Skip to content

Pull requests: github/codeql

New pull request New
Clear current search query, filters, and sorts
77 Open 441 Closed
77 Open 441 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Java: Enable data flow consistency checks. Java
#13436 opened Jun 12, 2023 by aschackmull Contributor Draft updated May 13, 2024
Fix/jwt source Java
#16141 opened Apr 5, 2024 by intrigus-lgtm Contributor Loading… updated Apr 16, 2024
3
Dataflow perf investigations C# C++ DataFlow Library Go Java Python Ruby Swift
#15444 opened Jan 26, 2024 by hvitved Contributor Draft updated Feb 21, 2024
22
Java: Fix ClassInstanceExpr::isDiamond not working for anonymous classes documentation Java
#15429 opened Jan 24, 2024 by Marcono1234 Contributor Loading… updated Feb 20, 2024
4
Java: QL Query to Detect Security Sensitive non-CSPRNG usage Java
#2694 opened Jan 24, 2020 by JLLeitschuh Contributor Loading… updated Feb 6, 2024
24
Bump org.springframework:spring-context from 5.3.18 to 5.3.19 in /java/ql/test/utils/flowtestcasegenerator dependencies Pull requests that update a dependency file Java
#15515 opened Feb 2, 2024 by dependabot Bot Loading… updated Feb 2, 2024
Bump org.apache.shiro:shiro-core from 1.8.0 to 1.13.0 in /java/ql/test/utils/flowtestcasegenerator dependencies Pull requests that update a dependency file Java
#15344 opened Jan 16, 2024 by dependabot Bot Loading… updated Jan 16, 2024
[Java] Add Unicode Bypass Validation query, test and help file documentation Java
#12995 opened May 2, 2023 by Sim4n6 Contributor Loading… updated Dec 19, 2023
24
Add a test file Java Kotlin
#9967 opened Aug 4, 2022 by fossjunkie Draft updated Dec 8, 2023
1
Java: add a new query cover some instance of CWE-209 Java
#14827 opened Nov 17, 2023 by Chisatozt Loading… updated Nov 17, 2023
Bump org.owasp.esapi:esapi from 2.2.3.1 to 2.5.2.0 in /java/ql/test/utils/flowtestcasegenerator dependencies Pull requests that update a dependency file Java
#14624 opened Oct 27, 2023 by dependabot Bot Loading… updated Oct 27, 2023
Java: Add new Apache CXF generated models Java no-change-note-required This PR does not need a change note
#14030 opened Aug 23, 2023 by atorralba Contributor Draft updated Sep 29, 2023
4
Java: Add support for data flow through thrown exceptions. Java
#9914 opened Jul 28, 2022 by aschackmull Contributor Draft updated Sep 25, 2023
6
Bump junit:junit from 4.11 to 4.13.1 in /java/ql/integration-tests/all-platforms/java/buildless-maven dependencies Pull requests that update a dependency file Java
#14287 opened Sep 21, 2023 by dependabot Bot Loading… updated Sep 21, 2023
Java: Add JDK17 df-generated summary models Java
#13962 opened Aug 14, 2023 by jcogs33 Contributor Draft updated Sep 6, 2023
5
Java: Update Encryption.qll in line with NIST.SP.800-131Ar2 Java
#13830 opened Jul 27, 2023 by unprovable Contributor Loading… updated Aug 3, 2023
2
Shared: support quoted operands in access path components C# Go Java JS no-change-note-required This PR does not need a change note Python Ruby Swift
#13441 opened Jun 13, 2023 by asgerf Contributor Draft updated Jun 16, 2023
Kotlin: Add a test for parcelize, and improve tryReplaceFunctionInSyntheticClass Java
#13450 opened Jun 14, 2023 by igfoo Contributor Draft updated Jun 14, 2023
Java: Improve Partial Path Traversal Java
#13375 opened Jun 5, 2023 by JLLeitschuh Contributor Loading… updated Jun 7, 2023
5
Java: Adapt unsafe deserialization to SnakeYaml 2.0, which is secure by default documentation Java
#13347 opened Jun 1, 2023 by jorgectf Contributor Loading… updated Jun 6, 2023
8
Example PR for accept test changes (internal tool) C# C++ DataFlow Library Go Java Python Ruby Swift
#12950 opened Apr 27, 2023 by RasmusWL Member Draft updated Apr 30, 2023
1
Java: Add more entrypoint types Java
#11937 opened Jan 20, 2023 by atorralba Contributor Draft updated Jan 20, 2023
Java: Timing attack documentation Java
#8686 opened Apr 7, 2022 by ahmed-farid-dev Contributor Loading… updated Jan 1, 2023
2
4
Java: exclude parameterless static methods from DataFlowTargetApi and from ExternalApi Java no-change-note-required This PR does not need a change note
#11717 opened Dec 15, 2022 by jcogs33 Contributor Draft updated Dec 16, 2022
2
Bump spring-web from 5.3.18 to 6.0.0 in /java/ql/test/utils/flowtestcasegenerator dependencies Pull requests that update a dependency file Java
#11646 opened Dec 10, 2022 by dependabot Bot Loading… updated Dec 10, 2022
ProTip! Filter pull requests by the default branch with base:main.