codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Please implement text format console output, similar to how other linters work.
Support these can make developer analyzing projects easiler, which not require to change the lots of projects code rely on these. 1. -Wno-c++11-narrowing and -Wno-narrowing There are some projects use...
Don't enable Android analysis when only an Android Manifest generated by Swagger Codegen is present.
Hello, I have some golang applications that use yaml format files as configuration files, but R&D often writes some accounts and passwords in the configuration files. How can I use...
This is based on top of https://github.com/github/codeql/pull/16737 so ignore the first two commits. This is ground work for https://github.com/github/codeql/pull/15216. In that PR, we extract objects for type parameters, and they...
This was overlooked previously. We already do this for named types. I have confirmed that none of the other cases in this switch statement are entities, that is they don't...
Hi, we are currently moving our development build agents from x64 linux machines to arm64 linux machines. As we are running DevOps Advanced Security it would be great if you...
```py class MyClass: def set_foo(self): self.foo = def uses(self): print(self.foo) ``` This PR adds flow from `` to the use in `print` for type-tracking. It also handles instances, and class-level...
