Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / github/codeql-go issues and pull requests

#752 - Bump github.com/antchfx/xmlquery from 1.2.3 to 1.3.1 in /ql/test/query-tests/Security/CWE-643

Pull Request - State: closed - Opened by dependabot[bot] over 3 years ago - 1 comment
Labels: dependencies

#751 - add BeegoInput.RequestBody source to Beego framework

Pull Request - State: closed - Opened by gregxsunday over 3 years ago - 5 comments

#750 - Bump github.com/labstack/echo/v4 from 4.1.17 to 4.9.0 in /ql/test/library-tests/semmle/go/frameworks/Echo

Pull Request - State: closed - Opened by dependabot[bot] over 3 years ago - 1 comment
Labels: dependencies

#748 - Revert #682

Pull Request - State: closed - Opened by adityasharad over 3 years ago

#747 - Remove repo contents after migration

Pull Request - State: closed - Opened by adityasharad over 3 years ago - 2 comments

#746 - Open redirect

Pull Request - State: closed - Opened by imhunterand over 3 years ago

#743 - how can i taint a field from fields set?

Issue - State: closed - Opened by Cosydays over 3 years ago - 39 comments

#740 - Update Lua tracing config.

Pull Request - State: closed - Opened by criemen over 3 years ago - 1 comment

#737 - Post-release preparation for codeql-cli-2.9.2

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#736 - Release preparation for version 2.9.2

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#735 - Add change note announcing generics support

Pull Request - State: closed - Opened by smowton almost 4 years ago

#734 - fix https://github.com/github/codeql/issues/9097

Pull Request - State: closed - Opened by cokeBeer almost 4 years ago - 3 comments

#732 - Post-release preparation for codeql-cli-2.9.1

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#731 - Add missing string replacement sanitizers to log-injection and string-break

Pull Request - State: open - Opened by owen-mc almost 4 years ago - 4 comments

#730 - Run `go mod tidy -e` before building

Pull Request - State: closed - Opened by owen-mc almost 4 years ago - 1 comment

#729 - Improve format string parsing: adjacent verbs

Pull Request - State: open - Opened by owen-mc almost 4 years ago

#727 - Fix Beego references

Pull Request - State: closed - Opened by cklin almost 4 years ago
Labels: no-change-note-required

#726 - Release preparation for version 2.9.1

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#724 - Post-release preparation for codeql-cli-2.9.0

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#723 - Release preparation for version 2.9.0

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#721 - v1.27.0 tag is missing the install-reps.sh script

Issue - State: closed - Opened by aeisenberg almost 4 years ago - 3 comments

#720 - Use `-buildvcs=false` when calling `go build`

Pull Request - State: closed - Opened by owen-mc almost 4 years ago - 1 comment

#719 - Look for callees through function variables

Pull Request - State: closed - Opened by owen-mc almost 4 years ago - 4 comments

#718 - Integer conversion should ignore type assertions

Pull Request - State: closed - Opened by owen-mc almost 4 years ago

#717 - False positive with CWE-190 / CWE-681

Issue - State: closed - Opened by MichaelUrman almost 4 years ago - 3 comments

#716 - Merge `rc/3.5` branch into `main`

Pull Request - State: closed - Opened by edoardopirovano almost 4 years ago - 3 comments

#715 - Pretty-print empty interface without double space

Pull Request - State: closed - Opened by owen-mc almost 4 years ago - 1 comment
Labels: no-change-note-required

#714 - Extend DataFlowCallable to include file scopes

Pull Request - State: closed - Opened by owen-mc almost 4 years ago - 3 comments

#713 - Post-release preparation for codeql-cli-2.8.5

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#712 - Release preparation for version 2.8.5

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#711 - Address incorrectly referenced parameter in QLdoc

Pull Request - State: closed - Opened by rverme almost 4 years ago

#710 - Delete unused file DataFlowImplConsistency

Pull Request - State: closed - Opened by owen-mc almost 4 years ago - 1 comment

#709 - Golang : Add Query To Detect PAM Authorization Bugs

Pull Request - State: closed - Opened by porcupineyhairs almost 4 years ago - 2 comments

#708 - ⚡ Zap survey

Issue - State: closed - Opened by CleanCut almost 4 years ago - 2 comments

#706 - Post-release preparation for codeql-cli-2.8.4

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#705 - Golang : Add query to detect JWT signing vulnerabilities

Pull Request - State: closed - Opened by porcupineyhairs almost 4 years ago - 13 comments

#704 - Release preparation for version 2.8.4

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#702 - Post-release preparation for codeql-cli-2.8.3

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#701 - Release preparation for version 2.8.3

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#700 - Treat path.Clean and filepath.Clean alike re: tainted path sanitization

Pull Request - State: closed - Opened by smowton almost 4 years ago

#699 - Post-release preparation for codeql-cli-2.8.2

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago

#698 - Release preparation for version 2.8.2

Pull Request - State: closed - Opened by codeql-ci almost 4 years ago - 2 comments

#697 - Move new-query change note to src pack

Pull Request - State: closed - Opened by smowton almost 4 years ago

#696 - Go: Switch to dot-separated access paths in summary specs

Pull Request - State: closed - Opened by asgerf almost 4 years ago
Labels: no-change-note-required

#694 - Post-release preparation for codeql-cli-2.8.1

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#693 - Release preparation for version 2.8.1

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#692 - Release preparation for version 2.8.1

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#691 - Release preparation for version 2.8.1

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#690 - Go: sync FlowSummaryImpl.qll

Pull Request - State: closed - Opened by asgerf about 4 years ago - 5 comments
Labels: no-change-note-required

#689 - Main merged into codeql-cli-2.8.0

Pull Request - State: closed - Opened by tamasvajk about 4 years ago

#688 - Bump github.com/gin-gonic/gin from 1.6.2 to 1.7.0 in /ql/test/library-tests/semmle/go/frameworks/Gin

Pull Request - State: closed - Opened by dependabot[bot] about 4 years ago - 1 comment
Labels: dependencies

#687 - Bump gopkg.in/macaron.v1 from 1.3.5 to 1.3.7 in /ql/test/library-tests/semmle/go/frameworks/Macaron

Pull Request - State: closed - Opened by dependabot[bot] about 4 years ago - 1 comment
Labels: dependencies

#686 - Extract generics

Pull Request - State: closed - Opened by owen-mc about 4 years ago - 10 comments

#685 - CI: Run on Windows 2019

Pull Request - State: closed - Opened by smowton about 4 years ago

#684 - Post-release preparation for codeql-cli-2.8.0

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#683 - Match gopkg.in import of squirrel for SQLi query

Pull Request - State: closed - Opened by lyoung-confluent about 4 years ago - 7 comments

#681 - Add query "Wrapped error always nil"

Pull Request - State: closed - Opened by owen-mc about 4 years ago - 3 comments
Labels: ready-for-doc-review

#680 - Add an example query for inexhaustive switches

Pull Request - State: closed - Opened by rneatherway about 4 years ago

#679 - Add ErrorExpr to dbscheme

Pull Request - State: closed - Opened by owen-mc about 4 years ago - 1 comment

#677 - Release preparation for version 2.8.0

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#676 - Merge `rc/3.4` into `main`

Pull Request - State: closed - Opened by edoardopirovano about 4 years ago

#675 - Add new groups for examples packs

Pull Request - State: closed - Opened by aeisenberg about 4 years ago

#674 - use more set literals

Pull Request - State: closed - Opened by erik-krogh about 4 years ago
Labels: no-change-note-required

#673 - Refactor `ReturnValue[n]` in data flow libraries

Pull Request - State: closed - Opened by owen-mc about 4 years ago - 1 comment

#672 - Post-release preparation for codeql-cli-2.7.6

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#671 - Correct module name in file comment

Pull Request - State: closed - Opened by owen-mc about 4 years ago

#670 - Delete accidentally committed binary file

Pull Request - State: closed - Opened by smowton about 4 years ago - 1 comment

#669 - Release preparation for version 2.7.6

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#668 - Don't use codeql pack install --verify

Pull Request - State: closed - Opened by smowton about 4 years ago

#667 - Release preparation for version 2.8.0

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#665 - Update `Function.getACall()`

Pull Request - State: closed - Opened by owen-mc about 4 years ago - 2 comments
Labels: no-change-note-required

#664 - Add change note for change to `Function.getACall`

Pull Request - State: closed - Opened by owen-mc about 4 years ago

#663 - Revert change to Function.getACall() (hotfix)

Pull Request - State: closed - Opened by owen-mc about 4 years ago

#661 - Changenotes: Add changenotes for upgrades refactoring

Pull Request - State: closed - Opened by aeisenberg about 4 years ago

#660 - Revert `Function.getACall` behaviour

Pull Request - State: closed - Opened by owen-mc about 4 years ago - 2 comments

#659 - Path transformer: use fully resolved path

Pull Request - State: closed - Opened by smowton about 4 years ago - 2 comments

#658 - Note that the %q format directive escapes newlines, and therefore prevents log injection

Pull Request - State: closed - Opened by smowton about 4 years ago - 1 comment

#657 - Post-release preparation for codeql-cli-2.7.5

Pull Request - State: closed - Opened by codeql-ci about 4 years ago - 1 comment

#651 - various automatic patches applied to codeql-go

Pull Request - State: closed - Opened by erik-krogh about 4 years ago

#650 - CWE-117 false positive: %q formatting directive

Issue - State: closed - Opened by rhcarvalho about 4 years ago - 3 comments

#649 - Fix non-crypto interfaces check in insecure-randomness

Pull Request - State: closed - Opened by owen-mc about 4 years ago - 2 comments

#647 - Declassify fmt.Fprintf as a log sink

Pull Request - State: closed - Opened by smowton about 4 years ago - 1 comment

#646 - Source locations sometimes don't use `realpath`'d filenames

Issue - State: closed - Opened by smowton about 4 years ago - 2 comments

#635 - CWE-117 False positive

Issue - State: closed - Opened by theAntiYeti about 4 years ago - 12 comments

#634 - Release preparation for version 2.7.5

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#631 - Release preparation for version 2.7.5

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#630 - Release preparation for version 2.7.4

Pull Request - State: closed - Opened by codeql-ci about 4 years ago

#628 - Push upgrades pack into lib pack

Pull Request - State: closed - Opened by aeisenberg about 4 years ago

#607 - Go: add pgx sqli query

Pull Request - State: open - Opened by japroc about 4 years ago

#568 - Add getPrimaryQlClasses()

Pull Request - State: closed - Opened by igfoo over 4 years ago

#529 - CWE-1004: Sensitive cookie without HttpOnly

Pull Request - State: closed - Opened by ghost almost 5 years ago - 9 comments