Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / advanced-security/codeql-queries issues and pull requests

#224 - Update config-local.yml

Pull Request - State: closed - Opened by felickz 9 months ago

#223 - Auto-updated submodule references: Bump codeql from `e7384da` to `f4c6cf3`

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies

#222 - Auto-updated submodule references: Bump codeql from `e7384da` to `3d9f9af`

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies

#221 - Auto-updated submodule references: Bump codeql from `e7384da` to `6fbbb82`

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies

#220 - Auto-updated submodule references: Bump codeql from `e7384da` to `391ca5d`

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies

#219 - Auto-updated submodule references: Bump codeql from `e7384da` to `0a8869c`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#218 - Auto-updated submodule references: Bump codeql from `e7384da` to `63a914a`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#217 - Auto-updated submodule references: Bump codeql from `e7384da` to `6636c76`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#216 - Auto-updated submodule references: Bump codeql from `e7384da` to `19c5d1f`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#215 - Auto-updated submodule references: Bump codeql from `e7384da` to `56921a6`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#213 - Auto-updated submodule references: Bump codeql from `e7384da` to `7006d00`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#212 - Auto-updated submodule references: Bump codeql from `e7384da` to `649dc9d`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#211 - Auto-updated submodule references: Bump codeql from `e7384da` to `f05c862`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#210 - Auto-updated submodule references: Bump codeql from `e7384da` to `ab62606`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#209 - Auto-updated submodule references: Bump codeql from `e7384da` to `dc4dda1`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#208 - Auto-updated submodule references: Bump codeql from `e7384da` to `d86293f`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#207 - Auto-updated submodule references: Bump codeql from `e7384da` to `e2ef0dc`

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#206 - Auto-updated submodule references: Bump codeql from `e7384da` to `e301223`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#205 - Update README.md

Pull Request - State: closed - Opened by GeekMasher over 1 year ago

#204 - Auto-updated submodule references: Bump codeql from `e7384da` to `21bea38`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#203 - Auto-updated submodule references: Bump codeql from `e7384da` to `8af7277`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#202 - Auto-updated submodule references: Bump codeql from `998237e` to `e7384da`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#201 - Auto-updated submodule references: Bump codeql from `998237e` to `f02d281`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#200 - Auto-updated submodule references: Bump codeql from `c18de7d` to `998237e`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#199 - Auto-updated submodule references: Bump codeql from `ecee427` to `c18de7d`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#198 - Auto-updated submodule references: Bump codeql from `2e981e3` to `ecee427`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#197 - Add CWE 338 test case

Pull Request - State: open - Opened by securingdev over 1 year ago - 1 comment

#196 - Update contributors file appropriately

Pull Request - State: closed - Opened by securingdev over 1 year ago

#195 - Auto-updated submodule references: Bump codeql from `37a5462` to `2e981e3`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#194 - Securingdev remove class files

Pull Request - State: closed - Opened by securingdev over 1 year ago

#193 - Securingdev java CWE 611 dataflow

Pull Request - State: closed - Opened by securingdev over 1 year ago

#192 - Securingdev java CWE 611 dataflow update

Pull Request - State: closed - Opened by securingdev over 1 year ago

#191 - Securingdev readme update

Pull Request - State: closed - Opened by securingdev over 1 year ago

#190 - Python - Update to new dataflow module

Pull Request - State: closed - Opened by GeekMasher over 1 year ago - 1 comment

#189 - Update releases to add other packs

Pull Request - State: closed - Opened by GeekMasher over 1 year ago

#188 - Update Packs

Pull Request - State: closed - Opened by GeekMasher over 1 year ago - 6 comments

#187 - codeql.yml extended -> experimental

Pull Request - State: closed - Opened by felickz over 1 year ago

#186 - Removed hardcoded version for python and added workspace variable

Pull Request - State: closed - Opened by WritingPanda over 1 year ago - 3 comments
Labels: bug, python

#185 - Update CWE-798 to new dataflow API

Pull Request - State: open - Opened by securingdev over 1 year ago - 2 comments

#184 - Auto-updated submodule references: Bump codeql from `37a5462` to `6d85d0d`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#183 - Update CWE-532 using new dataflow API

Pull Request - State: closed - Opened by securingdev over 1 year ago

#182 - Remove CWE-094 Log4J query

Pull Request - State: closed - Opened by securingdev over 1 year ago

#181 - Update naming convention to follow our standard

Pull Request - State: closed - Opened by securingdev over 1 year ago

#180 - Python - Update Command Injection query

Pull Request - State: closed - Opened by GeekMasher over 1 year ago

#179 - Auto-updated submodule references: Bump codeql from `37a5462` to `9359bea`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#178 - Update CWE-094 to new dataflow library

Pull Request - State: closed - Opened by GeekMasher over 1 year ago

#177 - Securingdev java CWE 326 update dataflow

Pull Request - State: closed - Opened by securingdev over 1 year ago

#176 - Remove tainted path due to product update

Pull Request - State: closed - Opened by securingdev over 1 year ago - 1 comment

#175 - Remove CodeQL query due to product update

Pull Request - State: closed - Opened by securingdev over 1 year ago - 1 comment

#174 - Updatre CWE-798 to new shared dataflow library

Pull Request - State: closed - Opened by securingdev over 1 year ago

#173 - Add updated dataflow for Java CWE-798

Pull Request - State: closed - Opened by securingdev over 1 year ago - 1 comment

#172 - Update CWE-078 and CWE-094 data flows

Pull Request - State: closed - Opened by securingdev over 1 year ago - 1 comment

#171 - Updated to use the new shared dataflow library.

Pull Request - State: closed - Opened by securingdev over 1 year ago - 1 comment

#170 - cs/unsafe-deserialization-untrusted-input - deserialization flow steps

Pull Request - State: open - Opened by felickz over 1 year ago - 1 comment

#169 - Auto-updated submodule references: Bump codeql from `1c64fb1` to `37a5462`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#167 - Auto-updated submodule references: Bump codeql from `0a0e347` to `1c64fb1`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#166 - Auto-updated submodule references: Bump codeql from `ab1f341` to `0a0e347`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#165 - Add Extensions to Packs

Pull Request - State: closed - Opened by GeekMasher over 1 year ago - 3 comments

#164 - Add Extensions to base pack

Pull Request - State: closed - Opened by GeekMasher over 1 year ago - 1 comment

#163 - Auto-updated submodule references: Bump codeql from `ff78ac9` to `ab1f341`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#162 - Python - Audit XSS Query for Flask

Pull Request - State: closed - Opened by GeekMasher over 1 year ago

#161 - feat: add debugging suite to JS

Pull Request - State: closed - Opened by GeekMasher over 1 year ago

#160 - [Go] SQL Injection Audit Query

Pull Request - State: closed - Opened by GeekMasher over 1 year ago
Labels: go

#159 - C#: weak hashing for passwords and sensitive data

Pull Request - State: closed - Opened by aegilops over 1 year ago - 1 comment

#158 - Auto-updated submodule references: Bump codeql from `798f388` to `61a3f86`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies

#157 - CSRF validation missing - enhanced rule forked from main CodeQL queries

Pull Request - State: open - Opened by aegilops over 1 year ago - 1 comment

#156 - Auto-updated submodule references: Bump codeql from `c28af76` to `798f388`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#155 - Auto-updated submodule references: Bump codeql from `c28af76` to `93215ba`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies

#154 - Update modules, READMEs, and other configs

Pull Request - State: closed - Opened by GeekMasher over 1 year ago - 1 comment

#153 - [JS] Code Injection Audit query

Pull Request - State: closed - Opened by GeekMasher over 1 year ago - 1 comment
Labels: javascript

#152 - [JS] Add Weak Hashing Algorithm query

Pull Request - State: closed - Opened by GeekMasher over 1 year ago - 1 comment
Labels: javascript

#151 - C#: Hardcoded 🔑 query for `SymmetricSecurityKey`

Pull Request - State: closed - Opened by aegilops over 1 year ago - 3 comments

#150 - Auto-updated submodule references: Bump codeql from `97b0012` to `5bc844c`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#149 - Auto-updated submodule references: Bump codeql from `9dede31` to `97b0012`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#148 - [GO] - Enhance go/command-injection to only consider in-use sources (net.http handler use case)

Pull Request - State: closed - Opened by felickz over 1 year ago - 1 comment
Labels: go

#147 - [JS] - Enhancement to add jose decodeJWT to js/jwt-missing-verification

Pull Request - State: open - Opened by felickz over 1 year ago - 1 comment
Labels: javascript

#146 - Create codeql-external-api.qls

Pull Request - State: closed - Opened by GeekMasher over 1 year ago - 1 comment

#145 - Auto-updated submodule references: Bump codeql from `05b1bd8` to `9dede31`

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#144 - Update codeql.yml

Pull Request - State: closed - Opened by GeekMasher over 1 year ago

#143 - [CSharp] More AWS Modelling

Pull Request - State: closed - Opened by GeekMasher over 1 year ago - 1 comment
Labels: csharp

#120 - Update Actions

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago - 2 comments

#117 - Unrestricted File Upload query

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago - 1 comment
Labels: java

#106 - running csharp docs updates

Pull Request - State: closed - Opened by felickz almost 2 years ago - 1 comment

#105 - [Bot] Generated Models - pgjdbc/pgjdbc

Pull Request - State: closed - Opened by github-actions[bot] almost 2 years ago - 1 comment

#104 - [Bot] Generated Models - google/guava

Pull Request - State: closed - Opened by github-actions[bot] almost 2 years ago

#103 - [Bot] Generated Models - google/guava

Pull Request - State: closed - Opened by github-actions[bot] almost 2 years ago

#102 - Extensions

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago

#101 - [Csharp] Hardcoded Salt query

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago - 1 comment

#100 - Add csharp weak hashing

Pull Request - State: closed - Opened by ctcampbell almost 2 years ago

#99 - Update Java packs and suites

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago

#98 - Update JS packs and suites

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago

#97 - Update CSharp Pack

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago - 2 comments

#96 - Add release workflows and update pack script

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago

#95 - Insecure iv javascript

Pull Request - State: closed - Opened by aegilops almost 2 years ago - 1 comment

#94 - Update CodeQL Configuration

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago

#93 - Auto-updated submodule references: Bump codeql from `d589b32` to `17b3383`

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 2 comments
Labels: dependencies

#91 - feat(js): Update JS audit queries

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago

#90 - feat(python): Update audit queries for Python

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago

#89 - feat(csharp): CSharp audit queries up lift

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago

#88 - Update Actions to better support PRs

Pull Request - State: closed - Opened by GeekMasher almost 2 years ago