Pull requests: github/codeql
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
C++: Support attribute arguments that are expressions
C++
depends on internal PR
This PR should only be merged in sync with an internal Semmle PR
no-change-note-required
This PR does not need a change note
C++: Global variable flow without explicit SSA definitions
C++
no-change-note-required
This PR does not need a change note
Golang - Server Side Template Injection
documentation
Go
#15193
opened Dec 22, 2023 by
aydinnyunus
•
Draft
Java: Update MaD Declarations after Triage
documentation
Java
#15188
opened Dec 21, 2023 by
kaeluka
Loading…
Python: Add support for more URL redirect sanitisers.
documentation
Python
#15187
opened Dec 21, 2023 by
max-schaefer
Loading…
GO - Add sink for libxml2 in go/xml/xpath-injection via XPath.qll
documentation
Go
#15181
opened Dec 20, 2023 by
felickz
Loading…
C#/Java: Only generate models if there doesn't exist manual summary or neutral summary model.
C#
Java
#15179
opened Dec 20, 2023 by
michaelnebel
•
Draft
Python: Mention more sanitisation options in py/url-redirection qhelp.
documentation
Python
#15176
opened Dec 20, 2023 by
max-schaefer
Loading…
C#: Improve arg-param mapping logic to better handle arguments passed to
params parameters
C#
documentation
#15175
opened Dec 20, 2023 by
tamasvajk
Loading…
C#: .NET 8 Runtime models.
C#
no-change-note-required
This PR does not need a change note
#15174
opened Dec 20, 2023 by
michaelnebel
Loading…
Javascript: Regex Global Flag in Test Function
documentation
JS
#15163
opened Dec 19, 2023 by
aydinnyunus
•
Draft
Go: Stratify This PR does not need a change note
CFG::succ to avoid recursion
Go
no-change-note-required
#15162
opened Dec 19, 2023 by
owen-mc
Loading…
Data flow: Avoid unnecessary non-linear recursion in This PR does not need a change note
fwdFlowIn
DataFlow Library
no-change-note-required
#15157
opened Dec 19, 2023 by
hvitved
Loading…
Bump golang.org/x/crypto from 0.9.0 to 0.17.0 in /go/ql/test/experimental/CWE-942
dependencies
Pull requests that update a dependency file
documentation
Go
#15151
opened Dec 19, 2023 by
dependabot
bot
Loading…
Bump golang.org/x/crypto from 0.12.0 to 0.17.0 in /go/ql/test/library-tests/semmle/go/frameworks/Iris
dependencies
Pull requests that update a dependency file
documentation
Go
#15150
opened Dec 18, 2023 by
dependabot
bot
Loading…
Bump golang.org/x/crypto from 0.12.0 to 0.17.0 in /go/ql/test/library-tests/semmle/go/frameworks/Afero
dependencies
Pull requests that update a dependency file
documentation
Go
#15149
opened Dec 18, 2023 by
dependabot
bot
Loading…
Bump golang.org/x/crypto from 0.12.0 to 0.17.0 in /go/ql/test/experimental/CWE-321-V2
dependencies
Pull requests that update a dependency file
documentation
Go
#15148
opened Dec 18, 2023 by
dependabot
bot
Loading…
Bump golang.org/x/crypto from 0.12.0 to 0.17.0 in /go/ql/test/experimental/CWE-347
dependencies
Pull requests that update a dependency file
documentation
Go
#15147
opened Dec 18, 2023 by
dependabot
bot
Loading…
Bump golang.org/x/crypto from 0.0.0-20210921155107-089bfa567519 to 0.17.0 in /go/ql/test/library-tests/semmle/go/frameworks/SQL/go-pg
dependencies
Pull requests that update a dependency file
documentation
Go
#15145
opened Dec 18, 2023 by
dependabot
bot
Loading…
Data flow: prune context-sensitivity relations
C#
C++
DataFlow Library
Go
Java
no-change-note-required
This PR does not need a change note
Python
Ruby
Swift
Go: new query for detect DOS vulnerability
documentation
Go
#15130
opened Dec 18, 2023 by
Malayke
Loading…
Previous Next
ProTip!
Find all pull requests that aren't related to any open issues with -linked:issue.