Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / github/codeql issues and pull requests

#17126 - Swift: Improve documentation and examples that use encryption

Pull Request - State: closed - Opened by geoffw0 2 months ago - 1 comment
Labels: documentation, no-change-note-required, ready-for-doc-review, Swift

#17125 - C++: Expose `explicit` and `explicit(bool)` function specifiers

Pull Request - State: closed - Opened by jketema 2 months ago
Labels: C++, depends on internal PR, documentation

#17124 - Bump github.com/beego/beego/v2 from 2.1.1 to 2.2.1 in /go/ql/test/library-tests/semmle/go/frameworks/Afero

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: documentation, dependencies, Go

#17123 - Bump google.golang.org/protobuf from 1.31.0 to 1.33.0 in /go/ql/test/library-tests/semmle/go/frameworks/Afero

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: documentation, dependencies, Go

#17122 - Bump golang.org/x/crypto from 0.12.0 to 0.17.0 in /go/ql/test/library-tests/semmle/go/frameworks/Afero

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: documentation, dependencies, Go

#17121 - Bump github.com/gofiber/fiber/v2 from 2.48.0 to 2.52.5 in /go/ql/test/library-tests/semmle/go/frameworks/Afero

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: documentation, dependencies, Go

#17120 - Bump google.golang.org/protobuf from 1.30.0 to 1.33.0 in /go/ql/test/experimental/CWE-321-V2

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: documentation, dependencies, Go

#17119 - Go: finish converting tests to model pretty printing

Pull Request - State: closed - Opened by owen-mc 2 months ago
Labels: no-change-note-required, Go

#17118 - C++: Add `getTemplateClass` to `DeductionGuide`

Pull Request - State: closed - Opened by jketema 2 months ago
Labels: C++, depends on internal PR, documentation

#17116 - Revert "Go: Add support for provenance pretty-printing"

Pull Request - State: closed - Opened by owen-mc 2 months ago
Labels: no-change-note-required, Go

#17115 - Go: add newly modeled packages to frameworks.csv

Pull Request - State: closed - Opened by owen-mc 2 months ago - 1 comment
Labels: no-change-note-required, Go

#17114 - Go: Add import path for Gokogiri

Pull Request - State: closed - Opened by owen-mc 2 months ago - 1 comment
Labels: no-change-note-required, Go

#17113 - Go: add more import paths for `xmlpath`

Pull Request - State: closed - Opened by owen-mc 2 months ago - 1 comment
Labels: no-change-note-required, Go

#17112 - Update CSV framework coverage reports

Pull Request - State: closed - Opened by github-actions[bot] 2 months ago - 1 comment

#17111 - Java: Add test for Gradle fetching a jar with a classifier

Pull Request - State: closed - Opened by smowton 2 months ago
Labels: Java

#17105 - Dataflow: Refactor stage 6 to use shared stage code.

Pull Request - State: closed - Opened by aschackmull 2 months ago - 2 comments
Labels: C#, C++, Java, no-change-note-required, DataFlow Library

#17099 - How to build go/extractor

Issue - State: closed - Opened by hac425xxx 2 months ago - 19 comments
Labels: question

#17089 - Changelogx fix for 2.18.0 c/cpp breaking changes

Pull Request - State: open - Opened by coadaflorin 2 months ago - 1 comment
Labels: documentation

#17088 - `crate_universe`: Enable modext isolation.

Pull Request - State: closed - Opened by criemen 2 months ago - 1 comment
Labels: depends on internal PR

#17075 - Java: 17052 Second try: do not expose error message

Pull Request - State: closed - Opened by RobbingDaHood 2 months ago
Labels: documentation, Java

#17070 - Dataflow: Replace `ppReprType` with `DataFlowType.toString`.

Pull Request - State: closed - Opened by aschackmull 2 months ago - 1 comment
Labels: C#, C++, documentation, Java, Python, no-change-note-required, Go, Ruby, Swift, DataFlow Library

#17058 - Go: Support Go 1.23

Pull Request - State: open - Opened by mbg 2 months ago - 7 comments
Labels: documentation, Go

#17052 - False positive: Java: stack-trace-exposure

Issue - State: closed - Opened by RobbingDaHood 2 months ago - 7 comments
Labels: false-positive

#17045 - Java: CodeQL and chill missing result

Issue - State: open - Opened by p1keman 2 months ago - 2 comments
Labels: question, Java

#17030 - Python: remove the imprecise container taint steps

Pull Request - State: open - Opened by yoff 2 months ago
Labels: Python

#17029 - Dataflow: Add provenance to StagePathGraph.

Pull Request - State: open - Opened by aschackmull 2 months ago - 1 comment
Labels: no-change-note-required, DataFlow Library

#17020 - Java: JWT decoding without verification [smowton fork]

Pull Request - State: closed - Opened by smowton 2 months ago - 2 comments
Labels: documentation, Java

#17017 - Add autofix reminder

Pull Request - State: open - Opened by aeisenberg 2 months ago - 2 comments
Labels: Autofix Validation Required, No Autofix Validation Required

#17009 - error: expression preceding parentheses of apparent call must have (pointer-to-) function type

Issue - State: closed - Opened by flowerhack 3 months ago - 4 comments
Labels: bug, C++

#17002 - Ruby: Add get_response for Net::HTTP

Pull Request - State: closed - Opened by Flying-Tom 3 months ago
Labels: no-change-note-required, Ruby, external-contribution

#16970 - Data flow: Compute local big step relation as stage output

Pull Request - State: open - Opened by hvitved 3 months ago - 3 comments
Labels: C#, C++, depends on internal PR, Python, no-change-note-required, Go, Ruby, Swift, DataFlow Library

#16948 - Error: Command failed: df -Pk when using macos-14 runners (macos-latest)

Issue - State: closed - Opened by ebickle 3 months ago - 18 comments
Labels: question

#16938 - C#: Do not skip extraction of already seen source files

Pull Request - State: closed - Opened by tamasvajk 3 months ago - 3 comments
Labels: C#, documentation

#16937 - Ruby: Adopt shared SSA data-flow integration

Pull Request - State: closed - Opened by hvitved 3 months ago
Labels: no-change-note-required, Ruby

#16936 - C#: Adopt shared SSA data-flow integration

Pull Request - State: closed - Opened by hvitved 3 months ago
Labels: C#, no-change-note-required, Ruby

#16933 - Python: Promote the insecure cookie query from experimental

Pull Request - State: closed - Opened by joefarebrother 3 months ago - 3 comments
Labels: documentation, Python

#16900 - Java: Adopt shared SSA library

Pull Request - State: open - Opened by hvitved 3 months ago
Labels: Java

#16840 - Python: Modelling of the Standard Library

Pull Request - State: open - Opened by yoff 3 months ago - 3 comments
Labels: Python, no-change-note-required

#16824 - C#: Add query for insecure certificate validation

Pull Request - State: open - Opened by intrigus-lgtm 3 months ago - 9 comments
Labels: C#, documentation

#16813 - WIP: Go: CORS Bypass due to incorrect checks

Pull Request - State: open - Opened by porcupineyhairs 3 months ago - 10 comments
Labels: Go

#16811 - CPP: Disabled SSL certificate verification

Pull Request - State: closed - Opened by porcupineyhairs 3 months ago - 6 comments
Labels: C++, documentation

#16808 - Align Java CommandInjectionRuntimeExec.ql Severity

Pull Request - State: closed - Opened by JLLeitschuh 3 months ago - 1 comment
Labels: Java

#16741 - Data flow: Store/load matching in pruning stage 3

Pull Request - State: open - Opened by hvitved 4 months ago - 1 comment
Labels: C#, DataFlow Library

#16711 - Bump regex from 1.10.4 to 1.10.5 in /ql

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, QL-for-QL, rust

#16710 - Go: Add `file` sources

Pull Request - State: closed - Opened by egregius313 4 months ago - 2 comments
Labels: documentation, Go

#16708 - Java: new path injection sinks

Pull Request - State: closed - Opened by am0o0 4 months ago - 10 comments
Labels: Java

#16674 - Accessing private maven repo using default GitHub configuration

Issue - State: open - Opened by futureviperowner 4 months ago - 7 comments
Labels: question

#16185 - Ruby: ActiveRecord - refine `conditions` argument as an SQLi sink

Pull Request - State: closed - Opened by alexrford 6 months ago
Labels: no-change-note-required, Ruby

#15884 - C#: CIL and Dotnet cleanup (removal).

Pull Request - State: closed - Opened by michaelnebel 7 months ago - 4 comments
Labels: C#, documentation

#15852 - TypeScript: CodeQL seems to hang after 44s and stops after 6h

Issue - State: open - Opened by Apollon77 7 months ago - 5 comments
Labels: question, JS

#15028 - Improve `cpp/wrong-type-format-argument` by adding correct formatting specifier

Issue - State: open - Opened by AMS21 10 months ago - 2 comments
Labels: question

#14862 - Kotlin: Move tests from test/kotlin to test-kotlin1

Pull Request - State: closed - Opened by igfoo 10 months ago
Labels: depends on internal PR, Java

#14684 - Swift: Fix failing tests

Pull Request - State: closed - Opened by geoffw0 11 months ago
Labels: no-change-note-required, Swift

#14683 - Swift: Model NSString.enumerate*

Pull Request - State: open - Opened by geoffw0 11 months ago
Labels: documentation, Swift

#14682 - Swift: Correct a couple of FilePath models.

Pull Request - State: open - Opened by geoffw0 11 months ago
Labels: no-change-note-required, Swift

#14681 - Java: Add more sinks to the Weak Randomness query

Pull Request - State: open - Opened by atorralba 11 months ago - 2 comments
Labels: documentation, Java

#14680 - Swift: Generalize flow through subscript writes / test and fix some closure methods of Data

Pull Request - State: open - Opened by geoffw0 11 months ago
Labels: documentation, Swift

#14679 - Ruby: Experimental model editor support

Pull Request - State: open - Opened by hmac 11 months ago
Labels: Ruby

#14678 - C#: Correctly parse operator names in MaD

Pull Request - State: open - Opened by hvitved 11 months ago
Labels: C#

#14677 - JS: Move the language pack build and tests to Bazel

Pull Request - State: open - Opened by criemen 11 months ago
Labels: JS

#14676 - C#: Reference NUnit from the standalone integration test projects.

Pull Request - State: closed - Opened by michaelnebel 11 months ago
Labels: C#

#14675 - C#: Split `generated/dotnet_runtime.yml` into separate files (take 2)

Pull Request - State: closed - Opened by hvitved 11 months ago
Labels: C#, no-change-note-required

#14674 - Revert "C#: Split `generated/dotnet_runtime.yml` into separate files"

Pull Request - State: closed - Opened by hvitved 11 months ago - 1 comment
Labels: C#, no-change-note-required

#14673 - DataFlowStack Common Library

Pull Request - State: closed - Opened by ropwareJB 11 months ago - 1 comment
Labels: C#, C++, documentation, DataFlow Library

#14672 - Update CSV framework coverage reports

Pull Request - State: closed - Opened by github-actions[bot] 11 months ago

#14671 - Java: Add support for Java 21 language features

Pull Request - State: open - Opened by smowton 11 months ago
Labels: documentation, Java

#14670 - False positive - Ruby (on Rails) - SQL query built from user-controlled sources

Issue - State: open - Opened by Cohen-Carlisle 11 months ago - 1 comment
Labels: false-positive

#14669 - C++: Rewrite `cpp/unbounded-write` away from `DefaultTaintTracking`

Pull Request - State: open - Opened by MathiasVP 11 months ago
Labels: C++

#14668 - VS Code extension docs: Changes to database downloads

Pull Request - State: open - Opened by shati-patel 11 months ago
Labels: documentation

#14667 - C++: Allocate more `FunctionInput` and `FunctionOutput`s

Pull Request - State: open - Opened by MathiasVP 11 months ago
Labels: C++

#14666 - JS: Extends CredentialsNode class mostly related to JWT authentication packages

Pull Request - State: closed - Opened by am0o0 11 months ago - 5 comments
Labels: JS, no-change-note-required

#14665 - C#: Update DependencyManager logic to exclude commented out references.

Pull Request - State: closed - Opened by michaelnebel 11 months ago - 2 comments
Labels: C#, no-change-note-required

#14664 - RangeAnalysis: Improve bounds that rely on relative modulus.

Pull Request - State: closed - Opened by aschackmull 11 months ago - 1 comment
Labels: C++

#14663 - C#: Split `generated/dotnet_runtime.yml` into separate files

Pull Request - State: closed - Opened by hvitved 11 months ago - 2 comments
Labels: C#, no-change-note-required

#14662 - C#: Use different MaD format for generics

Pull Request - State: open - Opened by hvitved 11 months ago - 1 comment
Labels: C#

#14661 - Swift: Fix defaultImplicitTaintRead on fields

Pull Request - State: open - Opened by geoffw0 11 months ago
Labels: documentation, Swift

#14659 - Java/C++: Share modulus analysis

Pull Request - State: closed - Opened by aschackmull 11 months ago - 1 comment
Labels: C++, Java, no-change-note-required

#14658 - CodeQL docs links 404

Issue - State: closed - Opened by mschwager 11 months ago - 1 comment
Labels: question

#14657 - C#: Move qualified name computation into `QualifiedName.qll`

Pull Request - State: closed - Opened by hvitved 11 months ago
Labels: C#, no-change-note-required

#14656 - Rangeanalysis: Share ssaRead predicate

Pull Request - State: closed - Opened by aschackmull 11 months ago - 1 comment
Labels: C++, Java, no-change-note-required

#14655 - C#: Use `project.assets.json` for package dependencies.

Pull Request - State: open - Opened by michaelnebel 11 months ago - 2 comments
Labels: C#, no-change-note-required

#14654 - Python: Update debug query to changed API

Pull Request - State: closed - Opened by yoff 11 months ago
Labels: Python

#14653 - Python: Add AWS Lambda as a supported framework

Pull Request - State: closed - Opened by yoff 11 months ago
Labels: documentation, no-change-note-required

#14652 - workflow yml file configuration

Issue - State: open - Opened by yangyepope 11 months ago - 1 comment
Labels: question

#14651 - Update CSV framework coverage reports

Pull Request - State: closed - Opened by github-actions[bot] 11 months ago

#14650 - C++: Drop `experimental` tag from `cpp/invalid-pointer-deref`

Pull Request - State: closed - Opened by jketema 11 months ago
Labels: C++, no-change-note-required

#14649 - Go: Add Cors Gin Support

Pull Request - State: open - Opened by Kwstubbs 11 months ago
Labels: documentation, Go

#14648 - C++: Remove one use of range analysis in `cpp/invalid-pointer-deref`

Pull Request - State: closed - Opened by MathiasVP 11 months ago - 1 comment
Labels: C++, no-change-note-required

#14647 - C++: Adding a model implementation for ODBC.

Pull Request - State: closed - Opened by bdrodes 11 months ago - 5 comments
Labels: C++, documentation

#14646 - Java: Update MaD Declarations after Triage

Pull Request - State: open - Opened by atorralba 11 months ago - 1 comment
Labels: documentation, Java

#14645 - JS: re-order expected test output of all JS tests

Pull Request - State: closed - Opened by erik-krogh 11 months ago
Labels: JS

#14644 - Python: filter local self loops

Pull Request - State: closed - Opened by yoff 11 months ago
Labels: Python, no-change-note-required

#14643 - Javascript: add `req.path` as remote flow source

Pull Request - State: closed - Opened by aibaars 11 months ago
Labels: JS, no-change-note-required

#14642 - Java: Publish Automodel query pack 0.0.7

Pull Request - State: open - Opened by kaeluka 11 months ago
Labels: documentation, Java, no-change-note-required

#14641 - False positive - C# Constant Condition

Issue - State: open - Opened by brent-oss 11 months ago - 1 comment
Labels: false-positive

#14640 - Go: mark all integration tests non-parallelisable

Pull Request - State: closed - Opened by smowton 11 months ago
Labels: Go