codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
This adds the changelogs for both versions (delayed because there was a pending fix for spark).
The duplication of flow steps in additional flow steps added by configs was highlighted by https://github.com/github/codeql/pull/16511 and fixed in https://github.com/github/codeql/pull/16562. This PR fixes them, so we aren't specifying additional flow...
This is a simple follow-up to #16446 , which added the private information heuristics from Swift to the shared sensitive data library. This PR deletes them from Swift, deferring to...
This improves TypeFlow to account for more argument-parameter pairs. Previously this was restricted to private callables, as we need to ensure that a proper closed-world assumption applies, since we're doing...
Hi, do you have any plans to add support for custom query suites in default setup? That is, something similar to the organization-level CodeQL model packs described in [this blog...
Models the `request` parameter of an override of `flask.sessions.SessionInterface.open_session` as a remote flow source.
Bumps [rayon](https://github.com/rayon-rs/rayon) from 1.9.0 to 1.10.0. Changelog Sourced from rayon's changelog. Release rayon 1.10.0 (2024-03-23) The new methods ParallelSlice::par_chunk_by and ParallelSliceMut::par_chunk_by_mut work like the slice methods chunk_by and chunk_by_mut added...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Salvage some commits from old branches that have become dead ends: - add `BuiltinLiteralExpr.getValueString()`; this is a unified / consistent interface for accessing the value of literals. The specific use...