codeql
codeql copied to clipboard
github
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
This has low precision but can catch serious issues. However, because of its low precision, it won't be included in any of our query suites. I'm not sure what to...
g++ version: 4.8.2 codeql version: 2.23.6 main.cpp: ``` #include "stdint.h" #include class Test { public: explicit Test(const uint64_t &id) : id_(id) {} private: uint64_t id_; }; int main(int argc, char*...
**Description of the issue** I want to resolve calls made with pointer variables, such as: ``` struct foo_struct { void (*foo)(void); }; static void foo_func(void) { printf("hello from foo_func\n"); }...
## Summary Fixes silent failures in the Go extractor where OOM errors and file extraction failures would cause the entire extraction process to terminate without proper error logging. ## Problem...
The ExternalFlow.qll files for Java/C++/Go/C# contain a mix of copy-pasted code and language-specific code. This PR attempts to pull shared bits and pieces into a shared library. Commit-by-commit review is...
**Description of the issue** I'm attempting to analyze the Linux kernel using CodeQL, but I'm encountering errors during database creation. **Steps to reproduce:** 1. Clone the latest Linux kernel repository...
In this PR we migrate our own solution file to `.slnx`. After the migration it becomes evident that we forgot to exclude some of the test projects from the release...
In this PR we implement support for the `.slnx` file format - both for `build-mode: none` and autobuilder. Even though it is discouraged to use `SolutionFile.Parse` (it is considered an...