codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
When building a large application, I got the following error: ``` 7b012e813b8c62de4e17eb1e.trap (maglev-graph-builder.cc.adcdb985_0.trap.tar.zst), 22: com.semmle.util.exception.CatastrophicError: We have exhausted all available IDs in the disk pool /databases/v1/demo/db-cpp/default/idPool ``` Unsure of what...
This PR adds a pull request template. It is sparse right now. The main goal is to remind query authors to check for autofix changes when they add new queries...
**Description of the false positive** CodeQL complains "Comparison is always true because i
A few of the Swift `.qhelp` files have minor rendering issues now that we label the code snippets as Swift (and have syntax highlighting). The issue is believed to be...
Improve AliasedSSA performance, in particular on projects where it's been found to perform poorly (such as `AcademySoftwareFoundation/openexr`). Draft PR. The change I propose here definitely speeds up analysis on the...
In this PR we introduce a new model generator query for Java and C#. The work is based on https://github.com/github/codeql/pull/8667. This should not in any way be considered the final...
A certificate, such as an SSL certificate or x509 certificate, often does not contain sensitive data, so the cleartext storage and cleartext logging queries result in false positive alerts when...
The `cpp/uncontrolled-allocation-size` query has some false negatives, such as [this one](https://github.com/paldepind/codeql/blob/d9dbcdba3481016956f20f7f99c7d88a87dfb832/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/TaintedAllocationSize/test.cpp#L194). To improve this, @geoffw0 suggested a change to how [`bounded`](https://github.com/paldepind/codeql/blob/d9dbcdba3481016956f20f7f99c7d88a87dfb832/cpp/ql/src/Security/CWE/CWE-190/Bounded.qll#L26) (which servers as a barrier for this query) works....
