Skip to content

Pull requests: github/codeql

New pull request New
Clear current search query, filters, and sorts
393 Open 16,621 Closed
393 Open 16,621 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Rust: switch on TRAP compression Rust Pull requests that update Rust code
#21112 opened Jan 7, 2026 by redsun82 Contributor Draft
Actions: Add taint summary for suisei-cn/actions-download-file url input Actions Analysis of GitHub Actions documentation
#21600 opened Mar 27, 2026 by XinyuZhangXvX Loading…
1
Add extra source to actions CWE-094/CodeInjectionMedium Actions Analysis of GitHub Actions documentation
#21672 opened Apr 8, 2026 by knewbury01 Contributor Loading…
@knewbury01
3
Kotlin: clamp -language-version to 1.9 Kotlin
#21545 opened Mar 23, 2026 by redsun82 Contributor Draft
1
Bump rules_nodejs from 6.7.3 to 6.7.4 bazel Pull requests that update bazel code dependencies Pull requests that update a dependency file
#21717 opened Apr 16, 2026 by dependabot Bot Loading…
py/tarslip: detect shutil.unpack_archive and subprocess tar extraction Python
#21720 opened Apr 16, 2026 by Copilot AI Draft
1
@hvitved
8
Improve actions/ql/src/Security/CWE-829/UntrustedCheckoutX queries Actions Analysis of GitHub Actions documentation
#21715 opened Apr 15, 2026 by knewbury01 Contributor Loading…
@knewbury01
10
Jb1/zipslip performance fix upstream C# documentation
#15558 opened Feb 8, 2024 by ropwareJB Contributor Loading…
19
Rust: Upgrade to rust-analyzer 0.328 Ruby Rust Pull requests that update Rust code
#21714 opened Apr 15, 2026 by tausbn Contributor Draft
11
Bump pytest from 8.3.5 to 9.0.3 in /misc/codegen in the pip group across 1 directory dependencies Pull requests that update a dependency file
#21704 opened Apr 14, 2026 by dependabot Bot Loading…
Bump actions/labeler from 4 to 6 dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#20372 opened Sep 5, 2025 by dependabot Bot Loading…
Bump actions/setup-dotnet from 4 to 5 dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#20361 opened Sep 4, 2025 by dependabot Bot Loading…
Go: fix bad join order Go no-change-note-required This PR does not need a change note
#21576 opened Mar 25, 2026 by owen-mc Contributor Loading…
11
C#: Reduce reliance on CFG nodes in DataFlow::Node. C#
#21491 opened Mar 17, 2026 by aschackmull Contributor Draft
Bump org.apache.logging.log4j:log4j-core from 2.14.1 to 2.25.4 in /java/ql/test/utils/flowtestcasegenerator in the maven group across 1 directory dependencies Pull requests that update a dependency file Java
#21696 opened Apr 10, 2026 by dependabot Bot Loading…
Add docs comment about deduplicating query rows documentation
#21693 opened Apr 10, 2026 by k4lizen Loading…
Bump the cargo group across 1 directory with 2 updates dependencies Pull requests that update a dependency file
#21705 opened Apr 14, 2026 by dependabot Bot Loading…
Extend actions/unpinned-tag to analyze composite action metadata (action.yml / action.yaml) Actions Analysis of GitHub Actions documentation
#21692 opened Apr 10, 2026 by Copilot AI Loading…
@oscarsj
6
Rust: Block non-numeric types for number literals Rust Pull requests that update Rust code
#20415 opened Sep 11, 2025 by paldepind Contributor Draft
JS: Module system refactoring documentation JS
#20414 opened Sep 11, 2025 by asgerf Contributor Draft
1
Fix Go extractor silent failures and improve error recovery Go
#20676 opened Oct 22, 2025 by allsmog Loading…
5
Shared (static): Always treat subtypes column as true C# C++ Go Java
#21085 opened Jan 2, 2026 by owen-mc Contributor Draft
1
JS: Improve performance of trackUseNode JS
#20662 opened Oct 21, 2025 by asgerf Contributor Draft
Go: improve tests for varargs flow Go no-change-note-required This PR does not need a change note
#21269 opened Feb 4, 2026 by owen-mc Contributor Loading…
1
Crypto: Support additional JCA algorithms/modes, add PQC demo queries Java
#21354 opened Feb 22, 2026 by nicolaswill Contributor Loading…
12
ProTip! Find all pull requests that aren't related to any open issues with -linked:issue.