-
Notifications
You must be signed in to change notification settings - Fork 1.6k
Issues: github/codeql
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
[Java] Dataflow through object
question
Further information is requested
#18680
opened Feb 5, 2025 by
KylerKatz
CodeQL False Negative - Protototype Pollution
question
Further information is requested
#18665
opened Feb 3, 2025 by
DSimsek000
Vulnerability shows up/miss because of wrapping by (javascript) blockstatement
question
Further information is requested
#18652
opened Feb 2, 2025 by
Anemone95
CodeQL cannot resolve some classes and methods
question
Further information is requested
#18648
opened Feb 1, 2025 by
ArtiomKr
Experimental CodeInjection query for JavaScript doesn't seem to work
question
Further information is requested
#18619
opened Jan 29, 2025 by
yonajix
js/weak-cryptographic-algorithm/BrokenCryptoAlgorithm got 25-30x slower
question
#18604
opened Jan 28, 2025 by
maschwenk
Analysis on Maven projects failing due to certificate validation error against Maven Central artefacts
question
Further information is requested
#18598
opened Jan 27, 2025 by
rvesse
RegExpInjection takes 6 hours to scan the TypeScript repo after 2.20.2
acknowledged
GitHub staff acknowledges this issue
#18584
opened Jan 24, 2025 by
jakebailey
GBK encoding caused CodeQL to detect code written in Java/Kotlin, but it was unable to process any of it
question
Further information is requested
#18527
opened Jan 17, 2025 by
Weijin-wj
Python: Mixing implicit/explicit returns false positive
false-positive
#18521
opened Jan 17, 2025 by
henriquevcosta
Weak Hashing findings vanished from 1.1.11 ruleset?
awaiting-response
The CodeQL team is awaiting further input or clarification from the original reporter of this issue.
question
Further information is requested
#18518
opened Jan 16, 2025 by
davewichers
Implement CodeQL SARIF file improvements suggested by Microsoft SARIF SDK tool
question
Further information is requested
#18477
opened Jan 10, 2025 by
davewichers
Go:
LoadGoModules incorrectly still flags 1.23 as an invalid toolchain
false-positive
#18447
opened Jan 8, 2025 by
dnwe
False positive py/uninitialized-local-variable
false-positive
Python
#18390
opened Jan 3, 2025 by
woodywuuu
General issue: Missing vulnerability reports due to incomplete self variable reference relationships in Python classes
Python
question
Further information is requested
#18374
opened Dec 27, 2024 by
Firebasky
CodeQL: Setting paths in Github Advanced Security for Azure Devops
question
Further information is requested
#18372
opened Dec 27, 2024 by
woeterman94
So many false positives that I doubt it actually works
false-positive
#18359
opened Dec 22, 2024 by
Scoppio
False positive for Prototype-polluting function
false-positive
javascript
Pull requests that update Javascript code
#18327
opened Dec 19, 2024 by
dbauszus-glx
[Actions] Unpinned actions in same organization or same enterprise incorrectly trigger actions/unpinned-tag
false-positive
#18316
opened Dec 18, 2024 by
ebickle
How to publish a public pack with codeql
question
Further information is requested
#18311
opened Dec 18, 2024 by
trganda
Unable to validate code scanning workflow: error: getWorkflow() failed
question
Further information is requested
#18279
opened Dec 12, 2024 by
parsley72
codeql pack download microsoft/[email protected] fail
question
Further information is requested
#18264
opened Dec 11, 2024 by
lovelifezhenzhen
Previous Next
ProTip!
Add no:assignee to see everything that’s not assigned.