Skip to content

/ codeql

New pull request New
149 Open 4,847 Closed
149 Open 4,847 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
πŸ‘ πŸ‘Ž πŸ˜„ πŸŽ‰ πŸ˜• ❀️ πŸš€ πŸ‘€
Python: Limit set of globals that may be built-ins
Python no-change-note-required
#5880 opened May 11, 2021 by tausbn β€’ Review required
Python: Fix concept tests pretty print
Python documentation no-change-note-required
#5878 opened May 11, 2021 by RasmusWL β€’ Draft
C++: Detect more uses of abs
C++ documentation
#5877 opened May 11, 2021 by MathiasVP β€’ Review required
3
JS: add support for error values in an axios client request
JS
#5876 opened May 11, 2021 by erik-krogh β€’ Draft
[Java] Support local taint tracking through JDK Collections lambdas
Java
#5871 opened May 10, 2021 by JLLeitschuh β€’ Review required
1
Java: Ignore char array based closeables for CloseReader.ql and CloseWriter.ql
Java documentation
#5868 opened May 10, 2021 by Marcono1234 β€’ Review required
3
Python: add regex parser
Python
#5866 opened May 10, 2021 by yoff β€’ Draft
C#: Remove base class from type IDs in trap files
C#
#5865 opened May 10, 2021 by tamasvajk β€’ Review required
Python: Add modeling of simplejson/ujson/idna
Python documentation
#5864 opened May 10, 2021 by RasmusWL β€’ Review required
JS: More robust hasUnderlyingType
Awaiting evaluation JS JS:changes-sources-or-sinks no-change-note-required
#5862 opened May 10, 2021 by asgerf β€’ Approved
1
C++: Generate side effect instructions for smart pointer indirections
C# C++ no-change-note-required
#5854 opened May 7, 2021 by dbartol β€’ Approved
3
C++: Avoid quadratic blowup with use-use flow (WIP)
C++ WIP
#5853 opened May 7, 2021 by MathiasVP β€’ Draft
7
Java: CWE-798 Query to detect hard-coded Azure credentials
Java documentation
#5852 opened May 7, 2021 by luchua-bc β€’ Review required
Use only_bind_out to force a good join order.
C# no-change-note-required
#5851 opened May 7, 2021 by alexet β€’ Review required
2
JS: Add library input as source to regexp-injection
Awaiting evaluation JS documentation
#5849 opened May 6, 2021 by erik-krogh β€’ Draft
Java: Promote Unsafe resource loading in Android WebView from experimental
Java documentation
#5846 opened May 6, 2021 by atorralba β€’ Draft
4
[Java] CWE-601 Spring url redirection detect
Java documentation
#5844 opened May 6, 2021 by haby0 β€’ Review required
[Java] Fix Kryo FP & Kryo 5 Support
Java documentation
#5843 opened May 5, 2021 by JLLeitschuh β€’ Review required
1
10
C++: SqlPqxxTainted query searches for sql injections via pqxx connector to postgres
C++ documentation
#5842 opened May 5, 2021 by japroc β€’ Review required
@jbj
2
JS: Add query for unsafe construction of code from library input
JS documentation
#5841 opened May 5, 2021 by erik-krogh β€’ Review required
6
Add security-severity scores
C# C++ JS Java Python
#5839 opened May 5, 2021 by calumgrant β€’ Draft
Python: Support EC keygen without class-instance for cryptography
Python no-change-note-required
#5836 opened May 5, 2021 by RasmusWL β€’ Review required
1
Java: github action for CSV coverage report
#5832 opened May 4, 2021 by tamasvajk β€’ Review required
1
Java: Promote JEXL Injection query from experimental
Java documentation
#5823 opened May 3, 2021 by atorralba β€’ Review required
4
Java: CWE-094 Jython code injection
Java documentation
#5819 opened May 3, 2021 by luchua-bc β€’ Review required
24
ProTip! Type g i on any issue or pull request to go back to the issue listing page.