Skip to content

Pull requests: github/codeql

New pull request New
Clear current search query, filters, and sorts
77 Open 467 Closed
77 Open 467 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Narrow ZipSlip sinks to file write operations, excluding read-only paths documentation Java
#21609 by MarkLee131 Contributor was closed Apr 30, 2026 Loading… updated Apr 30, 2026
1
3
Fix GitHub History + Upgrade to 2.22.2 Actions Analysis of GitHub Actions C# C++ documentation Go Java JS Kotlin
#20195 by dilanbhalla Contributor was closed Aug 8, 2025 Loading… updated Apr 20, 2026
2
Bump org.apache.logging.log4j:log4j-core from 2.14.1 to 2.25.3 in /java/ql/test/utils/flowtestcasegenerator in the maven group across 1 directory dependencies Pull requests that update a dependency file Java
#21073 by dependabot Bot was closed Apr 10, 2026 Loading… updated Apr 10, 2026
1
Add more response splitting sinks documentation Java
#5937 by zbazztian Contributor was closed Apr 4, 2026 Loading… updated Apr 4, 2026
4
C#: Replace CFG with the shared implementation. C# Java
#21513 by aschackmull Contributor was closed Mar 30, 2026 Draft updated Mar 30, 2026
9
Resolving merge conflicts from origin/main C# C++ documentation Go Java JS Kotlin
#21525 by chanel-y Contributor was closed Mar 20, 2026 Loading… updated Mar 20, 2026
14
Add 'View DFG' queries C# C++ DataFlow Library documentation Java JS Python Ruby Rust Pull requests that update Rust code Swift
#21356 by asgerf Contributor was closed Feb 27, 2026 Draft updated Feb 27, 2026
9
Tmp/kotlin2 test Java Kotlin
#21334 by aschackmull Contributor was closed Feb 17, 2026 Draft updated Feb 17, 2026
Rtlcompare usage refactor C# C++ documentation Go Java JS
#21321 by bdrodes Contributor was closed Feb 12, 2026 Draft updated Feb 12, 2026
Add simple ognl sink documentation Java
#20285 by Kwstubbs Contributor was closed Feb 12, 2026 Loading… updated Feb 12, 2026
7
Brodes/nested sizeof or operation in sizeof audit fixes C# C++ documentation Go Java JS
#21052 by bdrodes Contributor was closed Dec 16, 2025 Loading… updated Dec 16, 2025
3
Merge upstream codeql-cli-2.22.3 C# C++ documentation Go Java JS
#20841 by chanel-y Contributor was closed Nov 14, 2025 Loading… updated Nov 14, 2025
7
Diff-informed queries: phase 3 (non-trivial locations) Actions Analysis of GitHub Actions C# C++ Go Java JS Python Ruby Rust Pull requests that update Rust code Swift
#19957 by d10c Contributor was closed Nov 10, 2025 Loading… updated Nov 10, 2025
21
Diff-informed queries via primary/secondary abstractions DataFlow Library Java
#19586 by jbj Contributor was closed Nov 4, 2025 Draft updated Nov 4, 2025
8
Java: make all code-scanning queries diff-informed DataFlow Library Java no-change-note-required This PR does not need a change note
#17846 by jbj Contributor was closed Oct 20, 2025 Draft updated Oct 20, 2025
5 of 7 tasks
3
Quantum: Support for BouncyCastle signature algorithms and block cipher modes documentation Java
#19568 by fegge Contributor was closed Oct 2, 2025 Loading… updated Oct 2, 2025
47
Experiment: Make all data flow incremental DataFlow Library Java
#20028 by jbj Contributor was closed Sep 29, 2025 Draft updated Sep 29, 2025
3
Java: Accept new test results after changes in Autobuild Java
#20433 by IdrissRio Contributor was closed Sep 22, 2025 Draft updated Sep 22, 2025
Java: Make virtual dispatch global while keeping ssa local. Java
#20271 by alexet Contributor was closed Sep 16, 2025 Draft updated Sep 16, 2025
Java: remove isImplict() Java
#20379 by IdrissRio Contributor was closed Sep 8, 2025 Draft updated Sep 8, 2025
Ql4Ql fixes. Actions Analysis of GitHub Actions C# C++ DataFlow Library Go Java JS Python QL-for-QL Ruby Rust Pull requests that update Rust code Swift
#20314 by michaelnebel Contributor was closed Sep 2, 2025 Draft updated Sep 2, 2025
1
Shared/basicblock signature3 C# C++ DataFlow Library Java JS Python Ruby Rust Pull requests that update Rust code Swift
#20318 by aschackmull Contributor was closed Sep 1, 2025 Draft updated Sep 1, 2025
3
Bump esapi from 2.2.3.1 to 2.3.0.0 in /java/ql/test/utils/flowtestcasegenerator dependencies Pull requests that update a dependency file Java
#11443 by dependabot Bot was closed Aug 28, 2025 Loading… updated Aug 28, 2025
1
Java: use java 17 in no-wrapper tests Java
#20194 by redsun82 Contributor was merged Aug 8, 2025 Loading… updated Aug 8, 2025
1
Java: Accept new test result after extractor upgrade Java
#20057 by IdrissRio Contributor was closed Jul 24, 2025 Draft updated Jul 24, 2025
ProTip! Adding no:label will show everything without a label.