Skip to content

/ codeql

New pull request New
140 Open 4,550 Closed
140 Open 4,550 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
πŸ‘ πŸ‘Ž πŸ˜„ πŸŽ‰ πŸ˜• ❀️ πŸš€ πŸ‘€
Java: Query for detecting Jakarta Expression Language injections
Java documentation
#5471 opened Mar 21, 2021 by artem-smotrakov β€’ Review required
Java: Add value predicates for float and double literals; improve tests
Java
#5468 opened Mar 21, 2021 by Marcono1234 β€’ Review required
3
[Java] CWE-094: Query to detect Groovy Code Injections
Java documentation
#5467 opened Mar 21, 2021 by p0wn4j β€’ Review required
Python: Add Header Injection query
Python
#5463 opened Mar 19, 2021 by jorgectf β€’ Draft
JS: expand outDir support in tsconfig files
Awaiting evaluation JS
#5461 opened Mar 19, 2021 by erik-krogh β€’ Draft
JS: cleanup in API-graphs
JS no-change-note-required
#5460 opened Mar 19, 2021 by erik-krogh β€’ Draft
C#: Update more nuget packages
C#
#5459 opened Mar 19, 2021 by hvitved β€’ Draft
1
JS: add shell interpreted arrays as sinks for js/shell-command-constructed-from-input
JS JS:changes-sources-or-sinks no-change-note-required
#5458 opened Mar 19, 2021 by erik-krogh β€’ Review required
Java: Use shared flow summary library for CSV models.
C# Java
#5456 opened Mar 19, 2021 by aschackmull β€’ Draft
1
Data flow: Add section on lambda flow to dataflow.md
documentation
#5455 opened Mar 19, 2021 by hvitved β€’ Review required
@aschackmull
3
C#: Adjust make_stubs.py to use codeql instead of odasa
C#
#5453 opened Mar 19, 2021 by tamasvajk β€’ Review required
JS: Recognize object transformations to exported values when looking for library inputs
JS JS:changes-sources-or-sinks documentation
#5449 opened Mar 18, 2021 by erik-krogh β€’ Approved
11
Python: Add LDAP Insecure Authentication query
Python
#5445 opened Mar 18, 2021 by jorgectf β€’ Review required
Python: Add LDAP Improper Authentication query
Python documentation
#5444 opened Mar 18, 2021 by jorgectf β€’ Review required
Python: Add LDAP Injection query
Python documentation
#5443 opened Mar 18, 2021 by jorgectf β€’ Review required
Python: Add Regular Expression Injection query
Python documentation
#5442 opened Mar 18, 2021 by jorgectf β€’ Review required
24
C#: Add CIL SSA library
C#
#5440 opened Mar 18, 2021 by hvitved β€’ Draft
JS: Loosen the source in js/shell-command-constructed-from-input
JS JS:changes-sources-or-sinks no-change-note-required
#5439 opened Mar 18, 2021 by erik-krogh β€’ Review required
8
Java: Add support for Commons ToStringBuilder.reflectiveToString
C# C++ Java Python documentation
#5438 opened Mar 18, 2021 by smowton β€’ Draft
Java: CWE-470 Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
Java documentation
#5435 opened Mar 18, 2021 by haby0 β€’ Review required
@smowton
16
Java: CWE-327 Query to detect insecure cipher suites and protocols in Tomcat server configuration
Java documentation
#5434 opened Mar 17, 2021 by luchua-bc β€’ Review required
@tamasvajk
C#: Add data flow tests for various pattern types
C#
#5429 opened Mar 17, 2021 by tamasvajk β€’ Draft
1
JS: Update cheat sheet
JS documentation
#5428 opened Mar 17, 2021 by asgerf β€’ Review required
Java: Adopt shared flow summary library
C# C++ Java Python
#5424 opened Mar 17, 2021 by hvitved β€’ Draft
Java: Migrate LDAP injection sinks to CSV format
Java no-change-note-required
#5422 opened Mar 17, 2021 by tamasvajk β€’ Review required
1
ProTip! Type g i on any issue or pull request to go back to the issue listing page.