The Wayback Machine - https://web.archive.org/web/20200629055105/https://github.com/github/codeql/pulls
Skip to content

/ codeql

New pull request New
111 Open 3,300 Closed
111 Open 3,300 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀
Shared dataflow: Field flow
#3830 opened Jun 29, 2020 by yoff Draft
JS: Fix handling of .hash in XSS query
Awaiting evaluation JS
#3829 opened Jun 28, 2020 by asgerf Review required
1
JS: Add steps into static regexp capture group references
JS
#3824 opened Jun 27, 2020 by asgerf Review required
1 3
JS: model fancy-log (and recognize the 'dir' log level)
#3823 opened Jun 26, 2020 by dellalibera Approved
3
Python: Document internal AST classes.
Python
#3822 opened Jun 26, 2020 by tausbn Review required
Link to QL style guide in CONTRIBUTING.md
#3821 opened Jun 26, 2020 by Marcono1234 Review required
Add missing java.nio.file.Files methods to FileReadWrite.qll
#3820 opened Jun 26, 2020 by Marcono1234 Review required
4
C++: QLDoc for `Opcode.qll`
C++
#3819 opened Jun 26, 2020 by dbartol Review required
Fix outdated query console link
#3817 opened Jun 26, 2020 by Marcono1234 Review required
C++: add MemberFunction::getTypeOfThis()
C++ depends on internal PR
#3814 opened Jun 26, 2020 by nickrolfe Approved
@dbartol
14
Java: Add remote source of Android intent extra
#3812 opened Jun 25, 2020 by luchua-bc Review required
6
Python: Function/Class Naming Convention (Syntax)
Python
#3810 opened Jun 25, 2020 by dilanbhalla Changes requested
5
C++: Yet more QLDoc
C++
#3808 opened Jun 25, 2020 by geoffw0 Review required
3
JS: Detect insecure downloads that are saved to sensitive files.
JS
#3806 opened Jun 25, 2020 by erik-krogh Review required
2
JS: teach the dataflow library identity functions Object.freeze/seal
Awaiting evaluation JS
#3805 opened Jun 25, 2020 by esbena Review required 0 of 1
1
Dataflow: Refactor dispatch with call context.
C# C++ Java
#3804 opened Jun 25, 2020 by aschackmull Changes requested
2
JS: support additional promisification of the fs-module members
Awaiting evaluation JS
#3803 opened Jun 25, 2020 by esbena Approved
Arbitrary user-controlled read/write on user-controlled path
Java
#3794 opened Jun 24, 2020 by intrigus-lgtm Draft
11
Python: Add annotated call-graph tests
Python
#3790 opened Jun 24, 2020 by RasmusWL Review required
2
C++ Memory Unsafe Functions
C++
#3789 opened Jun 24, 2020 by dilanbhalla Changes requested
11
C++: Add bcopy to models and use it.
C++
#3788 opened Jun 24, 2020 by geoffw0 Review required
3
C++: Clean up BufferWrite.qll
C++
#3786 opened Jun 24, 2020 by geoffw0 Review required
4
C++: Operands as dataflow nodes
C++
#3785 opened Jun 24, 2020 by MathiasVP Review required
Data flow: Further pruning based on `read` column of `nodeCand2()` predicate
C# C++ Java
#3780 opened Jun 24, 2020 by hvitved Review required
@aschackmull
1
Python: Plaintext Password Information in Config/Xml files
Python
#3778 opened Jun 23, 2020 by dilanbhalla Review required
2
ProTip! Updated in the last three days: updated:>2020-06-25.
You can’t perform that action at this time.