Skip to content

Pull requests: github/codeql

New pull request New
Clear current search query, filters, and sorts
85 Open 3,853 Closed
85 Open 3,853 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Javascript: Regex Global Flag in Test Function documentation external-contribution JS
#15163 opened Dec 19, 2023 by aydinnyunus Contributor Draft
8
C#: New query for detecting Command Injection bugs in console applications (Local sources) C# documentation
#13551 opened Jun 24, 2023 by cldrn Contributor Loading…
7
JS: Web Cache Deception Express documentation external-contribution JS
#15180 opened Dec 20, 2023 by aydinnyunus Contributor Draft
6
Actions: improve improper access control query Actions Analysis of GitHub Actions documentation
#20904 opened Nov 25, 2025 by redsun82 Contributor Loading…
1
5
Just: introduce common "verbs" Actions Analysis of GitHub Actions C# C++ documentation Go Java JS Kotlin Python Ruby Rust Pull requests that update Rust code Swift
#19978 opened Jul 4, 2025 by redsun82 Contributor Loading…
5
Rust: Exclude self parameter accesses from rust/access-after-lifetime-ended documentation Rust Pull requests that update Rust code
#21155 opened Jan 12, 2026 by geoffw0 Contributor Loading…
3 tasks done
5
Java: Check whether there are internal files in the App that can be read and written by any other App documentation Java
#11016 opened Oct 27, 2022 by kangr0 Loading…
5
Java: Deprecate PrimitiveType.getADefaultValue() documentation Java
#6796 opened Oct 2, 2021 by Marcono1234 Contributor Loading…
1
5
[Java]: Best Practice InterruptedException handling documentation Java
#8469 opened Mar 16, 2022 by JLLeitschuh Contributor Loading…
5
Ruby: Model ActiveModel#serializable_hash documentation Ruby
#12253 opened Feb 19, 2023 by hmac Contributor Draft
5
actions: Add some missing permissions Actions Analysis of GitHub Actions documentation
#19357 opened Apr 23, 2025 by yoff Contributor Loading…
4
Handling of axios in functions and making axios create function recur… documentation JS
#19337 opened Apr 19, 2025 by rotem-cider Loading…
4
Python: Refine the location of flask.request flow sources documentation Python
#20281 opened Aug 25, 2025 by tausbn Contributor Draft
4
C++: IR translation for destruction of temporaries in dynamic initializers C++ documentation
#15981 opened Mar 19, 2024 by rdmarsh2 Contributor Draft
4
Ruby: Query for N+1 queries problem documentation Ruby
#18317 opened Dec 18, 2024 by asgerf Contributor Draft
4
Test: Simple change to Java folder documentation Java WIP This is a work-in-progress, do not merge yet!
#4248 opened Sep 10, 2020 by adityasharad Collaborator Draft
4
Java: Timing attack documentation Java
#8686 opened Apr 7, 2022 by ahmed-farid-dev Contributor Loading…
2
4
Go: Improve diagnostics when no packages are extracted documentation Go
#17674 opened Oct 7, 2024 by mbg Member Loading…
4
Java: Fix ClassInstanceExpr::isDiamond not working for anonymous classes documentation Java
#15429 opened Jan 24, 2024 by Marcono1234 Contributor Loading…
4
Rust: Add AlertSuppression.ql for inline suppression comments documentation Rust Pull requests that update Rust code
#21638 opened Apr 2, 2026 by cnuss Loading…
5 tasks done
1
3
Actions: Removed a false positive injection sink model for theveracode/veracode-sca action. Actions Analysis of GitHub Actions documentation
#21604 opened Mar 27, 2026 by XinyuZhangXvX Loading…
3
Enhance cpp/overflow-calculated - detect out-of-bounds write caused by passing the buffer size in bytes (using sizeof) instead of the number of elements to wcsftime, allowing the function to overrun the allocated buffer. C++ documentation
#19722 opened Jun 10, 2025 by felickz Contributor Draft
3
Add Microsoft to trusted actions owner Actions Analysis of GitHub Actions documentation
#19450 opened May 1, 2025 by felickz Contributor Loading…
3
Qlucie trigger documentation
#21524 opened Mar 20, 2026 by sam-robson Loading…
3
Java: Introduce Freemarker for SSTI queries documentation Java
#6320 opened Jul 18, 2021 by japroc Contributor Loading…
3
ProTip! no:milestone will show everything without a milestone.