Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / github/codeql issues and pull requests

Labelled with: documentation

#20604 - Rust: Update System Requirements page with more detail about Rust.

Pull Request - State: closed - Opened by geoffw0 4 months ago - 1 comment
Labels: documentation, ready-for-doc-review

#20597 - C++: Add a changenote for C/C++ BMN GA

Pull Request - State: closed - Opened by igfoo 4 months ago
Labels: C++, documentation

#20585 - Bump the go_modules group across 2 directories with 3 updates

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 4 comments
Labels: documentation, dependencies, Go

#20574 - Rust: Docs updates

Pull Request - State: closed - Opened by geoffw0 4 months ago - 1 comment
Labels: documentation, no-change-note-required, ready-for-doc-review

#20561 - Rust: Add Basic query for Rust code doc

Pull Request - State: closed - Opened by geoffw0 4 months ago - 2 comments
Labels: documentation, no-change-note-required, ready-for-doc-review

#20556 - Go: Add tests for SafeUrlFlow, and fix a latent bug

Pull Request - State: closed - Opened by owen-mc 4 months ago - 2 comments
Labels: documentation, Go

#20554 - Rust: Consistency fix for reusables/extractors.rst.

Pull Request - State: closed - Opened by geoffw0 4 months ago
Labels: documentation, no-change-note-required, ready-for-doc-review

#20531 - Fix formatting in codeql-cli-2.23.1.rst

Pull Request - State: closed - Opened by coadaflorin 4 months ago
Labels: documentation

#20530 - Attribute `js/cors-permissive-configuration` to original author

Pull Request - State: closed - Opened by coadaflorin 4 months ago
Labels: JS, documentation

#20517 - Go: Add change note for `git_source` support

Pull Request - State: closed - Opened by mbg 4 months ago - 1 comment
Labels: documentation, Go

#20515 - Rust: Update Supported languages and frameworks

Pull Request - State: open - Opened by geoffw0 4 months ago
Labels: documentation, no-change-note-required, Rust

#20490 - documentation: add some missing mentions of `additional` and `extensible`

Pull Request - State: closed - Opened by ginsbach 5 months ago
Labels: documentation

#20452 - Rust, shared: Support `Parameter` in source MaD models

Pull Request - State: closed - Opened by paldepind 5 months ago - 2 comments
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library

#20450 - JS: Improve graphql flow

Pull Request - State: closed - Opened by Napalys 5 months ago
Labels: JS, documentation

#20449 - C#: Bugfix for nullguards for complex patterns.

Pull Request - State: closed - Opened by aschackmull 5 months ago - 1 comment
Labels: C#, documentation

#20447 - Release preparation for version 2.23.1

Pull Request - State: closed - Opened by codeql-ci 5 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#20437 - C++: Tweak a release note

Pull Request - State: closed - Opened by igfoo 5 months ago
Labels: C++, documentation

#20435 - JS: Promisification library modeling and enhance flow

Pull Request - State: closed - Opened by Napalys 5 months ago
Labels: JS, documentation

#20434 - javascript: Fix spelling error in documentation

Pull Request - State: closed - Opened by igfoo 5 months ago - 1 comment
Labels: JS, documentation

#20432 - Rust: Implement new query for non-HTTPS URLs (CWE-319)

Pull Request - State: closed - Opened by Copilot 5 months ago - 3 comments
Labels: documentation, ready-for-doc-review, Rust

#20404 - Rust: add `rust-analyzer` update instructions

Pull Request - State: closed - Opened by geoffw0 5 months ago - 3 comments
Labels: documentation, no-change-note-required, Rust

#20377 - Java: Consolidate Assertions.qll and Preconditions.qll.

Pull Request - State: closed - Opened by aschackmull 5 months ago - 1 comment
Labels: documentation, Java

#20345 - Java: Add MaDs for `java.crypto.KDF`

Pull Request - State: closed - Opened by IdrissRio 5 months ago - 1 comment
Labels: documentation, Java

#20325 - C++: Fix some Ql4Ql violations.

Pull Request - State: closed - Opened by michaelnebel 5 months ago - 2 comments
Labels: C++, documentation, no-change-note-required

#20312 - Rust: Tune rust/diagnostic/database-quality

Pull Request - State: closed - Opened by geoffw0 5 months ago
Labels: documentation, Rust

#20305 - C#: Fix context-sensitive dispatch when using `base` qualifier

Pull Request - State: closed - Opened by hvitved 5 months ago
Labels: C#, documentation

#20295 - Rust: Remove extractor path resolution.

Pull Request - State: closed - Opened by geoffw0 5 months ago - 3 comments
Labels: documentation, Rust

#20290 - C#: Add manual models for more some XML related classes.

Pull Request - State: closed - Opened by michaelnebel 5 months ago - 3 comments
Labels: C#, documentation

#20278 - C#: Update MaD models to taint entire byte- and char collection.

Pull Request - State: closed - Opened by michaelnebel 5 months ago
Labels: C#, documentation

#20276 - Python: Add support for Psycopg2 database connection pools

Pull Request - State: closed - Opened by tausbn 5 months ago - 2 comments
Labels: documentation, Python

#20273 - Rust: Include `getAttributeMacroExpansion` in `isInMacroExpansion`

Pull Request - State: closed - Opened by hvitved 5 months ago
Labels: documentation, Rust

#20268 - Add changelog entry for CodeQL CLI version 2.22.4

Pull Request - State: closed - Opened by coadaflorin 6 months ago - 3 comments
Labels: documentation

#20263 - Python: Modernize the Unreachable Except Block query

Pull Request - State: closed - Opened by joefarebrother 6 months ago - 2 comments
Labels: documentation, Python, no-change-note-required

#20241 - Post-release preparation for codeql-cli-2.22.4

Pull Request - State: closed - Opened by codeql-ci 6 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#20232 - C++: SloppyGlobal: Don't alert on template instantiations, only the template

Pull Request - State: closed - Opened by igfoo 6 months ago
Labels: C++, documentation

#20218 - C++: Improvements to `IRGuard`s

Pull Request - State: closed - Opened by MathiasVP 6 months ago
Labels: C++, documentation

#20217 - Python: Modernize the Signature Mismatch query

Pull Request - State: closed - Opened by joefarebrother 6 months ago - 3 comments
Labels: documentation, Python

#20205 - Java: port quality query `java/mocking-all-non-private-methods-means-unit-test-is-too-big`

Pull Request - State: closed - Opened by Napalys 6 months ago - 2 comments
Labels: documentation, Java, no-change-note-required

#20204 - Actions: clarify doc for untrusted checkout

Pull Request - State: closed - Opened by p- 6 months ago - 1 comment
Labels: documentation, Actions

#20190 - Java: Enhance `java/jvm-exit` query and add to quality

Pull Request - State: closed - Opened by Napalys 6 months ago - 1 comment
Labels: documentation, Java, no-change-note-required

#20178 - Java: Added new query `java/visible-for-testing-abuse`

Pull Request - State: closed - Opened by Napalys 6 months ago - 1 comment
Labels: documentation, Java, no-change-note-required

#20162 - Python: Add jump steps for global variable nested field access

Pull Request - State: closed - Opened by Napalys 6 months ago
Labels: documentation, Python

#20156 - C++: Value numbering for casts that only modify specifiers

Pull Request - State: closed - Opened by MathiasVP 6 months ago
Labels: C++, documentation

#20151 - JS: Enhance command injection detection for CLI argument parsing libraries

Pull Request - State: closed - Opened by Napalys 6 months ago
Labels: JS, documentation

#20149 - C++: Expose SSA definitions from dataflow

Pull Request - State: closed - Opened by MathiasVP 6 months ago - 7 comments
Labels: C++, documentation

#20146 - JS: Move cors-misconfiguration query from experimental to Security

Pull Request - State: closed - Opened by Napalys 6 months ago - 2 comments
Labels: JS, documentation

#20139 - JS: Move cors-misconfiguration query from experimental to Security

Pull Request - State: closed - Opened by Napalys 6 months ago - 1 comment
Labels: JS, documentation

#20129 - C++: Static variables are initialized to zero or null by compiler

Pull Request - State: closed - Opened by codeqlhelper 6 months ago
Labels: C++, documentation

#20121 - Guards: Improve support for wrapped guards

Pull Request - State: closed - Opened by aschackmull 7 months ago - 1 comment
Labels: documentation, Java

#20116 - Java: Add support to Compact Source Files

Pull Request - State: closed - Opened by IdrissRio 7 months ago
Labels: depends on internal PR, documentation, Java

#20110 - Revert "Release preparation for version 2.22.2"

Pull Request - State: closed - Opened by nickrolfe 7 months ago - 1 comment
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#20105 - Release preparation for version 2.22.2

Pull Request - State: closed - Opened by codeql-ci 7 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#20097 - Java: Add support to `ModuleImportDeclaration`

Pull Request - State: closed - Opened by IdrissRio 7 months ago
Labels: depends on internal PR, documentation, Java

#20067 - Java: allow the definition of `java/unsafe-deserialization` sinks using data extensions

Pull Request - State: closed - Opened by owen-mc 7 months ago - 2 comments
Labels: documentation, Java

#20066 - C++: Don't wrap calls through function pointers in `FunctionWithWrappers`

Pull Request - State: closed - Opened by MathiasVP 7 months ago
Labels: C++, documentation

#20064 - Update Go Path Injection Sanitizer and Sink

Pull Request - State: closed - Opened by Kwstubbs 7 months ago - 4 comments
Labels: documentation, Go

#20048 - JS: Exclude patched libraries from `xml-bomb` sink

Pull Request - State: closed - Opened by Napalys 7 months ago
Labels: JS, documentation, Python

#20041 - Rust: Type inference for tuples

Pull Request - State: closed - Opened by paldepind 7 months ago - 4 comments
Labels: documentation, Rust

#20025 - Java: add extra sink for `java/unsafe-deserialization`

Pull Request - State: closed - Opened by owen-mc 7 months ago
Labels: documentation, Java

#20023 - C++: Better dataflow for function objects

Pull Request - State: closed - Opened by MathiasVP 7 months ago
Labels: C++, documentation

#20018 - Java: Update qhelp: SnakeYaml is safe from version 2.0

Pull Request - State: closed - Opened by owen-mc 7 months ago - 4 comments
Labels: documentation, Java

#20016 - C++: Add more thread creation models

Pull Request - State: closed - Opened by MathiasVP 7 months ago
Labels: C++, documentation

#20014 - C++: Do not alert on unreachable code in `cpp/incorrect-string-type-conversion`

Pull Request - State: closed - Opened by jketema 7 months ago
Labels: C++, documentation

#20010 - C++: Fix some typos in recent change notes

Pull Request - State: closed - Opened by jketema 7 months ago
Labels: C++, documentation

#19995 - Rust: Disambiguate associated function calls

Pull Request - State: closed - Opened by hvitved 7 months ago - 1 comment
Labels: documentation, Rust

#19994 - Post-release preparation for codeql-cli-2.22.2

Pull Request - State: closed - Opened by codeql-ci 7 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19973 - C++: Add `glibc` flow summaries

Pull Request - State: closed - Opened by MathiasVP 7 months ago
Labels: C++, documentation

#19955 - C++: Add flow summaries for `CreateThread` and friends

Pull Request - State: closed - Opened by MathiasVP 7 months ago - 4 comments
Labels: C++, documentation

#19951 - Rust: add trailing newline to rust-cwe.md

Pull Request - State: closed - Opened by aibaars 7 months ago
Labels: documentation

#19950 - Java: Add 'Useless serialization member in record class' query

Pull Request - State: closed - Opened by tamasvajk 7 months ago - 1 comment
Labels: documentation, Java, no-change-note-required, ready-for-doc-review

#19933 - C++: Add Arm64 change note

Pull Request - State: closed - Opened by jketema 7 months ago
Labels: C++, documentation

#19932 - Python: Modernize 4 queries for missing/multiple calls to init/del methods

Pull Request - State: closed - Opened by joefarebrother 7 months ago - 3 comments
Labels: documentation, Python

#19931 - Ql4ql: Quality query tagging.

Pull Request - State: closed - Opened by michaelnebel 7 months ago - 3 comments
Labels: JS, documentation, Java, no-change-note-required, QL-for-QL

#19892 - Fix markdown query help formatting

Pull Request - State: closed - Opened by owen-mc 7 months ago
Labels: documentation, Java, Ruby, Actions

#19881 - Rust: Data flow through trait methods

Pull Request - State: closed - Opened by hvitved 8 months ago
Labels: documentation, Rust

#19877 - C#: Models for Microsoft.Data.SqlClient.

Pull Request - State: closed - Opened by michaelnebel 8 months ago - 4 comments
Labels: C#, documentation

#19864 - Post-release preparation for codeql-cli-2.22.1

Pull Request - State: closed - Opened by codeql-ci 8 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19858 - JS: moved `execa` out of experimental

Pull Request - State: closed - Opened by Napalys 8 months ago
Labels: JS, documentation

#19854 - JS: Explicitly Mark `Sinon` Package as Non RegExp

Pull Request - State: closed - Opened by Napalys 8 months ago
Labels: JS, documentation

#19849 - JS: Remove legacy actions queries

Pull Request - State: closed - Opened by asgerf 8 months ago - 1 comment
Labels: JS, documentation

#19832 - C++: Support SQL Injection sinks for Oracle Call Interface (OCI)

Pull Request - State: closed - Opened by ebickle 8 months ago - 10 comments
Labels: C++, documentation

#19805 - C++: fix typedef resolution in `ArrayType`

Pull Request - State: closed - Opened by IdrissRio 8 months ago
Labels: C++, documentation

#19793 - Ruby: Update quality tags.

Pull Request - State: closed - Opened by michaelnebel 8 months ago - 1 comment
Labels: documentation, Ruby

#19773 - C++: Retrieve namespace attributes

Pull Request - State: closed - Opened by IdrissRio 8 months ago - 3 comments
Labels: C++, depends on internal PR, documentation

#19771 - JS: Improve XSS detection for `serialize-javascript` with tainted objects

Pull Request - State: closed - Opened by Napalys 8 months ago
Labels: JS, documentation

#19753 - C++: Add more MaD summaries

Pull Request - State: closed - Opened by MathiasVP 8 months ago
Labels: C++, documentation

#19746 - C++: Use SEH exception edges in IR and generate SEH exception edges for calls in `__try` blocks

Pull Request - State: closed - Opened by jketema 8 months ago
Labels: C++, documentation

#19738 - Set CWE-134 from 9.3 to 7.3 CVSS score for memory safe languages (#2)

Pull Request - State: closed - Opened by owen-mc 8 months ago
Labels: C#, documentation, Java, Swift

#19704 - Post-release preparation for codeql-cli-2.22.0

Pull Request - State: closed - Opened by codeql-ci 8 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19678 - Swift: Update to Swift 6.1.2

Pull Request - State: closed - Opened by jketema 8 months ago - 1 comment
Labels: documentation, Swift

#19676 - Fixes in cpp/global-use-before-init

Pull Request - State: closed - Opened by mrigankpawagi 8 months ago - 16 comments
Labels: C++, documentation

#19672 - Python: Support type annotations in call graph

Pull Request - State: closed - Opened by tausbn 8 months ago - 1 comment
Labels: documentation, Python

#19640 - JS: Disable type extraction

Pull Request - State: closed - Opened by asgerf 8 months ago
Labels: JS, documentation

#19634 - JS: Add URL constructor taint tracking for request forgery

Pull Request - State: closed - Opened by Napalys 8 months ago
Labels: JS, documentation

#19602 - Post-release preparation for codeql-cli-2.21.4

Pull Request - State: closed - Opened by codeql-ci 8 months ago
Labels: C#, JS, C++, documentation, Java, Python, Go, Ruby, Rust, Swift, DataFlow Library, Actions

#19589 - C#: Improve `cs/dereference-*` queries and add to the Code Quality suite.

Pull Request - State: closed - Opened by michaelnebel 8 months ago
Labels: C#, documentation

#19576 - Swift: Update to Swift 6.1.1

Pull Request - State: closed - Opened by jketema 9 months ago - 3 comments
Labels: documentation, Swift

#19561 - Go: Add BigQuery as a sink for SQLi queries #2

Pull Request - State: closed - Opened by owen-mc 9 months ago - 3 comments
Labels: documentation, Go

#19560 - Java: Add test showing correct usage

Pull Request - State: closed - Opened by owen-mc 9 months ago
Labels: documentation, Java, no-change-note-required

#19556 - Java: Fix SpringRequestMappingMethod URL Extraction #2

Pull Request - State: closed - Opened by owen-mc 9 months ago
Labels: documentation, Java