Skip to content

/ codeql

New pull request New
128 Open 4,298 Closed
128 Open 4,298 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
πŸ‘ πŸ‘Ž πŸ˜„ πŸŽ‰ πŸ˜• ❀️ πŸš€ πŸ‘€
JS: Tolerate JSON in script tags
JS
#5107 opened Feb 5, 2021 by asgerf β€’ Approved
CWE-1104: Maven POM dependence upon Bintray/JCenter
Java documentation
#5105 opened Feb 5, 2021 by JLLeitschuh β€’ Review required
2
Python: Port Flask models to use API graphs
Python
#5103 opened Feb 5, 2021 by tausbn β€’ Changes requested
4
Java: CWE-489 Query to detect main() method in servlets
Java documentation
#5102 opened Feb 5, 2021 by luchua-bc β€’ Review required
2
Java : Add Log Injection Vulnerability
Java documentation
#5099 opened Feb 4, 2021 by porcupineyhairs β€’ Changes requested
@owen-mc
29
JS: Add more models for XML parsers
Awaiting evaluation JS
#5098 opened Feb 4, 2021 by erik-krogh β€’ Draft
Add GoKit to Go supported library list
documentation
#5092 opened Feb 4, 2021 by sauyon β€’ Review required
C++: Remove flow from pointer indirection to pointer from DefaultTaintTracking
C++ WIP
#5089 opened Feb 4, 2021 by MathiasVP β€’ Review required
2
JS: Add flowsteps for Immutable collections
Awaiting evaluation JS
#5087 opened Feb 4, 2021 by erik-krogh β€’ Review required
Adding queries related to the Solorigate campaign
C# documentation
#5083 opened Feb 3, 2021 by raulgarciamsft β€’ Changes requested
90
Update CodeQL Style guide to mention acronyms
documentation
#5080 opened Feb 3, 2021 by RasmusWL β€’ Draft
6
Python: Add modeling of Flask blueprints
Python documentation
#5078 opened Feb 3, 2021 by RasmusWL β€’ Review required
Python: Port py/weak-crypto-key to use type-tracking
Python documentation
#5075 opened Feb 2, 2021 by RasmusWL β€’ Draft
JS: add query for Express-HBS LFR
JS
#5066 opened Feb 1, 2021 by CaptainFreak β€’ Approved
23
Python: Better path explanations
Python
#5057 opened Jan 29, 2021 by yoff β€’ Draft
Python: Remove dubious local source nodes
Python
#5055 opened Jan 29, 2021 by tausbn β€’ Review required
3
JS: Detect more route-handlers by adding more type-tracking steps
Awaiting evaluation JS WIP
#5045 opened Jan 28, 2021 by erik-krogh β€’ Review required
JS: Add RemoteFlowSource.isFromClientSideUrl
JS
#5033 opened Jan 27, 2021 by asgerf β€’ Draft
Dataflow: Add subpaths query predicate.
Java
#5032 opened Jan 27, 2021 by aschackmull β€’ Draft
JS: Drive-by changes from Redux modelling
JS
#5019 opened Jan 26, 2021 by asgerf β€’ Draft
Java: Queries to detect remote source flow origins to CORS header.
Java documentation
#5008 opened Jan 24, 2021 by torque59 β€’ Review required
23
Java: Fix NashornScriptEngine detection in ScriptEngine query
Java documentation
#5006 opened Jan 23, 2021 by p0wn4j β€’ Review required
6
C#: Use shared SSA implementation for `{Pre,Base}Ssa`
C#
#4998 opened Jan 21, 2021 by hvitved β€’ Draft
Docs: Add outline for CWE coverage page
depends on internal PR documentation
#4997 opened Jan 21, 2021 by shati-patel β€’ Review required
Java: CWE-652: Improper Neutralization of Data within XQuery Expressions ('XQuery Injection')
Java documentation
#4994 opened Jan 21, 2021 by haby0 β€’ Review required
21
ProTip! Adding no:label will show everything without a label.