issues
search
github
/
codeql
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
https://codeql.github.com
MIT License
7.18k
stars
1.45k
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Python: Model Flask SessionInterface request parameter
#16529
joefarebrother
opened
35 minutes ago
0
C++: Update an instance of the name 'Semmle' in a doc page.
#16528
geoffw0
opened
1 hour ago
1
C++: Static variables are initialized to zero or null by compiler
#16527
codeqlhelper
closed
1 hour ago
0
Python: Add tracking steps for class level attributes
#16526
naneer
opened
1 day ago
0
raw.githubusercontent.com/square/okhttp/master/samples/guide/src/main/java/okhttp3/guide/PostExample.java
#16525
JessiG2319
closed
2 days ago
0
Adds another rule for null deref
#16524
catenacyber
opened
2 days ago
1
Adding case to InsecureSQLConnection.ql when Encrypt set in initializer
#16523
chanel-y
opened
2 days ago
0
Bazel: allow LFS rules to use cached downloads without internet
#16522
redsun82
opened
2 days ago
0
C#: Refactor common msbuild properties
#16521
tamasvajk
opened
2 days ago
0
C#: Make the flow summary filtering in the adapter.
#16520
michaelnebel
opened
2 days ago
1
WIP: Bazel-build for C# language pack
#16519
criemen
opened
2 days ago
0
Bazel: update bazel to version 7.1.2
#16518
redsun82
closed
2 days ago
0
C#: Reformat project files with `paket`.
#16517
criemen
closed
2 days ago
0
Create npm-gulp.yml
#16515
JessiG2319
closed
3 days ago
0
Soheil.ghaleie@github.com
#16514
SOHEIL115
closed
3 days ago
0
C#: Change the printed information in the Flow summaries tests.
#16513
michaelnebel
closed
3 days ago
0
Python: Allow provenance in additional taint steps
#16512
yoff
closed
2 days ago
1
Dataflow: Add provenance for configuration-specific steps.
#16511
aschackmull
opened
3 days ago
0
Go: Update the QHelp for `go/command-injection`.
#16510
erik-krogh
closed
2 days ago
6
Go: make two barriers recognise named types whose underlying types are integer types
#16509
owen-mc
closed
3 days ago
0
Swift: update prebuilt package
#16508
redsun82
closed
3 days ago
0
JS: Update the insecure-randomness QHelp
#16507
erik-krogh
closed
3 days ago
1
Java: Add change note for Gradle JDK version detection
#16506
smowton
closed
3 days ago
0
C#: Pin dotnet SDK version in integration test relying on razor sourc…
#16505
tamasvajk
closed
4 days ago
0
Go: allow read and store steps from named types
#16504
owen-mc
closed
4 days ago
1
[Draft] Ruby: Use additional sensitive data heuristics for CleartextSources
#16503
joefarebrother
opened
4 days ago
0
Swift: Remove beta label
#16502
MathiasVP
opened
4 days ago
0
Python: Dataflow fails when Class attributes are accessed as Instance attributes.
#16501
trentn
opened
4 days ago
1
Java: Add support for flow through side-effects on static fields.
#16500
aschackmull
opened
4 days ago
2
Insecure randomness - Documentation issue - Code example is misleading and could be improved
#16499
thariq-nugrohotomo
closed
3 days ago
4
C#: Use nuget.exe from the executing machine instead of always downlo…
#16498
tamasvajk
opened
4 days ago
0
Java: Add tests for `comparison-with-wider-type`.
#16497
max-schaefer
closed
4 days ago
0
Stop building the CodeQL for VS Code docs now they've been migrated
#16496
felicitymay
closed
2 days ago
1
C++: Delete duplicated case in IR generation
#16495
MathiasVP
closed
5 days ago
0
Update CSV framework coverage reports
#16493
github-actions[bot]
closed
4 days ago
0
[REMOVED]
#16492
SOHEIL115
closed
5 days ago
0
Post-release preparation for codeql-cli-2.17.3
#16491
codeql-ci
closed
5 days ago
0
Python: Rich `type` column in MaD
#16490
yoff
opened
5 days ago
1
Release preparation for version 2.17.3
#16489
codeql-ci
closed
5 days ago
0
Java: Add comments to tests that spawn an HTTP/S server
#16488
smowton
closed
5 days ago
0
C++/C#: Move the Windows autobuilder into a subfolder in `ql/csharp`.
#16487
criemen
closed
4 days ago
2
False positive - A secret detected in a go context causes codeql to think all context values are secret
#16486
Jamstah
opened
6 days ago
3
Make GITHUB_TOKEN in lfs_probe a fallback rather than an override
#16485
oscarsj
closed
6 days ago
0
C#: Lift models.
#16484
michaelnebel
opened
6 days ago
1
Python: The MaD token `Instance` now follows subclasses
#16483
yoff
closed
5 days ago
0
Java: Add RSA/ECB/OEAP ciphers to the list of secure algorithms
#16482
grakshith
opened
6 days ago
0
Tree-sitter: Bump to 0.22.6
#16481
hvitved
opened
6 days ago
1
Go: Improve log messages in `buildWithoutCustomCommands`
#16480
mbg
closed
5 days ago
0
Java: Add test case for a custom Java trust store
#16479
smowton
closed
5 days ago
0
Java: Clean up some instances of getQualifiedName.
#16478
aschackmull
closed
6 days ago
0
Next