codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
**Description of the issue** Hello, I am using the codeql using VSCode extension. I want to generate AST for a particular file but it just won't show me the AST....
**Description of the false positive** CodeQL is generating false positive alerts on Java applications that implement RSA cryptography securely. It is risky for Developers to get in the habit of...
Checking that a value is in a set of compile-time constant values should be a sanitizer, because what was untrusted data has now been checked to be in a known...
## Python code from openstack ```python from neutron_lib._i18n import _ from oslo_config import cfg from oslo_log import log as logging import oslo_messaging from oslo_messaging import serializer as om_serializer from oslo_service...
## Python ```python class Cls: def __init__(self) -> None: self.field = 1 def __init__(self, num) -> None: self.field = num def print(self) -> None: print(self.field) if __name__ == '__main__': var1...
**Description of the issue** I noticed that several files of the linux kernel source were missing when creatiung a database with code ql using the kernel config attached to this...
Hi! I'm using a query like: ``` from FunctionCall target where predicate1(target) and predicate2(target) and predicate3(target) and predicate4(target) select target, target.getLocation().toString() ``` I found that if I query one predicate...
Is there a way to write parameterized queries? Say I my query is something like: ``` from string methodName, MethodDecl method where methodName="MyFunc1" and method.getName()=methodName select method,"FaultyMethod" ``` Now I...
In the evaluation of https://github.com/sysrepo/sysrepo/pull/3353, CodeQL seems to think there is uncontrolled data used in path expression, when there is none. `This argument to a file access function is derived...
False positive on `Query built by concatenation with a possibly-untrusted string` - `java/concatenated-sql-query` * https://github.com/github/codeql/blob/ff0c1ca2d6401e63914f20b650b49c2b82cac148/java/ql/src/Security/CWE/CWE-089/SqlConcatenated.ql We have a constant value from enum ``` public enum CommentType { REVIEW_SIMPLE_COMMENT("comment.review.simple"), SIMPLE_COMMENT("comment.simple"); private...
