codeql

codeql copied to clipboard

- **JS: Use question-mark variant in all overlay annotations** - **Revert changes in synced files** - **Release preparation for version 2.23.8** - **Post-release preparation for codeql-cli-2.23.8**

oscarsj

General issue: CWE-116 not reported for unescaped XML output in JavaScript/TypeScript

1

**Description** CodeQL security scan did not recognise the CWE-116 (Improper Encoding or Escaping of Output) in a Sitemap.xml.ts file when unescaped values are embedded into XML output. **Example** A sitemap...

aniakowalewska1

paldepind

General issue: CWE-208 coverage for javascript

1

**Description** CodeQL currently does not detect CWE-208 (Observable Timing Discrepancy) in JavaScript/TypeScript, while this weakness is covered in Java/Kotlin, Python and Ruby. This appears to be a language coverage gap...

aniakowalewska1

Java/more thread safe initialisers

2

When a field is assigned a safe type in a constructor, that field is not exposed.

yoff

aschackmull

Rust: Fix some false positives for rust/unused-variable and rust/unused-value

2

Fix some common false positive results for the `rust/unused-variable` and `rust/unused-value` queries. Typically these results look something like this: ``` match foo { MY_CONSTANT => { ... } ... }...

geoffw0

Makes API graphs incremental. The high-level overview is that we run the underlying data flow analysis in two global stages, where each stage is configured with a set of "roots"...

asgerf

jketema

The example shows how to build a barrier guard from a MaD row. Clearly, this should be done in a convenience predicate.

yoff