Skip to content

Pull requests: github/codeql

New pull request New
Clear current search query, filters, and sorts
50 Open 663 Closed
50 Open 663 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

ReDoS refactorizations documentation Java JS Python QL-for-QL Ruby
#8522 by erik-krogh Contributor was closed Jun 29, 2022 Draft
151
JS: Add query for detecting potential DOS form a tainted .length property JS
#1916 by erik-krogh Contributor was merged Sep 23, 2019 Loading…
138
JS: Add StoredXss and XssThroughDom to ATM extraction queries JS
#8857 by TomBolton Contributor was closed Apr 26, 2022 Draft
123
Java: Unsafe resource loading in Android webview C# C++ documentation Java JS Python
#3706 by luchua-bc Contributor was closed Oct 19, 2020 Loading…
@smowton
104
JavaScript: Add new query for ZipSlip (CWE-022). JS WIP This is a work-in-progress, do not merge yet!
#889 by jcreedcmu Contributor was merged Mar 1, 2019 Loading… 1.20
94
JS: Functionality from untrusted sources query (CWE-830) documentation JS ready-for-doc-review This PR requires and is ready for review from the GitHub docs team.
#8014 by kaeluka was merged Feb 23, 2022 Loading…
92
JS: DB reads as taint sources JS
#7474 by kaeluka was merged Jan 13, 2022 Loading…
64
JS: Unreachable overloads JS
#1988 by erik-krogh Contributor was merged Oct 21, 2019 Loading…
52
JavaScript: add support for NodeJS and Electron http client libraries JS
#14 by rdmarsh2 Contributor was merged Aug 20, 2018 Loading…
51
JS: Range analysis for dead code detection JS
#440 by asger-semmle Contributor was merged Nov 30, 2018 Loading…
49
JS: add query for detecting suspicious method names in TypeScript JS
#2056 by erik-krogh Contributor was merged Oct 8, 2019 Loading…
48
JavaScript: support simple data flow through Electron IPC JS
#41 by rdmarsh2 Contributor was closed Nov 23, 2018 Loading…
47
JS: add method name injection query JS
#503 by asger-semmle Contributor was merged Nov 26, 2018 Loading… 1.19
45
JS: Parse regular expressions from string literals depends on internal PR This PR should only be merged in sync with an internal Semmle PR JS
#2252 by asger-semmle Contributor was merged Nov 15, 2019 Loading… 1.23
41
JS: Add taint step for handlebars model JS no-change-note-required This PR does not need a change note
#8430 by kaeluka was merged Apr 19, 2022 Loading…
36
[JS] Null Sensitive Context (new library) JS
#1175 by BekaValentine Contributor was merged Apr 15, 2019 Loading…
35
JS: http to file access and file to http body taint flow JS
#132 by denislevin Contributor was merged Oct 4, 2018 Loading…
33
JS: Taint analysis for win paths documentation JS
#7968 by kaeluka was closed Jul 27, 2022 Draft
32
JS: ATM: New features for imports and for function parameters related to an endpoint C# C++ documentation Go Java JS Kotlin Python QL-for-QL Ruby Swift
#8740 by kaeluka was closed Aug 31, 2022 Draft
32
JS: add security query: js/request-forgery documentation JS
#118 by ghost was merged Sep 11, 2018 Loading… 1.18
@asger-semmle
31
[JS] MISSING_RETURN_VALUE (new query) JS
#1144 by BekaValentine Contributor was closed Apr 29, 2019 Loading…
29
JS: Add support for Closure modules JS
#817 by asger-semmle Contributor was merged Feb 6, 2019 Loading…
27
JS: Context sensitive exploratory flow Awaiting evaluation Do not merge yet, this PR is waiting for an evaluation to finish JS
#3131 by asgerf Contributor was closed Apr 21, 2020 Loading…
27
JS: Add getInferredName and use it from FunctionNode and ClassNode JS
#1577 by asger-semmle Contributor was merged Jul 22, 2019 Loading…
26
JS: Add flow label for tainted objects and sharpen NosqlInjection JS
#305 by asger-semmle Contributor was merged Oct 22, 2018 Loading…
24
ProTip! What’s not been updated in a month: updated:<2026-03-30.