-
## Description
The `sig-security` team announced, that licensing for Veracode will expire and a migration to CodeQL should be done.
-
https://github.com/PropertyTools/PropertyTools/security/code-scanning
-
**Description of the issue**
I'm practicing securitylab's Codeql-and-chill, https://securitylab.github.com/ctf/codeql-and-chill/
and I found four data flows using the following codeql rules, with on…
-
### Overview
We require issues to support resolution of current open CodeQL alerts as well as automation for creation of issues for new CodeQL alerts. We also need to manage CodeQL extraction errors…
-
**Description of the issue**
A fresh download of the CodeQL bundle shows errors when running:
```
./codeql resolve qlpacks
```
The errors shown seems to be false positives because they all se…
-
-
We were utilizing the default init action that downloads the latest bundle available, once 2.18.3 was released our autobuild and analyze steps starting failing with the following error:
```
2024/09/0…
-
2024-09-05 12:29:29] [DETAILS] database interpret-results> Interpreted definitions query "Jump-to-definition links" (java/jump-to-definition) at path /root/Drone/sast/code/java-database/results/codeql…
-
👋 Folks,
Scenario:
We have several internal organizations (e.g., org1, org2, org3), and we want to run variant analysis across all different repositories within these organizations. However, we on…
-
**Description of the issue**
When I encounter errors while running codeql scans, troubleshooting can be very challenging. I would like to understand the specific meanings of the return codes from cod…