codeql

codeql copied to clipboard

LGTM.com - false positive because of setter in python

1

**Description of the false positive** If a string is passed to the `aoi_model` attribute of the ModelChain class,` aoi_model.setter` is called and assigns a function to `self.aoi_model` based on the...

chrisorner

multiple databases

1

A data flow involves multiple databases, can their data flows be linked together? For example, partial filtering is done at python, and eventually the functionality is implemented at the go...

leila97

Wrong global dataflow analyse in C

2

Hi! I write a small C code, and I want to find if there is a dataflow from `malloc` to `free`.And `malloc` and` free` in different functions. But I got...

icy17

The change is to align the naming in Java and C#.

michaelnebel

Java: Add support for java.util.StringJoiner

7

pwntester

hmac

hvitved

Better explain how to exclude paths for compiled languages

2

the current explanation in github's FAQ says: > For compiled languages, if you want to limit code scanning to specific directories in your project, you must specify appropriate build steps...

rlsf

Ruby: add `rb/sensitive-get-query` query

1

Finds cases where an HTTP GET request handler takes sensitive input, such as a password or other credential, from the query string of the request. The bulk of this PR...

alexrford

C++: Fix FPs for cpp/unused-static-function in files that were not extracted completely

9

Fix FPs for `cpp/unused-static-function` in files that were not extracted completely, e.g. due to a compilation error part way through the file. As the test shows, this may hide some...

geoffw0