Skip to content
Navigation Menu
Toggle navigation
Sign in
Appearance settings
Platform
AI CODE CREATION
GitHub Copilot
Write better code with AI
GitHub Copilot app
Direct agents from issue to merge
MCP Registry
New
Integrate external tools
DEVELOPER WORKFLOWS
Actions
Automate any workflow
Codespaces
Instant dev environments
Issues
Plan and track work
Code Review
Manage code changes
APPLICATION SECURITY
GitHub Advanced Security
Find and fix vulnerabilities
Code security
Secure your code as you build
Secret protection
Stop leaks before they start
EXPLORE
Why GitHub
Documentation
Blog
Changelog
Marketplace
View all features
Solutions
BY COMPANY SIZE
Enterprises
Small and medium teams
Startups
Nonprofits
BY USE CASE
App Modernization
DevSecOps
DevOps
CI/CD
View all use cases
BY INDUSTRY
Healthcare
Financial services
Manufacturing
Government
View all industries
View all solutions
Resources
EXPLORE BY TOPIC
AI
Software Development
DevOps
Security
View all topics
EXPLORE BY TYPE
Customer stories
Events & webinars
Ebooks & reports
Business insights
GitHub Skills
SUPPORT & SERVICES
Documentation
Customer support
Community forum
Trust center
Partners
View all resources
Open Source
COMMUNITY
GitHub Sponsors
Fund open source developers
PROGRAMS
Security Lab
Maintainer Community
Accelerator
GitHub Stars
Archive Program
REPOSITORIES
Topics
Trending
Collections
Enterprise
ENTERPRISE SOLUTIONS
Enterprise platform
AI-powered developer platform
AVAILABLE ADD-ONS
GitHub Advanced Security
Enterprise-grade security features
Copilot for Business
Enterprise-grade AI features
Premium Support
Enterprise-grade 24/7 support
Pricing
Search or jump to...
Search code, repositories, users, issues, pull requests...
Search syntax tips
Provide feedback
Saved searches
Use saved searches to filter your results more quickly
Sign in
Sign up
Appearance settings
Resetting focus
You signed in with another tab or window.
Reload
to refresh your session.
You signed out in another tab or window.
Reload
to refresh your session.
You switched accounts on another tab or window.
Reload
to refresh your session.
Dismiss alert
{{ message }}
Uh oh!
There was an error while loading.
Please reload this page
.
github
/
codeql
Public
Notifications
You must be signed in to change notification settings
Fork
2k
Star
9.8k
Code
Issues
986
Pull requests
416
Discussions
Actions
Projects
Models
Security and quality
0
Insights
Additional navigation options
Code
Issues
Pull requests
Discussions
Actions
Projects
Models
Security and quality
Insights
Commits
Breadcrumbs
History for
codeql
javascript
ql
src
on
codeql-cli/v2.13.4
User selector
All users
All time
Commit history
Commits on Jun 8, 2023
Release preparation for version 2.13.4
github-actions[bot]
committed
e4be303
Copy full SHA for e4be303
Merge pull request #13283 from asgerf/js/restrict-regex-search-function
Show description for 76a8e98
asgerf
authored
76a8e98
Copy full SHA for 76a8e98
Commits on Jun 7, 2023
Merge pull request #13352 from erik-krogh/once-again-deps-not-py-cpp
Show description for 6ba7f9a
erik-krogh
authored
6ba7f9a
Copy full SHA for 6ba7f9a
Commits on Jun 6, 2023
Merge pull request #13329 from erik-krogh/sqlhelp
Show description for b78cd48
erik-krogh
authored
b78cd48
Copy full SHA for b78cd48
Commits on Jun 5, 2023
fix nits from doc review
erik-krogh
committed
3cb2ec4
Copy full SHA for 3cb2ec4
Commits on Jun 2, 2023
JS: delete effectively empty file
erik-krogh
committed
f61b781
Copy full SHA for f61b781
delete old deprecations
erik-krogh
committed
44b6366
Copy full SHA for 44b6366
Commits on Jun 1, 2023
changes based on review
erik-krogh
committed
9aeba4f
Copy full SHA for 9aeba4f
Merge pull request #13285 from erik-krogh/redoshelp
Show description for 96a720c
erik-krogh
authored
96a720c
Copy full SHA for 96a720c
JS: Change note
asgerf
committed
baef999
Copy full SHA for baef999
Commits on May 31, 2023
less duplicated headers in the sql-injection samples
erik-krogh
committed
1e08105
Copy full SHA for 1e08105
show how to use mysql.escape in the sql-injection qhelp
erik-krogh
committed
9882078
Copy full SHA for 9882078
add an example of using dollar eq
erik-krogh
committed
7d801e0
Copy full SHA for 7d801e0
elaborate on both SQL and NoSQL injection in the js/sql-injection qhelp
erik-krogh
committed
e24b45b
Copy full SHA for e24b45b
put string/object in the alert-message for sql-injection
erik-krogh
committed
b343dca
Copy full SHA for b343dca
Commits on May 30, 2023
Merge remote-tracking branch 'upstream/main' into post-release-prep/codeql-cli-2.13.3
aibaars
committed
490d22d
Copy full SHA for 490d22d
Commits on May 25, 2023
also fix the first code-block
erik-krogh
committed
9f5bf8f
Copy full SHA for 9f5bf8f
fix whitespace in the samples in ReDoS.qhelp
erik-krogh
committed
765076b
Copy full SHA for 765076b
Commits on May 24, 2023
Post-release preparation for codeql-cli-2.13.3
github-actions[bot]
committed
d2e1920
Copy full SHA for d2e1920
Commits on May 23, 2023
Merge pull request #13164 from erik-krogh/polyQhelp
Show description for 50cb5ea
erik-krogh
authored
50cb5ea
Copy full SHA for 50cb5ea
Commits on May 22, 2023
Release preparation for version 2.13.3
github-actions[bot]
committed
7aa23cf
Copy full SHA for 7aa23cf
Commits on May 21, 2023
apply suggestions from doc review
erik-krogh
committed
710b309
Copy full SHA for 710b309
Merge branch 'main' into polyQhelp
erik-krogh
committed
10bf17c
Copy full SHA for 10bf17c
Commits on May 17, 2023
fix bad change-note
Show description for 239234c
erik-krogh
and
asgerf
authored
239234c
Copy full SHA for 239234c
add change-note
erik-krogh
committed
5a82454
Copy full SHA for 5a82454
avoid contractions
erik-krogh
committed
480e71f
Copy full SHA for 480e71f
Commits on May 15, 2023
add another example of how to fix the prototype pollution issue
erik-krogh
committed
2ebce99
Copy full SHA for 2ebce99
fix typo, the variable in the example is called `items`
erik-krogh
committed
7a338c4
Copy full SHA for 7a338c4
trim the whitespace in the poly-redos examples
erik-krogh
committed
83ca149
Copy full SHA for 83ca149
add another example to the qhelp in poly-redos, showing how to just limit the length of the input
erik-krogh
committed
d989359
Copy full SHA for d989359
Merge pull request #12748 from JarLob/yi
Show description for 20e8ee8
asgerf
authored
20e8ee8
Copy full SHA for 20e8ee8
Commits on May 12, 2023
Merge pull request #13152 from github/max-schaefer/unsafe-shell-command-construction-examples-sync
Show description for 5dfe52a
max-schaefer
authored
5dfe52a
Copy full SHA for 5dfe52a
JavaScript: Use synchronous APIs in examples for js/shell-command-constructed-from-input.
max-schaefer
authored
2e7eb50
Copy full SHA for 2e7eb50
JavaScript: Use gender-neutral language in qhelp for js/user-controlled-bypass
max-schaefer
authored
a4f6ccf
Copy full SHA for a4f6ccf
JS: Enable implicit this receiver warnings
kaspersv
committed
7dd9906
Copy full SHA for 7dd9906
Previous
Next
You can’t perform that action at this time.