github / codeql

Watch 50
Star 965
Fork 248

Code
Issues 114
Pull requests 108
Actions
Projects 0
Security
Insights

Code Issues 114 Pull requests 108 Projects 0 Actions Security Pulse

Labels 23 Milestones 3

New pull request New

108 Open 3,095 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels.

Projects

Filter by project

Milestones

Filter by milestone

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated

Most reactions

Revert "C++: Properly deprecate objc.qll and default.qll"

#3562 opened May 26, 2020 by jiejiiie • Review required

JS: Don't flag optionally sanitized XSS sinks.

#3560 opened May 25, 2020 by erik-krogh • Review required

C++: QLDoc for legacy libraries in `external` dir

C++

#3557 opened May 25, 2020 by jbj • Review required

C++/JavaScript: Improve CodeDuplication.qll QLDoc

C++ JS

#3556 opened May 25, 2020 by jbj • Review required

JavaScript: Track `require` through local data flow.

#3555 opened May 25, 2020 by max-schaefer • Review required

C++: Don't give alerts from TooFewArguments.ql on ambiguous declarations

C++

#3554 opened May 25, 2020 by jbj • Approved

1 2

Java: CWE-273 Unsafe certificate trust

Java

#3550 opened May 24, 2020 by luchua-bc • Review required

C++: Fix duplicate result types

C++

#3548 opened May 22, 2020 by dbartol • Review required

add support for java.io.StringWriter

#3547 opened May 22, 2020 by pwntester • Review required

Python: How to make TaintKinds for dict subclasses

Python

#3545 opened May 22, 2020 by RasmusWL • Draft

Java: add websocket reads as remote flow source.

Java

#3543 opened May 21, 2020 by porcupineyhairs • Review required

Java : add MongoDB injection sinks

Java

#3542 opened May 21, 2020 by porcupineyhairs • Review required

JS: Add test case for missed captured flow

#3539 opened May 21, 2020 by asgerf • Approved

QL language: Clarify use of query modules

documentation

#3538 opened May 21, 2020 by shati-patel • Review required

Java: CWE-523 Insecure HSTS configuration

Java

#3534 opened May 20, 2020 by luchua-bc • Review required

C++: Taint flow to formatting function return values.

C++

#3533 opened May 20, 2020 by geoffw0 • Review required

C++: Remove field conflation caused by IR field flow

C++

#3532 opened May 20, 2020 by MathiasVP • Review required

JS: Remove timeout for node --version check

#3531 opened May 20, 2020 by asgerf • Approved

C#: Fix extracted type for nested object initializers

#3529 opened May 20, 2020 by hvitved • Review required

C#: Fix CFG for C# 6 initializers

#3528 opened May 20, 2020 by hvitved • Review required

JS: model fastify

Awaiting evaluation JS

#3527 opened May 20, 2020 by esbena • Approved

1 21

Java: Add a few qltest cases for nullness and range analysis FPs.

Java

#3526 opened May 20, 2020 by aschackmull • Approved

Python : Add Xpath injection query

Python

#3522 opened May 19, 2020 by porcupineyhairs • Review required

Python : Add support for detecting XSLT Injection

Python

#3521 opened May 19, 2020 by porcupineyhairs • Review required

C++: Use TaintTracking::Configuration in TaintedAllocationSize

C++

#3519 opened May 19, 2020 by rdmarsh2 • Review required

Previous 1 2 3 4 5 Next

Previous Next

ProTip! no:milestone will show everything without a milestone.