The Wayback Machine - https://web.archive.org/web/20200720203122/https://github.com/github/codeql/pulls
Skip to content

/ codeql

New pull request New
116 Open 3,403 Closed
116 Open 3,403 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀
C++: make IR BarrierGuard::checks match AST
C++
#3962 opened Jul 17, 2020 by rdmarsh2 Review required
2
Python: Add type tracker and step summary implementation.
Python
#3961 opened Jul 17, 2020 by tausbn Draft
C#: Fix tags typo
#3960 opened Jul 17, 2020 by calumgrant Review required
@hvitved
Python: more call graph tracing
Python
#3953 opened Jul 16, 2020 by RasmusWL Draft
C#: DataSet serialization
C#
#3951 opened Jul 15, 2020 by raulgarciamsft Review required
5
Java: stack trace exposure: address false positives
Java
#3948 opened Jul 13, 2020 by aibaars Review required
1
Java: Clean up ContainerFlow: address outstanding comments
Java
#3946 opened Jul 13, 2020 by aibaars Review required
JAVA : Add query to detect Apache Structs enabled Devmode
Java
#3945 opened Jul 12, 2020 by porcupineyhairs Review required
9
Java: add query to detect web.xml auth bypass through verb tampering
Java
#3944 opened Jul 12, 2020 by porcupineyhairs Review required
26
C#: WIP unqualify all trap ids.
#3939 opened Jul 9, 2020 by calumgrant Draft
Java: Untrusted data used in external APIs
Java
#3938 opened Jul 9, 2020 by lcartey Review required
5
C#: Fix broken link to ECMA-335
#3935 opened Jul 9, 2020 by henrymercer Review required
C++: Alternate instruction -> operand flow
C++
#3933 opened Jul 9, 2020 by MathiasVP Review required
JS: rewriting DeadStoreOfProperty.ql to avoid bad worst-case runtime
JS
#3930 opened Jul 8, 2020 by erik-krogh Review required
Java: Move `HeaderSplittingSink` and `WhitelistedSource` into importable library
Java
#3928 opened Jul 8, 2020 by rvermeulen Changes requested
12
C++: Adds another redundant null check rule
C++
#3921 opened Jul 7, 2020 by catenacyber Review required 1 of 1
@rdmarsh2
20
JS: only include named topmost package.json files for js/shell-command-constructed-from-input
JS
#3913 opened Jul 7, 2020 by erik-krogh Review required
Python: XML RPC Dotted Names
#3910 opened Jul 6, 2020 by dilanbhalla Review required
Python: Private Data Cleartext Storage/Logging
#3899 opened Jul 4, 2020 by dilanbhalla Review required
3
ssti
Python
#3886 opened Jul 3, 2020 by Fxyer Review required
1
Python: BufferedRWPair Undefined Behavior
#3884 opened Jul 3, 2020 by dilanbhalla Changes requested
10
[Java] CodeQL query to detect Log Injection
Java
#3882 opened Jul 2, 2020 by dellalibera Review required
18
Java: Centralize and model additional path creations.
Java
#3881 opened Jul 2, 2020 by intrigus-lgtm Changes requested
19
Data flow: Experiment with precise access paths
#3880 opened Jul 2, 2020 by hvitved Draft
3
C++: match extractor changes to two-operand ?: representation
C++ depends on internal PR
#3879 opened Jul 2, 2020 by nickrolfe Review required
@dbartol
9
ProTip! Follow long discussions with comments:>50.
You can’t perform that action at this time.