Skip to content

/ codeql

New pull request New
137 Open 4,232 Closed
137 Open 4,232 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
πŸ‘ πŸ‘Ž πŸ˜„ πŸŽ‰ πŸ˜• ❀️ πŸš€ πŸ‘€
Python: Fix too many results from DataFlow::importNode
Python
#5038 opened Jan 27, 2021 by RasmusWL β€’ Review required
C++: decltypes may have multiple expressions
C++
#5037 opened Jan 27, 2021 by igfoo β€’ Review required
1
C++: Implied dataflow models
C++
#5035 opened Jan 27, 2021 by MathiasVP β€’ Review required
JS: Add RemoteFlowSource.isFromClientSideUrl
JS
#5033 opened Jan 27, 2021 by asgerf β€’ Draft
Dataflow: Add subpaths query predicate.
Java
#5032 opened Jan 27, 2021 by aschackmull β€’ Draft
JS: Ignore Angular templates in a few non-security queries
JS
#5029 opened Jan 27, 2021 by asgerf β€’ Review required
Docs: Update copyright date in footer
documentation
#5028 opened Jan 27, 2021 by shati-patel β€’ Review required
Python: Only generate one post-update node, even if there are multiple reasons for doing so.
Python
#5023 opened Jan 27, 2021 by yoff β€’ Changes requested
1
Python: Callable for lambdas
Python
#5022 opened Jan 26, 2021 by yoff β€’ Changes requested
4
JS: Drive-by changes from Redux modelling
JS
#5019 opened Jan 26, 2021 by asgerf β€’ Draft
C#: Extract 'and' and 'or' patterns
C# documentation
#5018 opened Jan 26, 2021 by tamasvajk β€’ Changes requested 3 of 4
4
CPP: add query for CWE-788 Access of memory location after the end of a buffer using strlen.
C++ documentation
#5011 opened Jan 24, 2021 by ihsinme β€’ Review required
9
CPP: Add query for CWE-570 detect and handle memory allocation errors.
C++ documentation
#5010 opened Jan 24, 2021 by ihsinme β€’ Review required
18
CPP: add query for CWE-788 Access of memory location after the end of a buffer using strncat.
C++ documentation
#5009 opened Jan 24, 2021 by ihsinme β€’ Review required
@MathiasVP
14
Java: Queries to detect remote source flow origins to CORS header.
Java documentation
#5008 opened Jan 24, 2021 by torque59 β€’ Review required
23
Java: Fix NashornScriptEngine detection in ScriptEngine query
Java documentation
#5006 opened Jan 23, 2021 by p0wn4j β€’ Review required
1
C#: Follow line directives when getting element location
C#
#5005 opened Jan 22, 2021 by tamasvajk β€’ Review required 0 of 4
2
C#: Adjust flow into phi nodes
C#
#4999 opened Jan 21, 2021 by hvitved β€’ Review required
@tamasvajk
C#: Use shared SSA implementation for `{Pre,Base}Ssa`
C#
#4998 opened Jan 21, 2021 by hvitved β€’ Draft
Docs: Add outline for CWE coverage page
documentation
#4997 opened Jan 21, 2021 by shati-patel β€’ Draft
Java: CWE-652: Improper Neutralization of Data within XQuery Expressions ('XQuery Injection')
Java documentation
#4994 opened Jan 21, 2021 by haby0 β€’ Review required
21
Java: Simple support for Ratpack HTTP Framework
Java
#4991 opened Jan 20, 2021 by JLLeitschuh β€’ Review required
6
Java: Track taint through Spring Java bean getters on super types
Java
#4989 opened Jan 20, 2021 by lcartey β€’ Review required
JS: flag less overly general functions with js/unneeded-defensive-code
JS documentation
#4987 opened Jan 20, 2021 by erik-krogh β€’ Review required
2
Python: Port url redirect query
Python documentation
#4981 opened Jan 19, 2021 by RasmusWL β€’ Draft
6
ProTip! Follow long discussions with comments:>50.