codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
CodeQL CLI version: 2.16.4 OS: Ubuntu Target Project: chromium [v8](https://chromium.googlesource.com/v8/v8.git), latest Description: When trying to create CodeQL database when compiling chromium V8, sometimes I see certain source files are missing...
On a Ubuntu 20.04 host with the following CMakeLists.txt: ``` cmake_minimum_required(VERSION 3.16) project(gdal LANGUAGES C CXX) find_package(HDF5 COMPONENTS C CXX) ``` and package libhdf5-dev installed running "cmake .." takes more...
The open redirect protection for this example is still vulnerable https://github.com/github/codeql/blob/dea922958b954416edb3505026133a9f24c37e6e/python/ql/src/Security/CWE-601/examples/redirect_good2.py#L8-L12 A target like `https:/example.com` (notice the single `/`) will be parsed as having no netloc, but browsers will redirect...
I'm trying to build mozilla from [this repo](https://github.com/mozilla/gecko-dev) and create a cpp codeql database. In order to that, I first run `./mach configure` and after it's done, I run the...
hi, i try to perform a taint analysis with following statment: ``` protected void handleSimReady(int phoneId) { ·········· String iccId = (uiccSlot != null) ? IccUtils.stripTrailingFs(uiccSlot.getIccId()) : null; ············ ```...
I have a database biuld with gcc or clang. In my C code which compiles I want to extract all variables defined in my project. I get all const variable...
Bumps [pymongo](https://github.com/mongodb/mongo-python-driver) from 3.9 to 4.6.3. Release notes Sourced from pymongo's releases. PyMongo 4.6.2 Release notes: https://www.mongodb.com/community/forums/t/pymongo-4-6-2-released/267404 PyMongo 4.6.1 Release notes: https://www.mongodb.com/community/forums/t/pymongo-4-6-1-released/255752 PyMongo 4.6.0 Release notes: https://www.mongodb.com/community/forums/t/pymongo-4-6-0-released/251866 PyMongo 4.5.0 Release...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
See https://guides.rubyonrails.org/v2.3/active_record_querying.html#conditions We previously assumed a string argument - but array arguments are only vulnerable if the first element is tainted.
We are using codeql in our Jenkins environment for a java library for a product. The library contains a submodule which uses the openapi-generator maven plugin to generate classes from...
