github / codeql Public

Notifications
Star 3.3k
Fork 707

Code
Issues 320
Pull requests 158
Discussions
Actions
Projects
Security
Insights

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

Labels 34 Milestones 8

New pull request New

158 Open 5,458 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated

Most reactions

Java: Additional hardcoded credentials candidates 3rd-party api calls

Java

#6716 opened Sep 18, 2021 by bananabr • Review required

Update CSV framework coverage reports

#6715 opened Sep 18, 2021 by github-actions bot • Review required

Yet another SSRF query for Javascript

documentation JS

#6714 opened Sep 17, 2021 by valeria-meli • Review required

C++: New query for 'Cleartext transmission of sensitive information'

C++ documentation

#6713 opened Sep 17, 2021 by geoffw0 • Review required

C#: Speedup type subsumption calculation

#6712 opened Sep 17, 2021 by hvitved • Draft

Fix Android logging signature

Java

#6711 opened Sep 16, 2021 by bananabr • Review required

CPP: Add query for CWE-1041 Use of Redundant Code

C++ documentation

#6710 opened Sep 16, 2021 by ihsinme • Review required

Java: Add container flow to the local taint flow relation.

Java

#6709 opened Sep 16, 2021 by aschackmull • Review required

Data flow: Add compatibleContents/2

C# C++ Java Python

#6699 opened Sep 15, 2021 by hvitved • Review required

Python: Promote py/regex-injection

documentation Python

#6693 opened Sep 14, 2021 by yoff • Review required

Java: model remaining subpackages of Apache Commons Collections

Java

#6684 opened Sep 13, 2021 by owen-mc • Draft

C++: Refactor code to use predicate isGuardPhi/4

C++ no-change-note-required

#6678 opened Sep 13, 2021 by andersfugmann • Review required

Java: Draft of CSV model generator

Java

#6664 opened Sep 10, 2021 by bmuskalla • Draft

Python: Import time dataflow

no-change-note-required

#6650 opened Sep 9, 2021 by yoff • Review required

JS: add jQuery writes to href/src as sinks in js/client-side-unvaledated-url-redirection

JS:changes-sources-or-sinks JS no-change-note-required

#6632 opened Sep 7, 2021 by erik-krogh • Draft

Java: Add CharacterLiteral.getCodePointValue()

Java

#6614 opened Sep 4, 2021 by Marcono1234 • Draft

Java: Split literals tests

Java

#6613 opened Sep 4, 2021 by Marcono1234 • Draft

Fix order of IR call side effects

C++ no-change-note-required

#6601 opened Sep 3, 2021 by dbartol • Approved

Java: Promote android sensitive broadcast query

documentation Java

#6599 opened Sep 3, 2021 by joefarebrother • Review required

Java: model Spring web.method.support

Java

#6595 opened Sep 3, 2021 by sauyon • Approved

Python: Promote modeling of SQLAlchemy

documentation Python

#6589 opened Sep 2, 2021 by RasmusWL • Changes requested

Java: Create new query Cleartext storage of sensitive information in Android filesystem

documentation Java

#6576 opened Aug 31, 2021 by atorralba • Review required

JS: Add flow through next() calls in RxJS

Awaiting evaluation JS WIP

#6571 opened Aug 30, 2021 by erik-krogh • Draft

Python: Broaden noqa regex

Python

#6570 opened Aug 30, 2021 by yoff • Review required

Java: CWE-200 - Query to detect exposure of sensitive information from android file intent

documentation Java

#6567 opened Aug 29, 2021 by luchua-bc • Review required

Previous 1 2 3 4 5 6 7 Next

Previous Next

ProTip! Exclude everything labeled bug with -label:bug.