codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
This gets rid of the `getAdditionalFlowIntoCallNodeTerm` hook we added as part of https://github.com/github/codeql/pull/12236. This shouldn't be needed anymore now that we've added second-level scopes in https://github.com/github/codeql/pull/15599/commits/db6d27bd2be27a58718065979532c05e8f0d522c 🤞 Currently in draft...
Bumps [chrono](https://github.com/chronotope/chrono) from 0.4.37 to 0.4.38. Release notes Sourced from chrono's releases. v0.4.38 This release bring a ca. 20% improvement to the performance of the formatting code, and a convenient...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
These were contributed by @am0o0 in https://github.com/github/codeql/pull/13553 .
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.0.0-20200505041828-1ed23360d12c to 0.23.0. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: #...
This was asked about in https://github.com/github/codeql/issues/9298 and the issue log stated "closed as not planned". The "answer" was to dismiss via the UI. But this alone is really not a...
Herein, a PR for Denial of Service query for Ruby language, with a help file. The .expected file is on the road.
Hi, Currently, when running a cwe query such as TaintedPath (cwe 22) on a java project, I retrieve the CodeFlow for each result in the SARIF files as shown below....
This adds the list of referenced models in a qltest and renumbers the MaD ids to get stable test output. Where applicable, I've updated one test per language to demonstrate...
Consider this code: ```java JwtParserBuilder parserBuilder = Jwts.parserBuilder(); parserBuilder.setSigningKey("someBase64EncodedKey"); JwtParser parser = parserBuilder.build(); return parser; ``` Previously `setSigningKey` (the method access) was considered the source. However the return value of...
