The Wayback Machine - https://web.archive.org/web/20200602042123/https://github.com/github/codeql/pulls
Skip to content
github / codeql
Sign up
Sign in Sign up

/ codeql

New pull request New
100 Open 3,137 Closed
100 Open 3,137 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀
Add Log4J 2 and a new search string secret
#3600 opened Jun 2, 2020 by luchua-bc Review required
JS: Recognize calls to .item and .namedItem
JS
#3599 opened Jun 1, 2020 by asgerf Review required
JS: Add StringOps::RegExpTest
Awaiting evaluation JS
#3598 opened Jun 1, 2020 by asgerf Review required
Add more code-scanning suites
#3596 opened Jun 1, 2020 by robertbrignull Review required
3
Java: Add check for J2EE server directory listing
#3595 opened May 30, 2020 by luchua-bc Review required
C++: Add QLDoc for AST classes up to Include.qll
C++
#3593 opened May 29, 2020 by rdmarsh2 Review required
1
Python: Fix some problems in TaintKind useage
Python
#3591 opened May 29, 2020 by RasmusWL Review required
6
C++: IR return indirections for `this`
C++
#3587 opened May 28, 2020 by rdmarsh2 Review required
[Java] CWE-295 - Incorrect Hostname Verification
Java
#3581 opened May 27, 2020 by intrigus-lgtm Review required
6
Python: insecure-protocol outdated
Python false-positive
#3580 opened May 27, 2020 by yoff Draft
3
Improves RedundantNullCheckSimple
C++
#3576 opened May 27, 2020 by catenacyber Review required 1 of 1
@jbj
5
Python: Add QLDoc for FunctionValue.getQualifiedName
Python
#3575 opened May 27, 2020 by RasmusWL Review required
introduce type unions in the handbook
#3572 opened May 26, 2020 by ginsbach Approved
16
Python: Handle fabric.api.execute in command injection
Python
#3563 opened May 26, 2020 by RasmusWL Review required
Java: CWE-273 Unsafe certificate trust
Java
#3550 opened May 24, 2020 by luchua-bc Review required
7
add support for java.io.StringWriter
#3547 opened May 22, 2020 by pwntester Approved
1
Python: How to make TaintKinds for dict subclasses
Python
#3545 opened May 22, 2020 by RasmusWL Draft
1
Java: add websocket reads as remote flow source.
Java
#3543 opened May 21, 2020 by porcupineyhairs Review required
Java : add MongoDB injection sinks
Java
#3542 opened May 21, 2020 by porcupineyhairs Review required
Java: CWE-523 Insecure HSTS configuration
Java
#3534 opened May 20, 2020 by luchua-bc Review required
Python : Add Xpath injection query
Python
#3522 opened May 19, 2020 by porcupineyhairs Review required
@RasmusWL
13
Python : Add support for detecting XSLT Injection
Python
#3521 opened May 19, 2020 by porcupineyhairs Review required
@RasmusWL
3
C++: Use TaintTracking::Configuration in TaintedAllocationSize
C++ depends on internal PR
#3519 opened May 19, 2020 by rdmarsh2 Review required
12
C#: Remove more deprecated classes and predicates
C#
#3514 opened May 19, 2020 by hvitved Review required
@calumgrant
11
C#: Recognize more calls to `IHtmlHelper.Raw`
C#
#3509 opened May 19, 2020 by hvitved Changes requested
@calumgrant
4
ProTip! Mix and match filters to narrow down what you’re looking for.
You can’t perform that action at this time.
Morty Proxy This is a proxified and sanitized view of the page, visit original site.