codeql-coding-standards
codeql-coding-standards copied to clipboard
github
This repository contains CodeQL queries and libraries which support various Coding Standards.
**Describe the bug** `scripts/reports/analysis_report.py` fails for .sarif file containing MISRA violations. In our project, we have C files and C++ files. We want to use MISRA C for .c and...
### Affected rules - A15-4-4 ### Description `A15-4-4/MissingNoExcept.ql` flags functions which are not `noexcept` when no exception is explicitly thrown by them (or the functions they call). Unfortunately, this doesn't...
## Description Implement rules for type-generic macros. ## Change request type - [ ] Release or process automation (GitHub workflows, internal scripts) - [ ] Internal documentation - [ ]...
## Description Almost missed this amendment as it was marked blocked in the spreadsheet. ## Change request type - [ ] Release or process automation (GitHub workflows, internal scripts) -...
`Objects.qll` has support for identifying objects with different storage durations (static, thread local, allocated, and automatic). However, its thread local object support is limited to `_Thread_local` variables. Ideally, a `tss_t`...
## Description I incorrectly deleted the `DeviationsSuppression.ql` query in #807. This query is still used as part of generating our Guideline Compliance Summary, and is useful for customers wanting to...
### Affected rules - `DIR-4-15`\ ### Description The first implementation of the rule handles guards of the form `isinf`, `isnan`, `isfinite`, `iszero`, etc., however, it doesn't support guards relating to...
We should report deviation records that duplicate the same code identifier as invalid. Reusing an identifier for multiple deviations risks unintentional suppression.
### Affected rules - `DCL40-C` - `RULE-8-3` - `RULE-8-4` ### Description There are some cases of compatible types which are not currently detected by these queries: * Enumerations - these...
## Description _please enter the description of your change here_ ## Change request type - [ ] Release or process automation (GitHub workflows, internal scripts) - [ ] Internal documentation...
