codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Static variables are initialized to zero or null by compiler, no need to get an initializer of them. See https://stackoverflow.com/questions/13251083/the-initialization-of-static-variables-in-c See 6.7.8/10 in the [C99 Standard](http://www.open-std.org/JTC1/sc22/wg14/www/docs/n1256.pdf)
Adds support for type tracking for class level attributes and default instance variables. For example, to identify missing SQLExecution sinks for the SQLInjection DataFlow Rule. Also supports values inherited from...
If the cache is prefilled, LFS rules were still trying to query for LFS urls. Now the strategy is to first try to fetch the files from the repository cache...
Inspired by https://github.com/OISF/suricata/pull/11098
This allows a dotted path in the `type` column of a MaD row. This means that ```yml - ["foo", "Member[MS_Class].Instance.Member[instance_method]", "Argument[self]", "ReturnValue.TupleElement[0]", "value"] ``` can now be written ```yml -...
Please ignore this PR, it is being used to test internal testing system
Fixes https://github.com/github/codeql/issues/15972
