Skip to content

/ codeql

New pull request New
153 Open 4,828 Closed
153 Open 4,828 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀
Java: Fix QLDoc for Container.toString()
Java no-change-note-required
#5857 opened May 8, 2021 by dbartol Review required
1
4
Add stepFlow from ClientReponse to error callback response
JS
#5856 opened May 7, 2021 by japroc Review required
C++: Generate side effect instructions for smart pointer indirections
C# C++ no-change-note-required
#5854 opened May 7, 2021 by dbartol Review required
1
C++: Avoid quadratic blowup with use-use flow (WIP)
C++ WIP
#5853 opened May 7, 2021 by MathiasVP Draft
7
Java: CWE-798 Query to detect hard-coded Azure credentials
Java documentation
#5852 opened May 7, 2021 by luchua-bc Review required
Use only_bind_out to force a good join order.
C#
#5851 opened May 7, 2021 by alexet Review required
2
JS: Add library input as source to regexp-injection
Awaiting evaluation JS documentation
#5849 opened May 6, 2021 by erik-krogh Draft
C#: Escape IDs in TRAP label definitions
C# no-change-note-required
#5848 opened May 6, 2021 by hvitved Review required
@tamasvajk
4
Java: Promote Unsafe resource loading in Android WebView from experimental
Java documentation
#5846 opened May 6, 2021 by atorralba Draft
4
[Java] CWE-601 Spring url redirection detect
Java documentation
#5844 opened May 6, 2021 by haby0 Review required
[Java] Fix Kryo FP & Kryo 5 Support
Java documentation
#5843 opened May 5, 2021 by JLLeitschuh Review required
1
6
C++: SqlPqxxTainted query searches for sql injections via pqxx connector to postgres
C++ documentation
#5842 opened May 5, 2021 by japroc Review required
2
JS: Add query for unsafe construction of code from library input
JS documentation
#5841 opened May 5, 2021 by erik-krogh Review required
6
Add security-severity scores
C# C++ JS Java Python
#5839 opened May 5, 2021 by calumgrant Draft
Python: Support EC keygen without class-instance for cryptography
Python no-change-note-required
#5836 opened May 5, 2021 by RasmusWL Review required
1
Java: github action for CSV coverage report
#5832 opened May 4, 2021 by tamasvajk Review required
1
[Java] Add support for com.google.common.base.MoreObjects#firstNonNull
Java documentation
#5824 opened May 3, 2021 by JLLeitschuh Review required
Java: Promote JEXL Injection query from experimental
Java documentation
#5823 opened May 3, 2021 by atorralba Review required
4
C#: Improve CFG for constructors when there are multiple implementations
C# no-change-note-required
#5820 opened May 3, 2021 by hvitved Review required
@tamasvajk
2
Java: CWE-094 Jython code injection
Java documentation
#5819 opened May 3, 2021 by luchua-bc Review required
4
Java: Unsafe RMI deserialization
Java documentation
#5818 opened May 1, 2021 by artem-smotrakov Review required
10
Java: Replace usage of toString() for Javadoc queries; add more Javadoc tags
Java
#5815 opened Apr 30, 2021 by Marcono1234 Review required
[Java] Add taint tracking through Jackson deserialization
Java documentation
#5814 opened Apr 30, 2021 by JLLeitschuh Review required
15
Java: Add query - insecure environment configuration during JMX/RMI server init
Java documentation
#5811 opened Apr 30, 2021 by timoles Review required
33
Add heuristic query identifying probable SQL injection sinks
Java
#5806 opened Apr 29, 2021 by smowton Draft
1
ProTip! Mix and match filters to narrow down what you’re looking for.