

        13117819221    ~1%    {4} r4 = JOIN r2 WITH `Call::Call.getArgument/1#dispred#ada436ba_102#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1, Lhs.2, Rhs.2
        13022632157    ~1%    {5}    | JOIN WITH `Call::FunctionCall.getTarget/0#dispred#935da4c5` ON FIRST 1 OUTPUT Rhs.1, Lhs.2, Lhs.1, Lhs.0, Lhs.3
               3720   ~70%    {3}    | JOIN WITH `#MemberFunction::MemberFunction.getAnOverridingFunction/0#dispred#a6e65b9ePlus` ON FIRST 2 OUTPUT Lhs.3, Lhs.4, Lhs.2

             115767    ~6%    {2} r5 = JOIN r1 WITH `ASTValueNumbering::GVN.getAnExpr/0#dispred#a14f45bf_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
             333367   ~20%    {3}    | JOIN WITH `ASTValueNumbering::GVN.getAnExpr/0#dispred#a14f45bf` ON FIRST 1 OUTPUT Rhs.1, _, Lhs.1
             333367   ~12%    {3}    | REWRITE WITH Out.1 := 85
                  4    ~0%    {2}    | JOIN WITH exprs ON FIRST 2 OUTPUT Lhs.0, Lhs.2
                  4  ~100%    {2}    | JOIN WITH `Expr::Expr.getEnclosingFunction/0#dispred#3960f06c` ON FIRST 1 OUTPUT Rhs.1, Lhs.1

                  0    ~0%    {2} r6 = JOIN r5 WITH `Call::FunctionCall.getTarget/0#dispred#935da4c5_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1

                  0    ~0%    {2} r7 = JOIN r5 WITH `#MemberFunction::MemberFunction.getAnOverridingFunction/0#dispred#a6e65b9ePlus#swapped` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
                  0    ~0%    {2}    | JOIN WITH `Call::FunctionCall.getTarget/0#dispred#935da4c5_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1

                  0    ~0%    {2} r8 = r6 UNION r7
                  0    ~0%    {3}    | JOIN WITH `Call::Call.getQualifier/0#dispred#7d175544` ON FIRST 1 OUTPUT Rhs.1, Lhs.1, Lhs.0
                  0    ~0%    {3}    | JOIN WITH `AVRule79::exprOrDereference/1#c20425a1_10#join_rhs` ON FIRST 1 OUTPUT Lhs.2, Rhs.1, Lhs.1

              14197   ~18%    {3} r9 = r3 UNION r4 UNION r8
              12615    ~3%    {3}    | AND NOT `AVRule79::exprReleases/3#e849cdd3#prev`(FIRST 3)
                              return r9
```

After:
```
Pipeline standard for AVRule79::exprReleases/3#e849cdd3@13dead04 was evaluated in 5 iterations totaling 68ms (delta sizes total: 12551).
         85855    ~0%    {2} r1 = SCAN `AVRule79::exprReleases/3#e849cdd3#prev_delta` OUTPUT In.1, In.2

         85855    ~0%    {2} r2 = JOIN r1 WITH `AVRule79::exprOrDereference/1#c20425a1_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
        115767    ~6%    {2}    | JOIN WITH `ASTValueNumbering::GVN.getAnExpr/0#dispred#a14f45bf_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
        333443   ~18%    {2}    | JOIN WITH `ASTValueNumbering::GVN.getAnExpr/0#dispred#a14f45bf` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
        265872  ~204%    {2}    | JOIN WITH `Access::Access.getTarget/0#dispred#cf25c8aa` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
         16399   ~27%    {3}    | JOIN WITH `Function::Function.getParameter/1#dispred#200dcf26_201#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1, Rhs.2

         10489    ~1%    {3} r3 = JOIN r2 WITH `Call::FunctionCall.getTarget/0#dispred#935da4c5_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.2, Lhs.1

          1558   ~80%    {3} r4 = JOIN r2 WITH `#MemberFunction::MemberFunction.getAnOverridingFunction/0#dispred#a6e65b9ePlus#swapped` ON FIRST 1 OUTPUT Rhs.1, Lhs.1, Lhs.2
          2196    ~7%    {3}    | JOIN WITH `Call::FunctionCall.getTarget/0#dispred#935da4c5_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.2, Lhs.1

         12685    ~3%    {3} r5 = r3 UNION r4
         12581    ~3%    {3}    | JOIN WITH `Call::Call.getArgument/1#dispred#ada436ba` ON FIRST 2 OUTPUT Lhs.0, Rhs.2, Lhs.2

        115767    ~6%    {2} r6 = JOIN r1 WITH `ASTValueNumbering::GVN.getAnExpr/0#dispred#a14f45bf_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
        333443   ~20%    {3}    | JOIN WITH `ASTValueNumbering::GVN.getAnExpr/0#dispred#a14f45bf` ON FIRST 1 OUTPUT Rhs.1, _, Lhs.1
        333443   ~12%    {3}    | REWRITE WITH Out.1 := 85
             4    ~0%    {2}    | JOIN WITH exprs ON FIRST 2 OUTPUT Lhs.0, Lhs.2
             4  ~100%    {2}    | JOIN WITH `Expr::Expr.getEnclosingFunction/0#dispred#3960f06c` ON FIRST 1 OUTPUT Rhs.1, Lhs.1

             0    ~0%    {2} r7 = JOIN r6 WITH `Call::FunctionCall.getTarget/0#dispred#935da4c5_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1

             0    ~0%    {2} r8 = JOIN r6 WITH `#MemberFunction::MemberFunction.getAnOverridingFunction/0#dispred#a6e65b9ePlus#swapped` ON FIRST 1 OUTPUT Rhs.1, Lhs.1
             0    ~0%    {2}    | JOIN WITH `Call::FunctionCall.getTarget/0#dispred#935da4c5_10#join_rhs` ON FIRST 1 OUTPUT Rhs.1, Lhs.1

             0    ~0%    {2} r9 = r7 UNION r8
             0    ~0%    {3}    | JOIN WITH `Call::Call.getQualifier/0#dispred#7d175544` ON FIRST 1 OUTPUT Rhs.1, Lhs.1, Lhs.0
             0    ~0%    {3}    | JOIN WITH `AVRule79::exprOrDereference/1#c20425a1_10#join_rhs` ON FIRST 1 OUTPUT Lhs.2, Rhs.1, Lhs.1

         12581    ~3%    {3} r10 = r5 UNION r9
         12576    ~3%    {3}    | AND NOT `AVRule79::exprReleases/3#e849cdd3#prev`(FIRST 3)
                         return r10
```
@owen-mc
Merge pull request github#19683 from github/dependabot/go_modules/go/…
5bfed77 
…extractor/extractor-dependencies-e08f8ad452

Bump the extractor-dependencies group in /go/extractor with 2 updates
@jketema
Swift: Update LFS
1f7a6ba
@owen-mc
Merge pull request github#19386 from owen-mc/go/promote/html-template…
ef5e605 
…-escaping-bypass-xss

Go: promote `html-template-escaping-bypass-xss`
@jketema
Merge pull request github#19679 from jketema/stats
428b48d 
C++: Update stats file after changes to DCA source suite
@cklin
Merge branch 'main' into cklin/rc-3.18-mergeback
631502e
@cklin
Merge pull request github#19699 from github/cklin/rc-3.18-mergeback
68d2c13 
Merge rc/3.18 back to main
@jketema
Merge pull request github#19678 from jketema/swift-6.1.2
ef210b8 
Swift: Update to Swift 6.1.2
@adityasharad
CI: Expand list of packs/languages for change note validation
9f60335
@adityasharad
Merge pull request github#19700 from adityasharad/actions/validate-ch…
98186e3 
…ange-notes

CI: Expand list of packs/languages for change note validation
Release preparation for version 2.22.0
88ba02e
@cklin
Merge pull request github#19703 from github/release-prep/2.22.0
4d681f0 
Release preparation for version 2.22.0
Merge branch 'main' of https://github.com/microsoft/codeql into auto/…
9521d06 
…sync-main-pr
Merge branch 'main' of https://github.com/microsoft/codeql into auto/…
b8a78f7 
…sync-main-pr
Merge tag 'codeql-cli/latest' into auto/sync-main-pr
7bfefef 
Compatible with the latest released version of the CodeQL CLI
@dilanbhalla dilanbhalla merged commit 8e09d96 into main Jun 12, 2025
16 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@MathiasVP MathiasVP MathiasVP approved these changes

@ropwareJB ropwareJB Awaiting requested review from ropwareJB

Assignees
No one assigned
Labels
autogenerated
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.