Skip to content

/ codeql

New pull request New
138 Open 4,247 Closed
138 Open 4,247 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀
C++: Exclude custom vprintf implementations from primitiveVariadicFormatter.
C++
#5059 opened Jan 29, 2021 by geoffw0 Review required
Python: Add consistency checks to all data-flow test folders
Python
#5058 opened Jan 29, 2021 by yoff Approved
2
Python: Better path explanations
Python
#5057 opened Jan 29, 2021 by yoff Draft
JS: Add `js/code-injection` sink for script tags in React
JS
#5056 opened Jan 29, 2021 by erik-krogh Draft
Python: Remove dubious local source nodes
Python
#5055 opened Jan 29, 2021 by tausbn Review required
Python: Add locations for ESSA variables
Python
#5053 opened Jan 29, 2021 by tausbn Review required
C#: Add data flow 'getARuntimeTarget' predicate to 'FunctionPointerCall'
C#
#5052 opened Jan 29, 2021 by tamasvajk Draft
C#: Reduce caching in `SsaImplCommon.qll`
C#
#5051 opened Jan 29, 2021 by hvitved Draft
C++: Add more memcpy, memset, strcat and strcpy models
C++
#5050 opened Jan 29, 2021 by MathiasVP Review required
JS: support html attribute concatenations with single quotes
Awaiting evaluation JS
#5049 opened Jan 29, 2021 by erik-krogh Review required
4
Python: dataflow, unify iterated unpacking
Python
#5047 opened Jan 28, 2021 by yoff Review required
JS: Detect more route-handlers by adding more type-tracking steps
Awaiting evaluation JS WIP
#5045 opened Jan 28, 2021 by erik-krogh Review required
Python: Add full-path modeling of Django more view classes
Python
#5042 opened Jan 28, 2021 by RasmusWL Review required
JS: Add RemoteFlowSource.isFromClientSideUrl
JS
#5033 opened Jan 27, 2021 by asgerf Draft
Dataflow: Add subpaths query predicate.
Java
#5032 opened Jan 27, 2021 by aschackmull Draft
JS: Drive-by changes from Redux modelling
JS
#5019 opened Jan 26, 2021 by asgerf Draft
C#: Extract 'and' and 'or' patterns
C# documentation
#5018 opened Jan 26, 2021 by tamasvajk Review required 3 of 4
5
CPP: add query for CWE-788 Access of memory location after the end of a buffer using strlen.
C++ documentation
#5011 opened Jan 24, 2021 by ihsinme Review required
15
CPP: Add query for CWE-570 detect and handle memory allocation errors.
C++ documentation
#5010 opened Jan 24, 2021 by ihsinme Review required
24
Java: Queries to detect remote source flow origins to CORS header.
Java documentation
#5008 opened Jan 24, 2021 by torque59 Review required
23
Java: Fix NashornScriptEngine detection in ScriptEngine query
Java documentation
#5006 opened Jan 23, 2021 by p0wn4j Review required
6
C#: Follow line directives when getting element location
C#
#5005 opened Jan 22, 2021 by tamasvajk Review required 0 of 4
6
C#: Use shared SSA implementation for `{Pre,Base}Ssa`
C#
#4998 opened Jan 21, 2021 by hvitved Draft
Docs: Add outline for CWE coverage page
documentation
#4997 opened Jan 21, 2021 by shati-patel Draft
Java: CWE-652: Improper Neutralization of Data within XQuery Expressions ('XQuery Injection')
Java documentation
#4994 opened Jan 21, 2021 by haby0 Review required
21
ProTip! no:milestone will show everything without a milestone.