github
diff --git a/‎cpp/ql/src/Likely Bugs/Leap Year/UncheckedReturnValueForTimeFunctions.ql‎
Lines changed: 6 additions & 4 deletions b/‎cpp/ql/src/Likely Bugs/Leap Year/UncheckedReturnValueForTimeFunctions.ql‎
Lines changed: 6 additions & 4 deletions
diff --git a/‎cpp/ql/src/semmle/code/cpp/commons/Strcat.qll‎
Lines changed: 9 additions & 7 deletions b/‎cpp/ql/src/semmle/code/cpp/commons/Strcat.qll‎
Lines changed: 9 additions & 7 deletions
diff --git a/‎cpp/ql/src/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll‎
Lines changed: 4 additions & 2 deletions b/‎cpp/ql/src/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll‎
Lines changed: 4 additions & 2 deletions
diff --git a/‎cpp/ql/src/semmle/code/cpp/models/implementations/Iterator.qll‎
Lines changed: 4 additions & 2 deletions b/‎cpp/ql/src/semmle/code/cpp/models/implementations/Iterator.qll‎
Lines changed: 4 additions & 2 deletions
diff --git a/‎cpp/ql/src/semmle/code/cpp/models/implementations/Pure.qll‎
Lines changed: 5 additions & 3 deletions b/‎cpp/ql/src/semmle/code/cpp/models/implementations/Pure.qll‎
Lines changed: 5 additions & 3 deletions
diff --git a/‎cpp/ql/src/semmle/code/cpp/models/implementations/Strcpy.qll‎
Lines changed: 16 additions & 12 deletions b/‎cpp/ql/src/semmle/code/cpp/models/implementations/Strcpy.qll‎
Lines changed: 16 additions & 12 deletions
diff --git a/‎cpp/ql/src/semmle/code/cpp/security/BufferWrite.qll‎
Lines changed: 5 additions & 3 deletions b/‎cpp/ql/src/semmle/code/cpp/security/BufferWrite.qll‎
Lines changed: 5 additions & 3 deletions
diff --git a/‎csharp/ql/src/semmle/code/csharp/dataflow/LibraryTypeDataFlow.qll‎
Lines changed: 4 additions & 2 deletions b/‎csharp/ql/src/semmle/code/csharp/dataflow/LibraryTypeDataFlow.qll‎
Lines changed: 4 additions & 2 deletions
diff --git a/‎csharp/ql/src/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll‎
Lines changed: 4 additions & 1 deletion b/‎csharp/ql/src/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎csharp/ql/src/semmle/code/csharp/dataflow/internal/rangeanalysis/SignAnalysisSpecific.qll‎
Lines changed: 3 additions & 2 deletions b/‎csharp/ql/src/semmle/code/csharp/dataflow/internal/rangeanalysis/SignAnalysisSpecific.qll‎
Lines changed: 3 additions & 2 deletions
@@ -50,10 +50,12 @@ class SafeTimeGatheringFunction extends Function {
 class TimeConversionFunction extends Function {
   TimeConversionFunction() {
     this.getQualifiedName() =
-      ["FileTimeToSystemTime", "SystemTimeToFileTime", "SystemTimeToTzSpecificLocalTime",
-          "SystemTimeToTzSpecificLocalTimeEx", "TzSpecificLocalTimeToSystemTime",
-          "TzSpecificLocalTimeToSystemTimeEx", "RtlLocalTimeToSystemTime",
-          "RtlTimeToSecondsSince1970", "_mkgmtime"]
+      [
+        "FileTimeToSystemTime", "SystemTimeToFileTime", "SystemTimeToTzSpecificLocalTime",
+        "SystemTimeToTzSpecificLocalTimeEx", "TzSpecificLocalTimeToSystemTime",
+        "TzSpecificLocalTimeToSystemTimeEx", "RtlLocalTimeToSystemTime",
+        "RtlTimeToSecondsSince1970", "_mkgmtime"
+      ]
   }
 }
 
 
@@ -9,12 +9,14 @@ import cpp
 class StrcatFunction extends Function {
   StrcatFunction() {
     getName() =
-      ["strcat", // strcat(dst, src)
-          "strncat", // strncat(dst, src, max_amount)
-          "wcscat", // wcscat(dst, src)
-          "_mbscat", // _mbscat(dst, src)
-          "wcsncat", // wcsncat(dst, src, max_amount)
-          "_mbsncat", // _mbsncat(dst, src, max_amount)
-          "_mbsncat_l"] // _mbsncat_l(dst, src, max_amount, locale)
+      [
+        "strcat", // strcat(dst, src)
+        "strncat", // strncat(dst, src, max_amount)
+        "wcscat", // wcscat(dst, src)
+        "_mbscat", // _mbscat(dst, src)
+        "wcsncat", // wcsncat(dst, src, max_amount)
+        "_mbsncat", // _mbsncat(dst, src, max_amount)
+        "_mbsncat_l" // _mbsncat_l(dst, src, max_amount, locale)
+      ]
   }
 }
@@ -243,8 +243,10 @@ pragma[noinline]
 private predicate getWrittenField(Instruction instr, Field f, Class c) {
   exists(FieldAddressInstruction fa |
     fa =
-      getFieldInstruction([instr.(StoreInstruction).getDestinationAddress(),
-            instr.(WriteSideEffectInstruction).getDestinationAddress()]) and
+      getFieldInstruction([
+          instr.(StoreInstruction).getDestinationAddress(),
+          instr.(WriteSideEffectInstruction).getDestinationAddress()
+        ]) and
     f = fa.getField() and
     c = f.getDeclaringType()
   )
 
@@ -308,8 +308,10 @@ class IteratorAssignmentMemberOperator extends MemberFunction, TaintFunction {
 class BeginOrEndFunction extends MemberFunction, TaintFunction, GetIteratorFunction {
   BeginOrEndFunction() {
     this
-        .hasName(["begin", "cbegin", "rbegin", "crbegin", "end", "cend", "rend", "crend",
-              "before_begin", "cbefore_begin"]) and
+        .hasName([
+            "begin", "cbegin", "rbegin", "crbegin", "end", "cend", "rend", "crend", "before_begin",
+            "cbefore_begin"
+          ]) and
     this.getType().getUnspecifiedType() instanceof Iterator
   }
 
 
@@ -5,9 +5,11 @@ import semmle.code.cpp.models.interfaces.SideEffect
 
 class PureStrFunction extends AliasFunction, ArrayFunction, TaintFunction, SideEffectFunction {
   PureStrFunction() {
-    hasGlobalOrStdName(["atof", "atoi", "atol", "atoll", "strcasestr", "strchnul", "strchr",
-          "strchrnul", "strstr", "strpbrk", "strcmp", "strcspn", "strncmp", "strrchr", "strspn",
-          "strtod", "strtof", "strtol", "strtoll", "strtoq", "strtoul"])
+    hasGlobalOrStdName([
+        "atof", "atoi", "atol", "atoll", "strcasestr", "strchnul", "strchr", "strchrnul", "strstr",
+        "strpbrk", "strcmp", "strcspn", "strncmp", "strrchr", "strspn", "strtod", "strtof",
+        "strtol", "strtoll", "strtoq", "strtoul"
+      ])
   }
 
   override predicate hasArrayInput(int bufParam) {
 
@@ -14,20 +14,24 @@ import semmle.code.cpp.models.interfaces.SideEffect
 class StrcpyFunction extends ArrayFunction, DataFlowFunction, TaintFunction, SideEffectFunction {
   StrcpyFunction() {
     getName() =
-      ["strcpy", // strcpy(dst, src)
-          "wcscpy", // wcscpy(dst, src)
-          "_mbscpy", // _mbscpy(dst, src)
-          "strncpy", // strncpy(dst, src, max_amount)
-          "_strncpy_l", // _strncpy_l(dst, src, max_amount, locale)
-          "wcsncpy", // wcsncpy(dst, src, max_amount)
-          "_wcsncpy_l", // _wcsncpy_l(dst, src, max_amount, locale)
-          "_mbsncpy", // _mbsncpy(dst, src, max_amount)
-          "_mbsncpy_l"] // _mbsncpy_l(dst, src, max_amount, locale)
+      [
+        "strcpy", // strcpy(dst, src)
+        "wcscpy", // wcscpy(dst, src)
+        "_mbscpy", // _mbscpy(dst, src)
+        "strncpy", // strncpy(dst, src, max_amount)
+        "_strncpy_l", // _strncpy_l(dst, src, max_amount, locale)
+        "wcsncpy", // wcsncpy(dst, src, max_amount)
+        "_wcsncpy_l", // _wcsncpy_l(dst, src, max_amount, locale)
+        "_mbsncpy", // _mbsncpy(dst, src, max_amount)
+        "_mbsncpy_l" // _mbsncpy_l(dst, src, max_amount, locale)
+      ]
     or
     getName() =
-      ["strcpy_s", // strcpy_s(dst, max_amount, src)
-          "wcscpy_s", // wcscpy_s(dst, max_amount, src)
-          "_mbscpy_s"] and // _mbscpy_s(dst, max_amount, src)
+      [
+        "strcpy_s", // strcpy_s(dst, max_amount, src)
+        "wcscpy_s", // wcscpy_s(dst, max_amount, src)
+        "_mbscpy_s" // _mbscpy_s(dst, max_amount, src)
+      ] and
     // exclude the 2-parameter template versions
     // that find the size of a fixed size destination buffer.
     getNumberOfParameters() = 3
 
@@ -355,9 +355,11 @@ class SnprintfBW extends BufferWriteCall {
 class GetsBW extends BufferWriteCall {
   GetsBW() {
     getTarget().(TopLevelFunction).getName() =
-      ["gets", // gets(dst)
-          "fgets", // fgets(dst, max_amount, src_stream)
-          "fgetws"] // fgetws(dst, max_amount, src_stream)
+      [
+        "gets", // gets(dst)
+        "fgets", // fgets(dst, max_amount, src_stream)
+        "fgetws" // fgetws(dst, max_amount, src_stream)
+      ]
   }
 
   /**
 
@@ -1751,8 +1751,10 @@ class SystemTupleFlow extends LibraryTypeDataFlow, ValueOrRefType {
     result =
       unique(AccessPath ap |
         i in [1 .. count(this.getAMember())] and
-        ap in [AccessPath::field(this.getField("Item" + i)),
-              AccessPath::property(this.getProperty("Item" + i))]
+        ap in [
+            AccessPath::field(this.getField("Item" + i)),
+            AccessPath::property(this.getProperty("Item" + i))
+          ]
       |
         ap
       )
 
@@ -382,7 +382,10 @@ private predicate isParamsArg(Call c, Expr arg, Parameter p) {
     p.isParams() and
     numArgs = c.getNumberOfArguments() and
     arg =
-      [getImplicitArgument(c, [p.getPosition() .. numArgs - 1]), getExplicitArgument(c, p.getName())]
+      [
+        getImplicitArgument(c, [p.getPosition() .. numArgs - 1]),
+        getExplicitArgument(c, p.getName())
+      ]
   |
     numArgs > target.getNumberOfParameters()
     or
 
@@ -160,8 +160,9 @@ private module Impl {
 
   /** Returned an expression that is assigned to `f`. */
   ExprNode getAssignedValueToField(Field f) {
-    result.getExpr() in [f.getAnAssignedValue(),
-          any(AssignOperation a | a.getLValue() = f.getAnAccess())]
+    result.getExpr() in [
+        f.getAnAssignedValue(), any(AssignOperation a | a.getLValue() = f.getAnAccess())
+      ]
   }
 
   /** Holds if `f` can have any sign. */
Original file line number	Diff line number	Diff line change
`@@ -1751,8 +1751,10 @@ class SystemTupleFlow extends LibraryTypeDataFlow, ValueOrRefType {`
`1751`	`1751`	`result =`
`1752`	`1752`	`unique(AccessPath ap \|`
`1753`	`1753`	`i in [1 .. count(this.getAMember())] and`
`1754`		`- ap in [AccessPath::field(this.getField("Item" + i)),`
`1755`		`- AccessPath::property(this.getProperty("Item" + i))]`
	`1754`	`+ ap in [`
	`1755`	`+ AccessPath::field(this.getField("Item" + i)),`
	`1756`	`+ AccessPath::property(this.getProperty("Item" + i))`
	`1757`	`+ ]`
`1756`	`1758`	`\|`
`1757`	`1759`	`ap`
`1758`	`1760`	`)`