issues Search Results · repo:github/codeql language:CodeQL
Filter by
2k results
(64 ms)2k results
ingithub/codeql (press backspace or delete to remove)Currently the codeql documentation contains this example for use with bazel based projects:
# Navigate to the Bazel workspace.
# Before building, remove cached objects
# and stop all running Bazel server ...
question
keith
- 3
- Opened 12 hours ago
- #19447
Title:
Windows: AccessDeniedException during codeql database create TRAP finalization (pools/0 move fails)
Description:
❗ Summary
On Windows 11, running codeql database create for a JavaScript project ...
timothywarner
- 1
- Opened yesterday
- #19438
Description of the false positive
We are using .NET and C# and Github Advanced Security through Azure Devops.
We have various package references to things that in-turn reference System.Text.Encodings.Web ...
false-positive
phil000
- 2
- Opened yesterday
- #19435
Description of the issue CodeQL seems to not handle data flow and taint tracking through fields of structs the way I
expected when accessed through a pointer. It s possible that I am misusing the library, ...
question
MyEyes
- 2
- Opened 3 days ago
- #19405
Description of the false positive
The query for unreachable code (BasicBlock where not bb1.isReachable()) incorrectly detects live code as dead code in
C/C++. Specifically, in the function Tcl_TranslateFileName, ...
awaiting-response
false-positive
Faycal572
- 3
- Opened 3 days ago
- #19399
Description of the false positive
!-- Please explain briefly why you think it shouldn t be included. --
Code samples or links to source code
!-- For open source code: file links with line numbers on ...
false-positive
ZiAirBones1
- 1
- Opened 4 days ago
- #19389
cpp-user-after-free seems to have a number of false positives, particular when a pointer is freed, re-allocated, and
then reused correctly.
Consider the following code snippet from this part of OpenSC: ...
acknowledged
false-positive
ajohnston9
- 3
- Opened 6 days ago
- #19387
Description of the issue
Currently getting an OOM error with the CodeQL Autobuilder when attempting to compile Kotlin.
https://github.com/JLLeitschuh/ktlint-gradle/actions/runs/14649396135/job/41111305233?pr=861#step:5:121 ...
question
JLLeitschuh
- 4
- Opened 7 days ago
- #19374
Add tokio::fs sinks for path-injection. This ought to be straightforward as they re more-or-less a mirror of the std::fs
sinks, except most will be async.
See https://docs.rs/tokio/latest/tokio/fs/index.html ...
Rust
geoffw0
- 1
- Opened 7 days ago
- #19373
I have a Java project and its permission settings use JSON file to config. Now I can not use CodeQL to parse JSON file
and find BAC issues.
question
donky16
- 2
- Opened 8 days ago
- #19351
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Restrict your search to the title by using the in:title qualifier.Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Restrict your search to the title by using the in:title qualifier.