-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Create a CodeQL query pack #1
Comments
This was referenced Jun 8, 2023
carlspring
added a commit
that referenced
this issue
Jun 8, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 8, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 8, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 8, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 8, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 9, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 9, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 9, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 9, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 12, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jun 13, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
Just curious, can you not use one of the PAT v2 tokens that should offer more fine granular permissions? |
There's no need for that anymore, as the package is and will be public, but that is now just for the record. |
carlspring
added a commit
that referenced
this issue
Jun 29, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections.
carlspring
added a commit
that referenced
this issue
Jul 4, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections. carlspring/vertx-vulns#15 : Make the CodeQL Github workflow use the carlspring/vertx-codeql-queries. * Use the `carlspring/vertx-codeql-queries` query pack during the CodeQL Github workflow.
Implemented. |
carlspring
added a commit
that referenced
this issue
Jul 5, 2023
#3: Implement a CodeQL rule for insecure CORS HTTP origin #4: Implement a CodeQL rule for CORS misconfigurations that allow wildcard origins #5: Implement a CodeQL rule for insecure HTTP server connections * Added query pack. * Added CodeQL queries for CORS misconfigurations and insecure HTTP connections. carlspring/vertx-vulns#15 : Make the CodeQL Github workflow use the carlspring/vertx-codeql-queries. * Use the `carlspring/vertx-codeql-queries` query pack during the CodeQL Github workflow.
5 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Task Description
We need to set up a CodeQL query pack so that it can be used in Github Workflows.
Open Questions
Notes
Task List
The following tasks will need to be carried out:
qhelp
files.Useful Commands
qhelp
files:Incurred Costs
Task Relationships
This task:
No need to rerun
although query changed (codeql database analyze
) github/codeql-cli-binaries#64Resources
Useful Links
Points of Contact
The text was updated successfully, but these errors were encountered: