github / codeql

Notifications
Star 2.4k
Fork 509

Code
Issues 242
Pull requests 140
Discussions
Actions
Projects
Security
Insights

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

Labels 30 Milestones 7

New pull request New

140 Open 4,537 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels.

Projects

Filter by project

Milestones

Filter by milestone

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated

Most reactions

JS: Recognize object transformations to exported values when looking for library inputs

JS JS:changes-sources-or-sinks

#5449 opened Mar 18, 2021 by erik-krogh • Review required

Python: Add LDAP Insecure Authentication query

Python

#5445 opened Mar 18, 2021 by jorgectf • Review required

Python: Add LDAP Improper Authentication query

Python documentation

#5444 opened Mar 18, 2021 by jorgectf • Review required

Python: Add LDAP Injection query

Python documentation

#5443 opened Mar 18, 2021 by jorgectf • Review required

Python: Add Regular Expression Injection query

Python documentation

#5442 opened Mar 18, 2021 by jorgectf • Review required

C#: Add CIL SSA library

#5440 opened Mar 18, 2021 by hvitved • Draft

JS: Loosen the source in js/shell-command-constructed-from-input

JS JS:changes-sources-or-sinks no-change-note-required

#5439 opened Mar 18, 2021 by erik-krogh • Review required

Java: Add support for Commons ToStringBuilder.reflectiveToString

C# C++ Java Python documentation

#5438 opened Mar 18, 2021 by smowton • Draft

Python: Small PyYAML improvements

Python documentation

#5437 opened Mar 18, 2021 by RasmusWL • Changes requested

Java: CWE-470 Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

Java documentation

#5435 opened Mar 18, 2021 by haby0 • Review required

Java: CWE-327 Query to detect insecure cipher suites and protocols in Tomcat server configuration

Java documentation

#5434 opened Mar 17, 2021 by luchua-bc • Review required

JS: recognize client websockets as ClientRequests

JS no-change-note-required

#5433 opened Mar 17, 2021 by erik-krogh • Review required

Docs: Small improvements to path queries docs

documentation ready-for-docs-review

#5430 opened Mar 17, 2021 by RasmusWL • Approved

C#: Add data flow tests for various pattern types

#5429 opened Mar 17, 2021 by tamasvajk • Draft

JS: Update cheat sheet

JS documentation

#5428 opened Mar 17, 2021 by asgerf • Review required

Python: document api graphs

Python documentation no-change-note-required ready-for-docs-review

#5425 opened Mar 17, 2021 by yoff • Approved

Java: Adopt shared flow summary library

C# C++ Java Python

#5424 opened Mar 17, 2021 by hvitved • Draft

JS: Add models for Koa routing libraries

JS JS:changes-sources-or-sinks documentation

#5423 opened Mar 17, 2021 by erik-krogh • Review required

Java: Migrate LDAP injection sinks to CSV format

Java no-change-note-required

#5422 opened Mar 17, 2021 by tamasvajk • Review required

C#: Fix code quality issues reported by code scanning

#5421 opened Mar 17, 2021 by tamasvajk • Review required

JS: Add model for puppeteer

JS JS:changes-sources-or-sinks documentation

#5419 opened Mar 16, 2021 by erik-krogh • Review required

C#: Rework flow summary implementation

C# C++ Java Python

#5416 opened Mar 16, 2021 by hvitved • Draft

C#: add store step for return statements inside async methods

#5415 opened Mar 16, 2021 by tamasvajk • Draft

C++: Extractor/database diagnostic errors

C++ depends on internal PR no-change-note-required

#5414 opened Mar 16, 2021 by criemen • Review required

Java: Bugfix dispatch to lambda in call context.

Java no-change-note-required

#5411 opened Mar 15, 2021 by aschackmull • Review required

Previous 1 2 3 4 5 6 Next

Previous Next

ProTip! Exclude everything labeled bug with -label:bug.