Geoffrey White
Geoffrey White
Possible improvement to `SimpleRangeAnalysis::boolConversionLowerBound`, motivated by a recent regression in the DCA tuple sums reports for this predicate (though I think it regressed at least one more time before this)...
Add `URL.resourceBytes`, `URL.lines` and `URL.resourceBytes.lines` as taint sources. I haven't used Models-As-Data because it doesn't currently support member variables in Swift. When that changes we should be able to simplify...
Fix FPs for `cpp/unused-static-function` in files that were not extracted completely, e.g. due to a compilation error part way through the file. As the test shows, this may hide some...
Implement models-as-data for C++. That is, support for CSV formatted flow sources, sinks and summaries that look something like this: ``` ";;false;getc;;;ReturnValue;remote", ``` The implementation is ported from Swift, and...
This is a simple follow-up to #16446 , which added the private information heuristics from Swift to the shared sensitive data library. This PR deletes them from Swift, deferring to...
Salvage some commits from old branches that have become dead ends: - add `BuiltinLiteralExpr.getValueString()`; this is a unified / consistent interface for accessing the value of literals. The specific use...
A few of the Swift `.qhelp` files have minor rendering issues now that we label the code snippets as Swift (and have syntax highlighting). The issue is believed to be...
Improve AliasedSSA performance, in particular on projects where it's been found to perform poorly (such as `AcademySoftwareFoundation/openexr`). Draft PR. The change I propose here definitely speeds up analysis on the...
Remove the workaround in `rust/unused-variable` that restricts results to files called `main.rs` (because we were getting far too many results otherwise). Once the necessary fixes are in, we can check...
New query `rust/access-after-lifetime-ended`, for detecting pointer dereferences after the lifetime of the pointed-to object has ended. Makes use of some existing tests that were created for `rust/access-invalid-pointer` (before I realized...