codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Bumps the cargo group with 1 update in the / directory: [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam). Updates `crossbeam-channel` from 0.5.14 to 0.5.15 Release notes Sourced from crossbeam-channel's releases. crossbeam-channel 0.5.15 Fix regression introduced in...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
**Description of the issue** Currently getting an OOM error with the CodeQL Autobuilder when attempting to compile Kotlin. https://github.com/JLLeitschuh/ktlint-gradle/actions/runs/14649396135/job/41111305233?pr=861#step:5:121 https://github.com/JLLeitschuh/ktlint-gradle/pull/861 Build Scan: https://scans.gradle.com/s/mfzgqpzmjgq6q The stack trace error is too long...
The artifact poisoning CodeQL query creates a Critical false-positive under the following scenario: * Download Artifact with path set to start with `${{ runner.temp }}` * Use of a [PoisonableCommandStep](https://github.com/github/codeql/blob/987af4ce1df3d3225e5af63b1b3b1606644c3e61/actions/ql/lib/ext/config/poisonable_steps.yml#L20-L62)...
ADO pipelines using codeql bundle 2.21.0 with Xcode 16.2 and the following task configuration block me to compile a swift project. It fails on `could not build module` related errors....
Testing the new Qlucie port to Prior.
**Description of the issue** Similar to - https://github.com/github/codeql/issues/18584 this rule appears to run 20-30x slower on the same exact repo with the same hardware ``` [106/106 eval 30m34s] Evaluation done;...
