codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
We are no longer bound to the platform-specific directories, so simplify the test organization. If you don't want this change, just skip merging this PR. It's purely optional. This is...
https://github.com/github/codeql/pull/17289#pullrequestreview-2260069979 follow-up.
**Description of the issue** This is test code: test_throw.h ``` #define _O_RDONLY 0x0000 // open for reading only namespace OCKIO { namespace MSG { void Throw(const char* func, const char*...
Hi hello, I'm a committer for the Chromium project & we've been experimenting with building CodeQL databases of Chromium. ### Context While building the Chromium CodeQL database, in addition to...
**Description of the issue** When I encounter errors while running codeql scans, troubleshooting can be very challenging. I would like to understand the specific meanings of the return codes from...
Hello, I am using CodeQL to perform backward slicing. However, I am noticing that my query is currently missing some flows. I have this example, ``` import javax.mail.*; import javax.mail.internet.*;...
Hey there, I'm a committer for the Chromium project & we've been experimenting with building CodeQL databases of Chromium. As of right now, when compiling Chromium, we see ~80,000 errors...
**Description of the issue** Why does query execution take such a long time? It takes a few seconds on average for some of the complex queries What are the ways...
**Description of the issue** I want to write a predicate similar to getEnclosingFunction() for `TypeDecl`s and `ParameterOrResultDecl`s. The problem I am facing is i want to limit my search of...
**Description of the issue** Whenever I execute code scanning and generate a SARIF file, I always read and parse it in standard JSON format, which makes it difficult to display....