github / codeql Public

Notifications
Fork 872
Star 4k

Code
Issues 386
Pull requests 192
Discussions
Actions
Projects
Security
Insights

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

Labels 38 Milestones 8

New pull request New

192 Open 5,995 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated

Most reactions

Release preparation for version 2.7.5

C# C++ documentation Java JS Python Ruby

#7501 opened Jan 3, 2022 by codeql-ci

Propagate taint through AbstractStringBuilder.reverse()

Java

#7500 opened Jan 3, 2022 by zbazztian • Review required

Update clap requirement from 2.33 to 3.0 in /ruby/extractor

dependencies Ruby rust

#7499 opened Jan 3, 2022 by dependabot bot • Review required

Update clap requirement from 2.33 to 3.0 in /ruby/generator

dependencies Ruby rust

#7498 opened Jan 3, 2022 by dependabot bot • Review required

C++: relax ambiguously-signed-bit-field by allowing GLib's gboolean

C++ documentation

#7493 opened Dec 30, 2021 by MrAnno • Review required

Fix example in JavaScript query

#7489 opened Dec 29, 2021 by edoardopirovano • Review required

JS: Improve performance of ATM queries on large databases

JS WIP

#7475 opened Dec 22, 2021 by adityasharad • Draft

[draft] DB reads as taint sources

#7474 opened Dec 22, 2021 by kaeluka • Draft

QL-for-QL: Add a redundant aggregate query

C# C++ documentation Java JS Python QL-for-QL Ruby

#7472 opened Dec 22, 2021 by erik-krogh • Draft

Adding a codeql script to find PendingIntent Vulnerbilies to new_branch

documentation Java

#7471 opened Dec 22, 2021 by zzhichen • Review required

C#: Promote existing ad-hoc consistency checks to consistency queries

C# C++ Ruby

#7469 opened Dec 22, 2021 by hvitved • Review required

C#: Re-factor the ForEachCapture query to use MaD flow summaries.

C# no-change-note-required

#7468 opened Dec 22, 2021 by michaelnebel • Approved

C#: Introduce flow summaries for StringValues.

#7465 opened Dec 21, 2021 by michaelnebel • Draft

C++: Increase precision of cpp/arithmetic-uncontrolled to high

C++

#7459 opened Dec 20, 2021 by MathiasVP • Draft

QL: add "modelling/modeling" to ql/non-us-spelling

C# C++ JS Python QL-for-QL Ruby

#7458 opened Dec 20, 2021 by erik-krogh • Approved

Ruby: improve handling of LGTM_INDEX_FILTER

Ruby

#7457 opened Dec 20, 2021 by aibaars • Draft

C#: Shared extraction

#7456 opened Dec 20, 2021 by hvitved • Draft

Python: Add shutil module sinks for path injection query

Python

#7455 opened Dec 20, 2021 by haby0 • Review required

Python: Add Python_JWT to JWT security query

Python

#7452 opened Dec 19, 2021 by jorgectf • Review required

QL: Add query detecting suspiciously missing parameters from the QLDoc of a predicate

JS no-change-note-required Python QL-for-QL Ruby

#7450 opened Dec 18, 2021 by erik-krogh • Changes requested

Ruby: demonstrate data flow not working with instance variables

Ruby

#7447 opened Dec 18, 2021 by jeffgran • Draft

Solorigate: Extract to separate qlpack

C# documentation JS

#7431 opened Dec 16, 2021 by aeisenberg • Review required

Ruby: Add Module#const_get as a code execution

Ruby

#7419 opened Dec 16, 2021 by hmac • Review required

Java: Start running telemetry queries on Code Scanning

Java

#7417 opened Dec 15, 2021 by henrymercer • Draft

Remove experimental tag from non-ATM queries

Python

#7416 opened Dec 15, 2021 by sampart • Review required

Previous 1 2 3 4 5 6 7 8 Next

Previous Next

ProTip! Filter pull requests by the default branch with base:main.