Skip to content

Pull requests: github/codeql

New pull request New
Clear current search query, filters, and sorts
81 Open 492 Closed
81 Open 492 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

ReDoS refactorizations documentation Java JS Python QL-for-QL Ruby
#8522 by erik-krogh Contributor was closed Jun 29, 2022 Draft
151
[Java] CWE-089 MyBatis Mapper Sql Injection documentation Java no-change-note-required This PR does not need a change note
#6319 by haby0 Contributor was merged Dec 9, 2021 Loading…
118
Brodes/seh flow overhaul2 C++ documentation
#17676 by bdrodes Contributor was closed Aug 22, 2025 Loading…
115
JS: Functionality from untrusted sources query (CWE-830) documentation JS ready-for-doc-review This PR requires and is ready for review from the GitHub docs team.
#8014 by kaeluka was merged Feb 23, 2022 Loading…
92
Java: Experimental version of Java Command Injection query documentation Java
#13484 by aegilops Contributor was merged Aug 4, 2023 Loading…
86
Java: Add query - insecure environment configuration during JMX/RMI server init documentation Java
#5811 by timoles Contributor was merged Jun 25, 2021 Loading…
74
CodeQL: Python topics (2166) - WIP documentation migration-prep
#2823 by felicitymay Contributor was merged Mar 10, 2020 Loading…
61
Quantum: Support for BouncyCastle signature algorithms and block cipher modes documentation Java
#19568 by fegge Contributor was closed Oct 2, 2025 Loading…
47
[Java] CWE-601 Spring url redirection detect documentation Java
#5844 by haby0 Contributor was merged May 18, 2021 Loading…
47
C#: Add csharp cors query C# documentation
#18120 by Kwstubbs Contributor was closed Dec 20, 2024 Loading…
45
C++: New query cpp/potential-system-data-exposure C++ depends on internal PR This PR should only be merged in sync with an internal Semmle PR documentation ready-for-doc-review This PR requires and is ready for review from the GitHub docs team.
#8318 by geoffw0 Contributor was merged Mar 25, 2022 Loading…
43
Go: database local source models documentation Go
#17905 by egregius313 Contributor was closed Mar 27, 2025 Loading…
4 of 7 tasks
43
docs: add rst versions of java training slides documentation
#1842 by jf205 Contributor was merged Sep 4, 2019 Loading…
42
Java: CWE-625 Query to detect regex dot bypass documentation Java
#9873 by luchua-bc Contributor was merged Aug 31, 2022 Loading…
39
Java: Promote HashWithoutSalt query documentation Java ready-for-doc-review This PR requires and is ready for review from the GitHub docs team.
#8541 by joefarebrother Contributor was closed Oct 25, 2022 Loading…
38
Java: Add query for Improper Verification of Intent by Broadcast Receiver (CWE-925) documentation Java ready-for-doc-review This PR requires and is ready for review from the GitHub docs team.
#8669 by joefarebrother Contributor was merged Jun 29, 2022 Loading…
37
Python: subscript def nodes documentation Python
#10608 by yoff Contributor was closed Oct 19, 2022 Draft
35
CPP: Add query for CWE-1126: Declaration of Variable with Unnecessarily Wide Scope C++ documentation
#5767 by ihsinme Contributor was merged May 11, 2021 Loading…
35
Insecure Bean Validation query documentation Java
#3141 by pwntester Contributor was merged Oct 28, 2020 Loading…
34
CPP: Add a query to find incorrectly used switch C++ documentation
#6081 by ihsinme Contributor was merged Aug 3, 2021 Loading…
34
CPP: Add query for CWE-691 Insufficient Control Flow Management After Refactoring The Code C++ documentation
#5601 by ihsinme Contributor was merged Apr 21, 2021 Loading…
33
JS: Taint analysis for win paths documentation JS
#7968 by kaeluka was closed Jul 27, 2022 Draft
32
JS: ATM: New features for imports and for function parameters related to an endpoint C# C++ documentation Go Java JS Kotlin Python QL-for-QL Ruby Swift
#8740 by kaeluka was closed Aug 31, 2022 Draft
32
Java: CWE-552 Query to detect unsafe resource loading in Java Spring applications documentation Java
#9199 by luchua-bc Contributor was merged Sep 27, 2022 Loading…
32
Java: CWE-652: Improper Neutralization of Data within XQuery Expressions ('XQuery Injection') documentation Java
#4994 by haby0 Contributor was merged Mar 23, 2021 Loading…
32
ProTip! Add no:assignee to see everything that’s not assigned.