58 Pull requests merged by 31 people

• C++: Fix typo

  #15315 merged Jan 12, 2024

• Update supported-versions-compilers.rst on release candidate branch

  #15266 merged Jan 12, 2024

• C#: Improve getRuntimeArgumentForParameter to consider named arguments.

  #15296 merged Jan 12, 2024

• C#/Java: Increase precision of model generation.

  #15179 merged Jan 12, 2024

• Revert "Swift: separate installation of dependencies and autobuilding"

  #15305 merged Jan 12, 2024

• C++: Fix duplicate "final global value" nodes

  #15282 merged Jan 12, 2024

• Python: Mention more sanitisation options in py/url-redirection qhelp.

  #15176 merged Jan 12, 2024

• C++: Revert "Merge pull request #12125 from jketema/unique-function"

  #15304 merged Jan 12, 2024

• Go: Recognize unsafe candidate selection in `go/insecure-randomness`

  #15294 merged Jan 12, 2024

• C#/Java: Manual neutral summaries should block generated summaries

  #15246 merged Jan 12, 2024

• Bump the extractor-dependencies group in /go/extractor with 1 update

  #15302 merged Jan 12, 2024

• C# 12: Type alias [Test only]

  #15297 merged Jan 12, 2024

• Replace blog link with link to GitHub user docs

  #15235 merged Jan 12, 2024

• Update CSV framework coverage reports

  #15301 merged Jan 12, 2024

• C++: Add a test with `__uuidof` in a template.

  #15300 merged Jan 11, 2024

• Update query-metadata-style-guide.md clarify problem.severity

  #15288 merged Jan 11, 2024

• JS: Include sink nodes as base-case when resolving types

  #15295 merged Jan 11, 2024

• C# 12: Support for lambda `param` parameter and parameter defaults.

  #15249 merged Jan 11, 2024

• JS: Add `dot.js` support

  #13624 merged Jan 11, 2024

• Ruby: Handle captured `yield` calls

  #15273 merged Jan 11, 2024

• Java: improve models for some important JDK methods

  #15280 merged Jan 11, 2024

• Release automodel extraction queries v0.0.12.

  #15283 merged Jan 11, 2024

• Update CSV framework coverage reports

  #15289 merged Jan 11, 2024

• C++: add `.def` to exceptions to AV rule 32

  #15265 merged Jan 11, 2024

• JS: faster TypeScript extraction

  #15271 merged Jan 10, 2024

• Go: Adds sources and sinks to `go/clear-text-logging`

  #15268 merged Jan 10, 2024

• Support dry-run of publishing script

  #15251 merged Jan 10, 2024

• document weak aliases in the language reference

  #15261 merged Jan 10, 2024

• Kotlin: Reformat code

  #15269 merged Jan 10, 2024

• Swift: fix upgrade and downgrade scripts

  #15277 merged Jan 10, 2024

• Go: Migrate AppenderOrSprinter model to models-as-data

  #15267 merged Jan 10, 2024

• Bazel/CMake: drop confusing `_INTERNAL_TRANSITION` suffix

  #15276 merged Jan 10, 2024

• Data flow: Remove column from `mayBenefitFromCallContext`

  #15260 merged Jan 10, 2024

• Automodel: Do not generate features for compiler-generated program elements.

  #15264 merged Jan 10, 2024

• JS: promote `PropsTaintStep` to a `PreCallGraphStep`

  #15221 merged Jan 10, 2024

• Java: Improve Gson parse, get, and stream models

  #14926 merged Jan 10, 2024

• Java: Bring the Model Diff workflow back into a working state.

  #15225 merged Jan 10, 2024

• Kotlin 2: Accept some location changes

  #14941 merged Jan 9, 2024

• Kotlin: Remove 1.4 compatibility

  #14393 merged Jan 9, 2024

• C++: Fix QLDoc on `cmpWithLinearBound`

  #15262 merged Jan 9, 2024

• Update CSV framework coverage reports

  #15257 merged Jan 9, 2024

• C++: Remove test that is no longer relevant

  #15252 merged Jan 8, 2024

• Java: Environment variable injection query

  #14724 merged Jan 8, 2024

• 32 cpp string concatenation library

  #14954 merged Jan 8, 2024

• Swift: Add dataflow tests for property wrappers and SwiftUI

  #15230 merged Jan 8, 2024

• Release preparation for version 2.16.0

  #15250 merged Jan 8, 2024

• Bazel: Bump dependant rules versions.

  #15232 merged Jan 8, 2024

• Kotlin: Add a 2.0.255 snapshot

  #14895 merged Jan 8, 2024

• Ruby: Update Kernel.qll to include `Object.send` aliases

  #15203 merged Jan 8, 2024

• Ruby: Fix upgrade delete directives

  #15243 merged Jan 8, 2024

• C#: Fix upgrade delete directives

  #15242 merged Jan 8, 2024

• C++: Fix upgrade delete directives

  #15241 merged Jan 8, 2024

• Note Java 21 support

  #15231 merged Jan 8, 2024

• Java: Add more sinks to the Insecure Randomness query

  #14681 merged Jan 8, 2024

• Swift: Query for Use of an inappropriate cryptographic hashing algorithm on passwords

  #15122 merged Jan 8, 2024

• Ruby: update tree-sitter-ruby

  #15224 merged Jan 8, 2024

• C#: Improve arg-param mapping logic to better handle arguments passed to `params` parameters

  #15175 merged Jan 8, 2024

• Data flow: Avoid unnecessary non-linear recursion in `fwdFlowIn`

  #15157 merged Jan 8, 2024

16 Pull requests opened by 13 people

• Post-release preparation for codeql-cli-2.16.0

  #15254 opened Jan 8, 2024

• Python: remove assignments handled by capture library

  #15255 opened Jan 8, 2024

• Js/Py/Rb: Report any extracted file as successfully extracted

  #15256 opened Jan 8, 2024

• Swift: upgrade to 5.9.2

  #15259 opened Jan 9, 2024

• C++: PrintAST support for destructor calls

  #15270 opened Jan 9, 2024

• Generate Changelogs for 2.15.5

  #15279 opened Jan 10, 2024

• [Draft] Java: Add query for exposure of sensitive information to android notifiactions

  #15281 opened Jan 10, 2024

• Java: Introduce a common sanitizer type for types which cannot realistically carry taint.

  #15291 opened Jan 11, 2024

• Java: Add `java.util.UUID` and `java.util.Date` to the `SimpleScalarSanitizer` class

  #15292 opened Jan 11, 2024

• C# WIP: Change pre-finalize to run standalone extraction

  #15298 opened Jan 11, 2024

• Python: add models for `stdlib`

  #15306 opened Jan 12, 2024

• Ruby: Add type row for extends calls

  #15311 opened Jan 12, 2024

• Python: add new Pandas sinks

  #15314 opened Jan 12, 2024

• C++: Make IR generation robust against functions with many declaring types

  #15316 opened Jan 12, 2024

• C++: First-class destructors in AST and IR

  #15318 opened Jan 12, 2024

• [Python] Add Unicode DoS (qhelp, tests and the query)

  #15319 opened Jan 13, 2024

4 Issues closed by 4 people

• CodeQL not detecting YAML workflow vulnerabilities using on.push & on.pull_request

  #15239 closed Jan 10, 2024

• Taint Tracking of Function Passed Through JSX Attributes

  #15207 closed Jan 10, 2024

• Missing methods and constructors in Java GSON model

  #14924 closed Jan 10, 2024

• C++: Documentation clarification for `cmpWithLinearBound`

  #15248 closed Jan 9, 2024

10 Issues opened by 9 people

• False positive: Modification of parameter with default for Python copy.deepcopy

  #15317 opened Jan 12, 2024

• False negative: NestJS TypeORM SQLInjection vulnerability not detected

  #15299 opened Jan 11, 2024

• CodeQL Package Manger and CodeQL Packs Beta Status

  #15287 opened Jan 10, 2024

• False positive - "zx" npm package usage is mistakenly detected as jQuery usage

  #15286 opened Jan 10, 2024

• False positive - cs/unused-reftype - C#

  #15278 opened Jan 10, 2024

• The QL query should not have multiple results?

  #15274 opened Jan 10, 2024

• The CODEQL query result cannot be redirected

  #15258 opened Jan 9, 2024

• C#: False positive

  #15253 opened Jan 8, 2024

• Java: Add sinks for `sun.misc.Unsafe`

  #15247 opened Jan 7, 2024

• SARIF: Backslash in query message is not escaped

  #15245 opened Jan 6, 2024

22 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• Data flow: prune context-sensitivity relations

  #15140 commented on Jan 12, 2024 • 13 new comments

• Ruby: Track types in data flow

  #15118 commented on Jan 12, 2024 • 9 new comments

• Ruby: Add Insecure Randomness Query

  #14554 commented on Jan 9, 2024 • 7 new comments

• Go: new query for detect DOS vulnerability

  #15130 commented on Jan 12, 2024 • 6 new comments

• Swift: switch to shared, parameterized CFG library

  #15219 commented on Jan 9, 2024 • 4 new comments

• General issue with setup

  #15240 commented on Jan 8, 2024 • 3 new comments

• CodeQL is missing an inline mechanism to suppress warnings

  #11427 commented on Jan 11, 2024 • 3 new comments

• C++ Function Call to Undefined Function

  #9799 commented on Jan 12, 2024 • 3 new comments

• C#: Extract and use ambiguous type information for call target resolution

  #14891 commented on Jan 11, 2024 • 3 new comments

• Kotlin 2: Comment improvements

  #14940 commented on Jan 10, 2024 • 2 new comments

• 27 cppnon constant format bug

  #14700 commented on Jan 11, 2024 • 1 new comment

• JS: Add Permissive CORS query (CWE-942)

  #14342 commented on Jan 10, 2024 • 1 new comment

• CodeQL for unity

  #11791 commented on Jan 11, 2024 • 1 new comment

• C++: Global variable flow without explicit SSA definitions

  #15194 commented on Jan 10, 2024 • 1 new comment

• Sound static analysis needed to complement CodeQL

  #13092 commented on Jan 6, 2024 • 1 new comment

• Java: openjdk model autogeneration

  #14919 commented on Jan 13, 2024 • 0 new comments

• Bump actions/labeler from 4 to 5

  #15017 commented on Jan 10, 2024 • 0 new comments

• Bump actions/setup-python from 4 to 5

  #15033 commented on Jan 10, 2024 • 0 new comments

• Upgrade to bazel 7.

  #15068 commented on Jan 8, 2024 • 0 new comments

• Bump actions/upload-artifact from 3 to 4

  #15114 commented on Jan 10, 2024 • 0 new comments

• add security-severity score to code scanning query list

  #12557 commented on Jan 8, 2024 • 0 new comments

• C++: Accept test changes after frontend upgrade

  #15213 commented on Jan 12, 2024 • 0 new comments