discussions Search Results · repo:github/securitylab language:CodeQL
Filter by
114 results
ingithub/securitylab (press backspace or delete to remove)The language qualifier is not supported when searching discussions. Try searching for issues instead?
:
I am getting the following error when running Semmle with Guardian:
[2021-06-30 17:38:26] [ERROR] Spawned process exited abnormally (code 41; tried to run:
[C:\CerberusSourceBuildInPipelineAgent_work\4\s.gdn\i\nuget\microsoft.semmle.1.26.1\odasa\tools\runner.exe, ...
:
I was running queries on a Java project and it didn t seem to end. Normally it d take about less than an hour at most to
finish those queries, but this time it has been almost 12 hours and still going. ...
:
When performing C/C++ extraction, LGTM tries a bunch of things, and apparently does python setup.py build. This is
broken on packages that do not support Python 2, e.g.,
https://lgtm.com/projects/g/matplotlib/matplotlib/logs/languages/lang:cpp ...
:
Hello,
I have several question regarding local data flow and global data flow.
Q1. Is there any differences between local data flow and global data flow except the scope of computation? If yes, what ...
:
I m writing a parser for the .expected files (I will then use the data to visually represent the query results).
- Is there some documentation on the format of the .expected files?
- Anything in ...
:
I set about writing a query to detect when user input ends up in a GetType call (c#)
https://gist.github.com/mwest67/a715df2fec879563255c0d3c2ad25449. the query detects a path right to the GetType call ...
:
I have encountered a confusion, who can help me?
/**
*@name PIIQueryPath
*@kind path-problem
*@description 污染路径
*/
import java
import semmle.code.java.StringFormat
import semmle.code.java.dataflow.TaintTracking ...
:
Hi there Github Security Lab,
I am a dev who mostly sticks to development and research related to it, but have been dipping my toes a bit into
security for a few days now. I encountered CodeQL and it ...
:
Hey, I m pretty new to CodeQL and I haven’t been able to determine if a case I have in mind can be written as a CodeQL
query.
I want to check if a variable of a certain type, is passed to a function before ...
:
Now the following code, known index function first parameter request is user input can be used as a source, and then now
known to deserialize function points in Tools#deserialize function, can be used ...