averello/nextcloud-server-mirror
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-06-24 12:24:39 +02:00
Code Issues Packages Projects Releases Wiki Activity
88,512 Commits 1,030 Branches 1,226 Tags
executeUpdateRemove
Commit Graph

21 Commits

Author SHA1 Message Date
Côme Chilliet a62bff17f2 fix: Fix suppressing ImpureStaticProperty and suppress it in a few places 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2026-06-02 09:46:18 +02:00
Côme Chilliet 8b5bc09cbe feat: Add a psalm plugin to forbid static properties and variables 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2026-06-02 09:46:16 +02:00
Daniel Kesselberg aee960cc5a fix(since): Ignore private methods in OCP 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2026-04-28 11:17:26 +02:00
Daniel Kesselberg fd8d7878d4 fix(since): Import PhpParser classes 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2026-04-28 11:17:26 +02:00
provokateurin 40c39270c0 fix((ITypedQueryBuilder): Fix chained calls of non-select methods 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2026-02-25 09:51:59 +01:00
provokateurin 161c91e1fd feat(DB): Add ITypedQueryBuilder 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2026-02-23 14:06:11 +01:00
Joas Schilling 967a181403 ci(psalm): Add a checker against logical operators 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2025-11-07 12:07:25 +01:00
Maxence Lange 0b82442d94 feat(since-checker): check statement for /lib/public/migration/attributes 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
 2025-09-03 22:27:59 -01:00
Joas Schilling a3b2557486 chore(OCP): Migrate lib/Config/ to new attributes 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2025-07-25 16:17:35 +02:00
Joas Schilling d717dd9850 feat(OCP): Consumable vs. Implementable public API 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2025-07-09 10:24:10 +02:00
Daniel Kesselberg dd3fa88b36 chore: check enums for since and experimental comments 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2024-12-02 14:30:18 +01:00
provokateurin 72571a19dd build(psalm): Configure unstable namespace 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2024-11-12 11:46:13 +01:00
provokateurin a94249d1d5 build(psalm): Enforce named attribute arguments 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2024-07-27 22:36:18 +02:00
Andy Scherzinger 3a161f74fb fix: move SPDX info of generated files to dep5 definition 
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
 2024-05-10 11:07:54 +02:00
Andy Scherzinger 1df96b0417 chore: Add SPDX header 
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
 2024-05-10 11:07:50 +02:00
Joas Schilling 887c061fc8 fix(OCP): Check for typos in "deprecated" 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-02-14 20:50:07 +01:00
jld3103 e7926b9644 Refactor AppFrameworkTainter to make it more readable 
Signed-off-by: jld3103 <jld3103yt@gmail.com>
 2023-04-05 07:07:53 +02:00
jld3103 14283001a5 Update AppFrameworkTainter to use non-deprecated interface 
Signed-off-by: jld3103 <jld3103yt@gmail.com>
 2023-04-05 07:07:53 +02:00
Daniel Kesselberg 258c919b3c ci: migrate ocp since checker to psalm 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2023-01-24 10:02:41 +01:00
dependabot-preview[bot] eb502c02ff Bump nextcloud/coding-standard from 0.3.0 to 0.5.0 
Bumps [nextcloud/coding-standard](https://github.com/nextcloud/coding-standard) from 0.3.0 to 0.5.0.
- [Release notes](https://github.com/nextcloud/coding-standard/releases)
- [Changelog](https://github.com/nextcloud/coding-standard/blob/master/CHANGELOG.md)
- [Commits](https://github.com/nextcloud/coding-standard/compare/v0.3.0...v0.5.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2021-02-18 13:31:24 +01:00
Lukas Reschke 47ac8e0028 Add Psalm Taint Flow Analysis 
This adds the Psalm Security Analysis, as described at
https://psalm.dev/docs/security_analysis/

It also adds a plugin for adding input into AppFramework.

The results can be viewed in the GitHub Security tab at
https://github.com/nextcloud/server/security/code-scanning

**Q&A:**

Q: Why do you not use the shipped Psalm version?
A: I do a lot of changes to the Psalm Taint behaviour. Using released
versions is not gonna get us the results we want.

Q: How do I improve false positives?
A: https://psalm.dev/docs/security_analysis/avoiding_false_positives/

Q: How do I add custom sources?
A: https://psalm.dev/docs/security_analysis/custom_taint_sources/

Q: We should run this on apps!
A: Yes.

Q: What will change in Psalm?
A: Quite some of the PHP core functions are not yet marked to propagate
the taint. This leads to results where the taint flow is lost. That's
something that I am currently working on.

Q: Why is the plugin MIT licensed?
A: Because its the first of its kind (based on GitHub Code Search) and
I want other people to copy it if they want to. Security is for all :)

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2020-11-20 23:12:00 +01:00