codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Execa package before version 5 has already been modeled but newer versions up to 8 have many new APIs that I've implemented now. @erik-krogh the `SecondOrderCommandInjectionQuery` doesn't work for me...
This commits a bazel-based build system for C# using `rules_dotnet`. External dependencies are managed via `paket`, and updates to the generated bazel files are done via `./update-deps.sh`. We're providing our...
Follow-up for https://github.com/github/codeql/pull/15501 This adds provenance for the steps that are defined directly in the configuration.
In this PR we align the C# model generator lifting and override logic with Java. That is, - Models are now lifted to the top base class within the source...
In this PR we refactor the C# model generator test to inline like verification (models should be inlined as comments to above a callable).
Adds a category of private information to the shared sensitive data heuristics file. This may result in new results for the following queries: - `rb/sensitive-get-query` - `py/clear-text-storage-sensitive-data` - `py/clear-text-logging-sensitive-data` -...
This is part of All for one, one for all query submission, I'm going to submit an issue in github/securitylab for this pull request too. I tries my best to...
# Usage overview Building the extractor can be done via ``` bazel build //java/kotlin-extractor:codeql-extractor-kotlin-- ``` where `` is either `standalone` or `embeddable`, and `` is one of the supported versions....
