issues Search Results · repo:github/codeql language:CodeQL
Filter by
2k results
(74 ms)2k results
ingithub/codeql (press backspace or delete to remove)CodeQL is unable to extract and parse a Python3 file with the following line:
match[ something ] = somethingelse
The CodeQL errors just reportsa syntax error and, logs aren t helpful.
A parse error ...
question
tvalenta
- Opened 16 hours ago
- #19736
Hi, for the following snippet i m interested in finding out what nodes flow to s + c node.
function main() {
let s = window.location;
let c = ;
let input = s + c;
eval(input);
}
By looking ...
question
lllssskkk
- 1
- Opened yesterday
- #19720
Hey ,
I noticed that you are considering only two states:
1. One regarding the path normalization if it is done or not before the safe check
2. Second concerns the safe check.
as shown next:
https://github.com/github/codeql/blob/c1c0a705b9f14c0f577a9ae56a9d699e8b6e67d6/python/ql/lib/semmle/python/security/dataflow/PathInjectionQuery.qll#L20-L28 ...
Sim4n6
- 2
- Opened 2 days ago
- #19706
Description of the issue
Our repo uses GitHub Actions and JavaScript / TypeScript CodeQL default configuration.
Image
In addition, these events will trigger by push and pull request.
Image
However, ...
question
Marukome0743
- 5
- Opened 3 days ago
- #19698
Description of the false positive
The CodeQL analysis is reporting a Statement has no effect false positive when using Apache Airflow s operator chaining
syntax with . This is a valid and idiomatic way ...
false-positive
jakubbelter
- Opened 5 days ago
- #19687
Description of the false positive
This flagged for outputting the value of an environment variable to logs. Generally, that could be a problem. In this
case, the env var clearly contained the name of ...
false-positive
CleanCut
- Opened 6 days ago
- #19681
Hello there. I seem to have a stuck GitHub Actions workflow.
When I tried to push to GitHub yesterday, I got the following error:
remote: error: GH013: Repository rule violations found for refs/heads/main. ...
question
jyio-va
- Opened 7 days ago
- #19671
I tried to build the language database using CodeQL, but encountered an error.
And now I have read this article: https://gh.io/troubleshooting-code-scanning/no-source-code-seen-during-build. I didn t ...
question
Firebasky
- Opened 8 days ago
- #19670
i m a fresh men for codeql,Most of the content on the forums is the old API used,This really frustrates me while I m
trying to learn.How can I continue to use the old API?o(╥﹏╥)o
question
ljfhhh
- Opened 8 days ago
- #19668
I am writing a codeqlquery to flag goto statements.
Query:
from Gotostmt gt
select gt, “ use of goto statement”
Now this query is returning results
goto keywords as well as __leave keyword
Which it ...
bug
C++
Akshay865
- 6
- Opened 8 days ago
- #19666
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.