Skip to content

C#: Deprecate experimental queries. #17911

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
michaelnebel merged 3 commits into from
Jan 21, 2025

C#: Add change-note.

9356295
Select commit
Loading
Failed to load commit list.
Merged

C#: Deprecate experimental queries. #17911

C#: Add change-note.
9356295
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL completed Jan 21, 2025 in 5s

4 configurations not found

Warning: Code scanning may not have found all the alerts introduced by this pull request, because 4 configurations present on refs/heads/main were not found:

Actions workflow (rust-analysis.yml)

  • ❓  .github/workflows/rust-analysis.yml:analyze/language:rust

Actions workflow (csv-coverage-metrics.yml)

  • ❓  .github/workflows/csv-coverage-metrics.yml:publish-csharp
  • ❓  .github/workflows/csv-coverage-metrics.yml:publish-java

Actions workflow (cpp-swift-analysis.yml)

  • ❓  .github/workflows/cpp-swift-analysis.yml:CodeQL-Build

New alerts in code changed by this pull request

  • 7 warnings

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 19 in csharp/ql/src/experimental/Security Features/CWE-1004/CookieWithoutHttpOnly.ql

See this annotation in the file changed.

Code scanning / CodeQL

Redundant import Warning

Redundant import, the module is already imported inside
experimental.dataflow.flowsources.AuthCookie
Loading
.

Check warning on line 19 in csharp/ql/src/experimental/Security Features/CWE-614/CookieWithoutSecure.ql

See this annotation in the file changed.

Code scanning / CodeQL

Redundant import Warning

Redundant import, the module is already imported inside
experimental.dataflow.flowsources.AuthCookie
Loading
.

Check warning on line 16 in csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql

See this annotation in the file changed.

Code scanning / CodeQL

Redundant import Warning

Redundant import, the module is already imported inside
JsonWebTokenHandlerLib
Loading
.

Check warning on line 23 in csharp/ql/src/experimental/Security Features/Serialization/DefiningPotentiallyUnsafeXmlSerializer.ql

See this annotation in the file changed.

Code scanning / CodeQL

Using 'toString' in query logic Warning

Query logic depends on implementation of 'toString'.

Check warning on line 25 in csharp/ql/src/experimental/Security Features/Serialization/DefiningPotentiallyUnsafeXmlSerializer.ql

See this annotation in the file changed.

Code scanning / CodeQL

Using 'toString' in query logic Warning

Query logic depends on implementation of 'toString'.

Check warning on line 49 in csharp/ql/src/experimental/Security Features/Serialization/UnsafeTypeUsedDataContractSerializer.ql

See this annotation in the file changed.

Code scanning / CodeQL

Using 'toString' in query logic Warning

Query logic depends on implementation of 'toString'.

Check warning on line 186 in csharp/ql/src/experimental/Security Features/backdoor/PotentialTimeBomb.ql

See this annotation in the file changed.

Code scanning / CodeQL

Using 'toString' in query logic Warning

Query logic depends on implementation of 'toString'.