all-for-one.yml
all-for-one.yml
| Name | About | Labels | Assignees |
|---|---|---|---|
| All for One, One For All bounty submission | Submit a CodeQL query for the All For One, One For All bounty (https://securitylab.github.com/bounties#allforone) | All For One |
Introduction
Thank you for submitting a query to the GitHub CodeQL project!
After you submit this issue, the GitHub Security Lab and CodeQL teams will triage the submission and, if it meets the Query Bounty Program requirements, we will grant you a bounty through our HackerOne program.
Please make sure to carefully read the bounty program description and conditions
Questionnaire
Link to pull request with your CodeQL query
What programming language is your query written for?
Enter a list of the CVE ID(s) associated with this query, one bullet for each distinct CVE. GitHub will automatically link CVE IDs to the GitHub Advisory Database. If the result(s) is NOT YET fixed nor disclosed, and you are still waiting for a CVE, then you can privately share your result via email to security@github.com
CWE that best fits the vulnerability class modeled with your query
Describe the vulnerability. Provide any information you think will help GitHub assess the impact your query has on the open source community.
If you have already blogged about your query, please provide a link.