github / codeql Public

Notifications You must be signed in to change notification settings
Fork 2k
Star 9.5k

Code
Issues 976
Pull requests 392
Discussions
Actions
Projects
Models
Security and quality
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Models
Security and quality
Insights

Pull requests: github/codeql

Labels 56 Milestones 8

New pull request New

Clear current search query, filters, and sorts

85 Open 2,480 Closed

Author

Filter by author

Uh oh!

There was an error while loading. Please reload this page.

Label

Filter by label

Uh oh!

There was an error while loading. Please reload this page.

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Uh oh!

There was an error while loading. Please reload this page.

Milestones

Filter by milestone

Uh oh!

There was an error while loading. Please reload this page.

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Assigned to nobody

Uh oh!

There was an error while loading. Please reload this page.

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Pull requests list

Java: catch delayed unsafe deserialization Java

#8766 opened Apr 17, 2022 by artem-smotrakov Contributor

Loading…

Add auto-remediation to InsecureDependencyResolution.qhelp documentation Java

#8790 opened Apr 20, 2022 by JLLeitschuh Contributor

Loading…

Java: Add support for data flow through thrown exceptions. Java

#9914 opened Jul 28, 2022 by aschackmull Contributor • Draft

Add a test file Java Kotlin

#9967 opened Aug 4, 2022 by fossjunkie • Draft

Java: port the bad-tag-filter to java documentation Java

#10058 opened Aug 16, 2022 by erik-krogh Contributor • Draft

Java: Improve ImportStaticTypeMember and ImportStaticOnDemand documentation Java

#10497 opened Sep 20, 2022 by Marcono1234 Contributor

Loading…

Java: Add getJavadoc predicate for JavadocParent and JavadocElement documentation Java

#10499 opened Sep 20, 2022 by Marcono1234 Contributor

Loading…

Java: Check whether there are internal files in the App that can be read and written by any other App documentation Java

#11016 opened Oct 27, 2022 by kangr0

Loading…

Bump shiro-core from 1.8.0 to 1.10.0 in /java/ql/test/utils/flowtestcasegenerator dependencies

Pull requests that update a dependency file

Java

#11444 opened Nov 28, 2022 by dependabot Bot

Loading…

Bump log4j-core from 2.14.1 to 2.17.1 in /java/ql/test/utils/flowtestcasegenerator dependencies

Pull requests that update a dependency file

Java

#11445 opened Nov 28, 2022 by dependabot Bot

Loading…

Bump spring-web from 5.3.18 to 6.0.0 in /java/ql/test/utils/flowtestcasegenerator dependencies

Pull requests that update a dependency file

Java

#11646 opened Dec 10, 2022 by dependabot Bot

Loading…

Java: exclude parameterless static methods from DataFlowTargetApi and from ExternalApi Java no-change-note-required

This PR does not need a change note

#11717 opened Dec 15, 2022 by jcogs33 Contributor • Draft

Java: Add more entrypoint types Java

#11937 opened Jan 20, 2023 by atorralba Contributor • Draft

Sync dbschemes C# C++ Go Java JS Python QL-for-QL Ruby Swift

#12849 opened Apr 17, 2023 by aibaars Contributor • Draft

Example PR for accept test changes (internal tool) C# C++ DataFlow Library Go Java Python Ruby Swift

#12950 opened Apr 27, 2023 by RasmusWL Member • Draft

[Java] Add Unicode Bypass Validation query, test and help file documentation Java

#12995 opened May 2, 2023 by Sim4n6 Contributor

Loading…

Java: Adapt unsafe deserialization to SnakeYaml 2.0, which is secure by default documentation Java

#13347 opened Jun 1, 2023 by jorgectf Contributor

Loading…

Java: Improve Partial Path Traversal Java

#13375 opened Jun 5, 2023 by JLLeitschuh Contributor

Loading…

Java: Enable data flow consistency checks. Java

#13436 opened Jun 12, 2023 by aschackmull Contributor • Draft

Shared: support quoted operands in access path components C# Go Java JS no-change-note-required

This PR does not need a change note

Python Ruby Swift

#13441 opened Jun 13, 2023 by asgerf Contributor • Draft

Kotlin: Add a test for parcelize, and improve tryReplaceFunctionInSyntheticClass Java

#13450 opened Jun 14, 2023 by igfoo Contributor • Draft

Java: Update Encryption.qll in line with NIST.SP.800-131Ar2 Java

#13830 opened Jul 27, 2023 by unprovable Contributor

Loading…

Java: Add JDK17 df-generated summary models Java

#13962 opened Aug 14, 2023 by jcogs33 Contributor • Draft

Java: Add new Apache CXF generated models Java no-change-note-required

This PR does not need a change note

#14030 opened Aug 23, 2023 by atorralba Contributor • Draft

Bump junit:junit from 4.11 to 4.13.1 in /java/ql/integration-tests/all-platforms/java/buildless-maven dependencies

Pull requests that update a dependency file

Java

#14287 opened Sep 21, 2023 by dependabot Bot

Loading…

Previous 1 2 3 4 Next

Previous Next

ProTip! Type g p on any issue or pull request to go back to the pull request listing page.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!