Skip to content

C/C++ overlay: Discard xml entities #21017

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
IdrissRio merged 2 commits into from
Dec 11, 2025
Merged

C/C++ overlay: Discard xml entities #21017

IdrissRio merged 2 commits into from
Dec 11, 2025
+50 −1

Conversation

@IdrissRio
Copy link
Contributor

@IdrissRio IdrissRio commented Dec 11, 2025
edited by jketema
Loading

This PR adds support for discarding XML entities in C++ overlay analysis.

It introduces OverlayXml.qll following the same approach as other languages, e.g., Java, C#, Javascript etc.

@github-actions github-actions bot added the C++ label Dec 11, 2025
@IdrissRio IdrissRio force-pushed the idrissrio/cpp/overlay/xml branch from 0243e2b to 84bbe71 Compare December 11, 2025 14:46
@IdrissRio IdrissRio marked this pull request as ready for review December 11, 2025 15:46
@IdrissRio IdrissRio requested a review from a team as a code owner December 11, 2025 15:46
Copilot AI review requested due to automatic review settings December 11, 2025 15:46
Copilot AI reviewed Dec 11, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR adds support for discarding XML entities in C++ overlay analysis by introducing a new OverlayXml.qll module that follows the established pattern used in other CodeQL languages.

  • Introduces OverlayXml.qll with predicates to identify and discard XML entities from the overlay base
  • Integrates the new module into the existing Overlay.qll infrastructure

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated no comments.

File Description
cpp/ql/lib/semmle/code/cpp/internal/OverlayXml.qll New module implementing XML entity discard logic for overlay analysis, identical to implementations in other languages
cpp/ql/lib/semmle/code/cpp/internal/Overlay.qll Imports the new OverlayXml module to enable XML entity discarding

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@IdrissRio IdrissRio added the no-change-note-required This PR does not need a change note label Dec 11, 2025
@jketema
Copy link
Contributor

jketema commented Dec 11, 2025

You'll need to update

codeql/config/identical-files.json

Line 280 in e13bb0f

"XML discard predicates": [

@IdrissRio IdrissRio requested a review from a team as a code owner December 11, 2025 15:56
@IdrissRio IdrissRio merged commit 8fccc34 into main Dec 11, 2025
17 checks passed
@IdrissRio IdrissRio deleted the idrissrio/cpp/overlay/xml branch December 11, 2025 19:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@jketema jketema jketema approved these changes

Assignees

No one assigned

Labels

C++ no-change-note-required This PR does not need a change note

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@IdrissRio @jketema