Skip to content

/ codeql

New pull request New
107 Open 3,340 Closed
107 Open 3,340 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
πŸ‘ πŸ‘Ž πŸ˜„ πŸŽ‰ πŸ˜• ❀️ πŸš€ πŸ‘€
C++: use IR TaintTracking::Configuration in UncontrolledFormatString
#3867 opened Jul 1, 2020 by rdmarsh2 β€’ Review required
2
C++: Move queries into `cpp/ql/queries` directory
#3866 opened Jul 1, 2020 by dbartol β€’ Draft
3
JS: only calculate getStringValue for concatenation roots
JS
#3864 opened Jul 1, 2020 by erik-krogh β€’ Draft
3
C++: Private Data File/Buffer Writes
#3861 opened Jul 1, 2020 by dilanbhalla β€’ Review required
Python: Module not intended for production
Python
#3859 opened Jun 30, 2020 by dilanbhalla β€’ Review required
3
Add jOOQ methods as SQL Injection Sinks
Java
#3855 opened Jun 30, 2020 by JLLeitschuh β€’ Review required
1
JS: recognize access to a req.query object through function calls
Awaiting evaluation JS
#3851 opened Jun 30, 2020 by erik-krogh β€’ Review required 2 of 3
2
Dataflow: Add documentation for language maintainers.
C# C++ Java Python documentation
#3850 opened Jun 30, 2020 by aschackmull β€’ Changes requested
31
JS: support simple callbacks for setting up Express route handlers
Awaiting evaluation JS
#3848 opened Jun 30, 2020 by erik-krogh β€’ Draft 1 of 2
3
C#: Factor C++ parts out of autobuilder
C# C++ depends on internal PR
#3846 opened Jun 30, 2020 by hvitved β€’ Approved
@rdmarsh2 @calumgrant
1
Update UnsafeHtmlExpansion-transformed.html
JS
#3844 opened Jun 30, 2020 by esbena β€’ Approved
Java: Uncaught servlet exception
Java
#3839 opened Jun 29, 2020 by luchua-bc β€’ Review required
16
Data flow: Use precise call contexts in `flowFwd()`
C# C++ Java
#3838 opened Jun 29, 2020 by hvitved β€’ Draft
[js/xss] add interpretsValueAsJavaScript predicate
#3835 opened Jun 29, 2020 by Raz0r β€’ Review required
@asgerf
2
JS: Support TypeScript in HTML/Vue files
JS
#3832 opened Jun 29, 2020 by asgerf β€’ Approved
1 4
Shared dataflow: Field flow
#3830 opened Jun 29, 2020 by yoff β€’ Draft
JS: Fix handling of .hash in XSS query
Awaiting evaluation JS
#3829 opened Jun 28, 2020 by asgerf β€’ Approved
1 2
Add missing java.nio.file.Files methods to FileReadWrite.qll
Java
#3820 opened Jun 26, 2020 by Marcono1234 β€’ Review required
5
Fix outdated query console link
#3817 opened Jun 26, 2020 by Marcono1234 β€’ Review required
1
Java: Add remote source of Android intent extra
Java
#3812 opened Jun 25, 2020 by luchua-bc β€’ Review required
6
Python: Function/Class Naming Convention (Syntax)
Python
#3810 opened Jun 25, 2020 by dilanbhalla β€’ Changes requested
7
JS: teach the dataflow library identity functions Object.freeze/seal
JS
#3805 opened Jun 25, 2020 by esbena β€’ Review required 1 of 1
2
Arbitrary user-controlled read/write on user-controlled path
Java
#3794 opened Jun 24, 2020 by intrigus-lgtm β€’ Draft
11
Python: Add annotated call-graph tests
Python
#3790 opened Jun 24, 2020 by RasmusWL β€’ Review required
3
C++ Memory Unsafe Functions
C++
#3789 opened Jun 24, 2020 by dilanbhalla β€’ Changes requested
14
ProTip! Filter pull requests by the default branch with base:master.
You can’t perform that action at this time.