Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / github/codeql issues and pull requests

Labelled with: JS

#20530 - Attribute `js/cors-permissive-configuration` to original author

Pull Request - State: closed - Opened by coadaflorin 4 months ago
Labels: JS, documentation

#20452 - Rust, shared: Support `Parameter` in source MaD models

Pull Request - State: closed - Opened by paldepind 5 months ago - 2 comments
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library

#20450 - JS: Improve graphql flow

Pull Request - State: closed - Opened by Napalys 5 months ago
Labels: JS, documentation

#20447 - Release preparation for version 2.23.1

Pull Request - State: closed - Opened by codeql-ci 5 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#20435 - JS: Promisification library modeling and enhance flow

Pull Request - State: closed - Opened by Napalys 5 months ago
Labels: JS, documentation

#20434 - javascript: Fix spelling error in documentation

Pull Request - State: closed - Opened by igfoo 5 months ago - 1 comment
Labels: JS, documentation

#20395 - JS: Add most `medium` precision queries to the `code-quality-extended` suite.

Pull Request - State: closed - Opened by michaelnebel 5 months ago - 3 comments
Labels: JS, no-change-note-required

#20390 - DataFlow: Permit local flow between post-update nodes

Pull Request - State: closed - Opened by asgerf 5 months ago
Labels: JS, C++, no-change-note-required, DataFlow Library

#20364 - JS: Refactor default import interop

Pull Request - State: closed - Opened by asgerf 5 months ago
Labels: JS, no-change-note-required

#20320 - Specify default queries in `codeql-extractor.yml`

Pull Request - State: closed - Opened by henrymercer 5 months ago - 4 comments
Labels: C#, JS, Python, Go, Ruby, Rust, Swift, Actions

#20317 - JS: Avoid overriding Expr predicates in xUnit.qll

Pull Request - State: closed - Opened by asgerf 5 months ago
Labels: JS, no-change-note-required

#20307 - JS: Add overlay support to extractor

Pull Request - State: closed - Opened by asgerf 5 months ago - 2 comments
Labels: JS, no-change-note-required

#20297 - JS: Change pruning to not rely on Import

Pull Request - State: closed - Opened by asgerf 5 months ago
Labels: JS, no-change-note-required

#20241 - Post-release preparation for codeql-cli-2.22.4

Pull Request - State: closed - Opened by codeql-ci 6 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#20172 - Shared: Use `final` aliases in `ConcentsShared.qll`

Pull Request - State: closed - Opened by hvitved 6 months ago
Labels: JS, no-change-note-required

#20151 - JS: Enhance command injection detection for CLI argument parsing libraries

Pull Request - State: closed - Opened by Napalys 6 months ago
Labels: JS, documentation

#20146 - JS: Move cors-misconfiguration query from experimental to Security

Pull Request - State: closed - Opened by Napalys 6 months ago - 2 comments
Labels: JS, documentation

#20139 - JS: Move cors-misconfiguration query from experimental to Security

Pull Request - State: closed - Opened by Napalys 6 months ago - 1 comment
Labels: JS, documentation

#20110 - Revert "Release preparation for version 2.22.2"

Pull Request - State: closed - Opened by nickrolfe 7 months ago - 1 comment
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#20105 - Release preparation for version 2.22.2

Pull Request - State: closed - Opened by codeql-ci 7 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#20078 - JS: Diff-informed queries: phase 3 (non-trivial locations)

Pull Request - State: closed - Opened by d10c 7 months ago - 2 comments
Labels: JS, no-change-note-required

#20048 - JS: Exclude patched libraries from `xml-bomb` sink

Pull Request - State: closed - Opened by Napalys 7 months ago
Labels: JS, documentation, Python

#19994 - Post-release preparation for codeql-cli-2.22.2

Pull Request - State: closed - Opened by codeql-ci 7 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19931 - Ql4ql: Quality query tagging.

Pull Request - State: closed - Opened by michaelnebel 7 months ago - 3 comments
Labels: JS, documentation, Java, no-change-note-required, QL-for-QL

#19891 - Go/Ruby/Python: Freeze quality queries in `security-and-quality`.

Pull Request - State: closed - Opened by michaelnebel 7 months ago
Labels: C#, JS, Java, Python, no-change-note-required, Go, Ruby

#19864 - Post-release preparation for codeql-cli-2.22.1

Pull Request - State: closed - Opened by codeql-ci 8 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19858 - JS: moved `execa` out of experimental

Pull Request - State: closed - Opened by Napalys 8 months ago
Labels: JS, documentation

#19854 - JS: Explicitly Mark `Sinon` Package as Non RegExp

Pull Request - State: closed - Opened by Napalys 8 months ago
Labels: JS, documentation

#19849 - JS: Remove legacy actions queries

Pull Request - State: closed - Opened by asgerf 8 months ago - 1 comment
Labels: JS, documentation

#19822 - JS: Update Fastify tld

Pull Request - State: closed - Opened by Fdawgs 8 months ago
Labels: JS, no-change-note-required

#19771 - JS: Improve XSS detection for `serialize-javascript` with tainted objects

Pull Request - State: closed - Opened by Napalys 8 months ago
Labels: JS, documentation

#19769 - Improve NestJS sources and dependency injection

Pull Request - State: closed - Opened by Vasco-jofra 8 months ago
Labels: JS, no-change-note-required

#19704 - Post-release preparation for codeql-cli-2.22.0

Pull Request - State: closed - Opened by codeql-ci 8 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19640 - JS: Disable type extraction

Pull Request - State: closed - Opened by asgerf 8 months ago
Labels: JS, documentation

#19634 - JS: Add URL constructor taint tracking for request forgery

Pull Request - State: closed - Opened by Napalys 8 months ago
Labels: JS, documentation

#19602 - Post-release preparation for codeql-cli-2.21.4

Pull Request - State: closed - Opened by codeql-ci 8 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19578 - JS: Explicitly Filter Quality Queries for Inclusion in `Security-and-Quality`

Pull Request - State: closed - Opened by Napalys 9 months ago
Labels: JS

#19544 - JS: new `Quality` query - Unhandled errors in `.pipe()` chain

Pull Request - State: open - Opened by Napalys 9 months ago
Labels: JS

#19516 - JS: More efficient nested package naming

Pull Request - State: open - Opened by asgerf 9 months ago
Labels: JS, no-change-note-required

#19516 - JS: More efficient nested package naming

Pull Request - State: closed - Opened by asgerf 9 months ago
Labels: JS, no-change-note-required

#19514 - JS: Refactor `Nest` test suite with inline expectations

Pull Request - State: open - Opened by Napalys 9 months ago
Labels: JS, no-change-note-required

#19507 - Exclude some queries from query suites by lowering their precision.

Pull Request - State: open - Opened by michaelnebel 9 months ago - 3 comments
Labels: C#, JS, documentation, Java, Python, Go, Ruby, Swift

#19504 - All: delete outdated deprecations

Pull Request - State: closed - Opened by Napalys 9 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library

#19504 - All: delete outdated deprecations

Pull Request - State: closed - Opened by Napalys 9 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library

#19489 - Post-release preparation for codeql-cli-2.21.3

Pull Request - State: closed - Opened by codeql-ci 9 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19488 - Release preparation for version 2.21.3

Pull Request - State: closed - Opened by codeql-ci 9 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19488 - Release preparation for version 2.21.3

Pull Request - State: closed - Opened by codeql-ci 9 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19487 - Fix typo from `tommorow` to `tomorrow`

Pull Request - State: closed - Opened by BaseMax 9 months ago - 1 comment
Labels: JS, Java

#19487 - Fix typo from `tommorow` to `tomorrow`

Pull Request - State: closed - Opened by BaseMax 9 months ago - 1 comment
Labels: JS, Java

#19486 - Fix typo from `commited` to `committed`

Pull Request - State: closed - Opened by BaseMax 9 months ago - 1 comment
Labels: JS, Java

#19486 - Fix typo from `commited` to `committed`

Pull Request - State: closed - Opened by BaseMax 9 months ago - 1 comment
Labels: JS, Java

#19485 - Fix typo from `occured` to `occurred`

Pull Request - State: open - Opened by BaseMax 9 months ago - 1 comment
Labels: JS, Java

#19468 - A few missed component governance changes

Pull Request - State: closed - Opened by denislevin 9 months ago - 1 comment
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift

#19468 - A few missed component governance changes

Pull Request - State: closed - Opened by denislevin 9 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift

#19445 - JS: Generate flow summaries from summaryModels; only generate steps as a fallback

Pull Request - State: closed - Opened by asgerf 9 months ago
Labels: JS, no-change-note-required, DataFlow Library

#19439 - JS: Modeling of `fastify`

Pull Request - State: closed - Opened by Napalys 9 months ago
Labels: JS, documentation

#19439 - JS: Modeling of `fastify`

Pull Request - State: closed - Opened by Napalys 9 months ago
Labels: JS, documentation

#19429 - Fix cwe tags to include leading zero

Pull Request - State: closed - Opened by owen-mc 9 months ago - 2 comments
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby

#19429 - Fix cwe tags to include leading zero

Pull Request - State: closed - Opened by owen-mc 9 months ago - 2 comments
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby

#19422 - JS: Modeling of `ShellJS` functions

Pull Request - State: closed - Opened by Napalys 9 months ago
Labels: JS, documentation

#19422 - JS: Modeling of `ShellJS` functions

Pull Request - State: closed - Opened by Napalys 9 months ago
Labels: JS, documentation

#19413 - Add code quality suite selector and use that in the code quality suites

Pull Request - State: closed - Opened by tamasvajk 9 months ago
Labels: C#, JS, C++, Java, Python, no-change-note-required, Go, Ruby, Rust, Swift, Actions

#19413 - Add code quality suite selector and use that in the code quality suites

Pull Request - State: closed - Opened by tamasvajk 9 months ago
Labels: C#, JS, C++, Java, Python, no-change-note-required, Go, Ruby, Rust, Swift, Actions

#19412 - JS: Better type-tracking through Promise.all()

Pull Request - State: closed - Opened by asgerf 9 months ago
Labels: JS, documentation

#19412 - JS: Better type-tracking through Promise.all()

Pull Request - State: closed - Opened by asgerf 9 months ago
Labels: JS, documentation

#19401 - Post-release preparation for codeql-cli-2.21.2

Pull Request - State: closed - Opened by codeql-ci 9 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19401 - Post-release preparation for codeql-cli-2.21.2

Pull Request - State: closed - Opened by codeql-ci 9 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19395 - Release preparation for version 2.21.2

Pull Request - State: closed - Opened by codeql-ci 9 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19393 - JS: Tolerate trailing commas in JSON objects

Pull Request - State: closed - Opened by asgerf 9 months ago
Labels: JS, no-change-note-required

#19393 - JS: Tolerate trailing commas in JSON objects

Pull Request - State: closed - Opened by asgerf 9 months ago
Labels: JS, no-change-note-required

#19391 - JS: Overhaul import resolution

Pull Request - State: closed - Opened by asgerf 9 months ago
Labels: JS, no-change-note-required

#19391 - JS: Overhaul import resolution

Pull Request - State: closed - Opened by asgerf 9 months ago
Labels: JS, no-change-note-required

#19377 - JS: update diff-informed expected files

Pull Request - State: closed - Opened by cklin 10 months ago
Labels: JS

#19377 - JS: update diff-informed expected files

Pull Request - State: closed - Opened by cklin 10 months ago
Labels: JS

#19364 - JS: Improved modeling of `aws-sdk`

Pull Request - State: closed - Opened by Napalys 10 months ago
Labels: JS, no-change-note-required

#19359 - Change definition of `getFactoryNodeInternal`

Pull Request - State: open - Opened by jeongsoolee09 10 months ago
Labels: JS, no-change-note-required

#19356 - JS: Merge `ES6Class` to `FunctionStyleClass`

Pull Request - State: closed - Opened by Napalys 10 months ago
Labels: JS, documentation

#19356 - JS: Merge `ES6Class` to `FunctionStyleClass`

Pull Request - State: closed - Opened by Napalys 10 months ago
Labels: JS, documentation

#19355 - Add query suite integration tests for swift, actions, csharp, go, javascript, ruby, rust

Pull Request - State: closed - Opened by tamasvajk 10 months ago - 1 comment
Labels: C#, JS, depends on internal PR, Java, Go, Ruby, Rust, Swift, Actions

#19355 - Add query suite integration tests for swift, actions, csharp, go, javascript, ruby, rust

Pull Request - State: closed - Opened by tamasvajk 10 months ago - 1 comment
Labels: C#, JS, depends on internal PR, Java, Go, Ruby, Rust, Swift, Actions

#19354 - Shared: Match line information on Alert and Sink locations.

Pull Request - State: closed - Opened by michaelnebel 10 months ago
Labels: JS, no-change-note-required

#19354 - Shared: Match line information on Alert and Sink locations.

Pull Request - State: closed - Opened by michaelnebel 10 months ago
Labels: JS, no-change-note-required

#19343 - PSScriptanalyzer rules port

Pull Request - State: closed - Opened by chanel-y 10 months ago
Labels: C#, JS, C++, documentation, Java, Python, Ruby, Rust, Swift

#19343 - PSScriptanalyzer rules port

Pull Request - State: closed - Opened by chanel-y 10 months ago
Labels: C#, JS, C++, documentation, Java, Python, Ruby, Rust, Swift

#19342 - Sync Upstream Tags

Pull Request - State: closed - Opened by dilanbhalla 10 months ago
Labels: C#, JS, C++, documentation, Java, Python, Ruby, Rust, Swift

#19337 - Handling of axios in functions and making axios create function recur…

Pull Request - State: open - Opened by rotem-cider 10 months ago - 1 comment
Labels: JS, documentation

#19317 - Post-release preparation for codeql-cli-2.21.1

Pull Request - State: closed - Opened by codeql-ci 10 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19316 - JS: Port `firebase` to data as models

Pull Request - State: open - Opened by Napalys 10 months ago
Labels: JS

#19301 - Release preparation for version 2.21.1

Pull Request - State: closed - Opened by codeql-ci 10 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19301 - Release preparation for version 2.21.1

Pull Request - State: closed - Opened by codeql-ci 10 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19300 - JS: Added support for `fastify.addHook`

Pull Request - State: closed - Opened by Napalys 10 months ago - 1 comment
Labels: JS, documentation

#19300 - JS: Added support for `fastify.addHook`

Pull Request - State: closed - Opened by Napalys 10 months ago - 1 comment
Labels: JS, documentation

#19287 - JS: Add class harness to recover localFieldStep edges

Pull Request - State: open - Opened by asgerf 10 months ago
Labels: JS

#19285 - [DO NOT MERGE] Prior: Test PR

Pull Request - State: open - Opened by navntoft 10 months ago
Labels: JS, no-change-note-required

#19283 - JS: Fix missing flow into rest pattern lvalue

Pull Request - State: closed - Opened by asgerf 10 months ago
Labels: JS, no-change-note-required

#19283 - JS: Fix missing flow into rest pattern lvalue

Pull Request - State: closed - Opened by asgerf 10 months ago
Labels: JS, no-change-note-required

#19267 - JS: Tolerate trailing commas in JSON arrays

Pull Request - State: closed - Opened by asgerf 10 months ago
Labels: JS, documentation

#19267 - JS: Tolerate trailing commas in JSON arrays

Pull Request - State: closed - Opened by asgerf 10 months ago
Labels: JS, documentation

#19263 - JS: Add support for `make-dir` package

Pull Request - State: closed - Opened by Napalys 10 months ago
Labels: JS, documentation

#19263 - JS: Add support for `make-dir` package

Pull Request - State: closed - Opened by Napalys 10 months ago
Labels: JS, documentation