Skip to content

discussions Search Results · repo:github/securitylab language:CodeQL

Filter by

114 results  (247 ms)

114 results

ingithub/securitylab (press backspace or delete to remove)
The language qualifier is not supported when searching discussions. Try searching for issues instead?

github/securitylab
[Open-Source Tool] Detect & Mitigate GitHub Actions Supply Chain Attack (tj-actions/changed-files)

🚨 GitHub Actions Supply Chain Attack Detection Tool On March 15, 2025, the popular GitHub Action tj-actions/changed-files was compromised, potentially exfiltrating secrets from thousands of CI/CD pipelines. ...

github/securitylab
I need help to write a query all sources to a golan sink

Hi, I am trying to learn a bit how to use CodeQL, I wrote the query bellow to try to list all sources to a golang sink exec.CommandContext. However, why I try to run it, I get an error and the query just ...

github/securitylab
Where are the reference answers for CTF/uboot? (aka Challenge 10)

The challenge is archived at: https://securitylab.github.com/ctf/uboot/ The links to Check the reference answers and Official contest rules simply re-open the exact same page. Looking at another CTF ...

github/securitylab
Help write a CodeQL query for the Gradio framework

Hi team, I m new to CodeQL. I read this article and want to write a practice query. I tried looking for the sink (os.path.basename) and using the methods passed in from gradio’s interface as the source. ...

github/securitylab
CVE-2022-22057 on huawei phone

I tested CVE-2022-22057 POC on a Huawei phone, but it always reboots after printing read pipe finished , How to fix this issue. huawei phone Info: Model VNE-AN00 , honor play30 8+128G memory Android 11 ...

github/securitylab
Unable to Detect Path

This is my CodeQL query which detects path/ /** * @kind path-problem * @name 502path * @id java/example/path-detection */ import semmle.code.java.dataflow.TaintTracking module MyFlowConfiguration ...

github/securitylab
Help with query - unable to find path

The codeql query to find path /** * ... * * @kind path-problem * @name 117path * @id java/example/path-detection * ... */ import semmle.code.java.dataflow.DataFlow module MyFlowConfiguration ...

github/securitylab
Help with query

@RequestMapping(value = /login , method = RequestMethod.POST) public String processLogin( @RequestParam(value = user , required = true) String username, @RequestParam(value = ...

github/securitylab
How to define a statement as sink

/** * @name snk117 * @kind problem * @problem.severity warnings * @id java/example/sink-detection */ import java import semmle.code.java.dataflow.DataFlow predicate isSink(DataFlow::Node snk) ...

github/securitylab
Why this query is not detecting logger.info()

/** * @name snk117 * @kind problem * @problem.severity warnings * @id java/example/sink-detection */ import java import semmle.code.java.dataflow.DataFlow predicate isSink(DataFlow::Node snk) ...