Skip to content

Pull requests: github/codeql

New pull request New
Clear current search query, filters, and sorts
86 Open 2,993 Closed
86 Open 2,993 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Post-release preparation for codeql-cli-2.25.3 Actions Analysis of GitHub Actions C# C++ DataFlow Library Go Java JS no-change-note-required This PR does not need a change note Python Ruby Rust Pull requests that update Rust code Swift
#21761 by codeql-ci Collaborator was merged Apr 27, 2026 Loading…
@mbg
1
Release preparation for version 2.25.3 Actions Analysis of GitHub Actions C# C++ DataFlow Library documentation Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21760 by codeql-ci Collaborator was merged Apr 27, 2026 Loading…
@mbg
1
C#: Include parameters and their defaults in the CFG C# Java no-change-note-required This PR does not need a change note
#21759 by hvitved Contributor was merged Apr 30, 2026 Loading…
11
Revert "Release preparation for version 2.25.3" Actions Analysis of GitHub Actions C# C++ DataFlow Library documentation Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21758 by mbg Member was merged Apr 27, 2026 Loading…
4
Move generated MaDs into modelgenerator/ C# C++ Java no-change-note-required This PR does not need a change note Rust Pull requests that update Rust code
#21751 by jacknojo Contributor was merged Apr 29, 2026 Loading…
11
Add Hibernate SQL injection sink models and coverage documentation Java
#21749 by Copilot AI was merged Apr 24, 2026 Loading…
@owen-mc
6
C#: Move handling of callables into shared control flow library C# Java no-change-note-required This PR does not need a change note
#21743 by hvitved Contributor was merged Apr 23, 2026 Loading…
19
Post-release preparation for codeql-cli-2.25.3 Actions Analysis of GitHub Actions C# C++ DataFlow Library documentation Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21737 by codeql-ci Collaborator was merged Apr 21, 2026 Loading…
@mbg
1
Release preparation for version 2.25.3 Actions Analysis of GitHub Actions C# C++ DataFlow Library documentation Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21736 by codeql-ci Collaborator was merged Apr 20, 2026 Loading…
@mbg
1
Java: fix bug in partial path traversal documentation Java
#21734 by owen-mc Contributor was merged Apr 20, 2026 Loading…
4
Java: Add XXE sink model for Woodstox WstxInputFactory documentation Java
#21718 by chmodxxx Contributor was merged Apr 17, 2026 Loading…
5
Post-release preparation for codeql-cli-2.25.2 Actions Analysis of GitHub Actions C# C++ DataFlow Library documentation Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21658 by codeql-ci Collaborator was merged Apr 14, 2026 Loading…
@oscarsj
1
Release preparation for version 2.25.2 Actions Analysis of GitHub Actions C# C++ DataFlow Library documentation Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21657 by codeql-ci Collaborator was merged Apr 6, 2026 Loading…
@oscarsj
1
Java: add RegexpCheckBarrier to trust-boundary-violation sanitizers documentation Java
#21656 by MarkLee131 Contributor was merged Apr 29, 2026 Loading…
7
Java: treat hash/encrypt/digest methods as sensitive-log sanitizers documentation Java
#21654 by MarkLee131 Contributor was merged Apr 30, 2026 Loading…
1
5
Java: recognize Path.toRealPath() as path normalization sanitizer documentation Java
#21652 by MarkLee131 Contributor was merged Apr 23, 2026 Loading…
1
1
Java: reduce false positives in sensitive-log documentation Java
#21650 by MarkLee131 Contributor was merged Apr 21, 2026 Loading…
1
6
Narrow ZipSlip sinks to file write operations, excluding read-only paths documentation Java
#21609 by MarkLee131 Contributor was closed Apr 30, 2026 Loading…
1
3
Exclude bounds-check arithmetic from tainted-arithmetic sinks documentation Java
#21608 by MarkLee131 Contributor was merged Mar 29, 2026 Loading…
1
10
Add EC to secure algorithm whitelist for Java CWE-327 query documentation Java
#21594 by MarkLee131 Contributor was merged Mar 28, 2026 Loading…
1
14
Shared: update code comments explaining models-as-data format to include barriers and barrier guards C# C++ DataFlow Library Go Java JS no-change-note-required This PR does not need a change note Python Ruby Rust Pull requests that update Rust code Swift
#21584 by owen-mc Contributor was merged Apr 14, 2026 Loading…
16
Kotlin: update to 2.3.20 depends on internal PR This PR should only be merged in sync with an internal Semmle PR documentation Java Kotlin
#21583 by redsun82 Contributor was merged Apr 2, 2026 Loading…
2
Post-release preparation for codeql-cli-2.25.1 Actions Analysis of GitHub Actions C# C++ DataFlow Library documentation Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21579 by codeql-ci Collaborator was merged Mar 30, 2026 Loading…
@oscarsj
1
Release preparation for version 2.25.1 Actions Analysis of GitHub Actions C# C++ DataFlow Library documentation Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21578 by codeql-ci Collaborator was merged Mar 25, 2026 Loading…
@oscarsj
1
Post-release preparation for codeql-cli-2.25.1 Actions Analysis of GitHub Actions C# C++ DataFlow Library documentation Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21577 by codeql-ci Collaborator was closed Mar 25, 2026 Draft
@oscarsj
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.