Skip to content
Navigation Menu
Toggle navigation
Sign in
Appearance settings
Platform
AI CODE CREATION
GitHub Copilot
Write better code with AI
GitHub Copilot app
Direct agents from issue to merge
MCP Registry
New
Integrate external tools
DEVELOPER WORKFLOWS
Actions
Automate any workflow
Codespaces
Instant dev environments
Issues
Plan and track work
Code Review
Manage code changes
APPLICATION SECURITY
GitHub Advanced Security
Find and fix vulnerabilities
Code security
Secure your code as you build
Secret protection
Stop leaks before they start
EXPLORE
Why GitHub
Documentation
Blog
Changelog
Marketplace
View all features
Solutions
BY COMPANY SIZE
Enterprises
Small and medium teams
Startups
Nonprofits
BY USE CASE
App Modernization
DevSecOps
DevOps
CI/CD
View all use cases
BY INDUSTRY
Healthcare
Financial services
Manufacturing
Government
View all industries
View all solutions
Resources
EXPLORE BY TOPIC
AI
Software Development
DevOps
Security
View all topics
EXPLORE BY TYPE
Customer stories
Events & webinars
Ebooks & reports
Business insights
GitHub Skills
SUPPORT & SERVICES
Documentation
Customer support
Community forum
Trust center
Partners
View all resources
Open Source
COMMUNITY
GitHub Sponsors
Fund open source developers
PROGRAMS
Security Lab
Maintainer Community
Accelerator
GitHub Stars
Archive Program
REPOSITORIES
Topics
Trending
Collections
Enterprise
ENTERPRISE SOLUTIONS
Enterprise platform
AI-powered developer platform
AVAILABLE ADD-ONS
GitHub Advanced Security
Enterprise-grade security features
Copilot for Business
Enterprise-grade AI features
Premium Support
Enterprise-grade 24/7 support
Pricing
Search or jump to...
Search code, repositories, users, issues, pull requests...
Search syntax tips
Provide feedback
Saved searches
Use saved searches to filter your results more quickly
Sign in
Sign up
Appearance settings
Resetting focus
You signed in with another tab or window.
Reload
to refresh your session.
You signed out in another tab or window.
Reload
to refresh your session.
You switched accounts on another tab or window.
Reload
to refresh your session.
Dismiss alert
{{ message }}
Uh oh!
There was an error while loading.
Please reload this page
.
github
/
codeql
Public
Notifications
You must be signed in to change notification settings
Fork
2k
Star
9.8k
Code
Issues
985
Pull requests
418
Discussions
Actions
Projects
Models
Security and quality
0
Insights
Additional navigation options
Code
Issues
Pull requests
Discussions
Actions
Projects
Models
Security and quality
Insights
Commits
Breadcrumbs
History for
codeql
java
on
codeql-cli/v2.25.5
User selector
All users
All time
Commit history
Commits on May 18, 2026
Release preparation for version 2.25.5
github-actions[bot]
committed
e38616a
Copy full SHA for e38616a
Commits on May 13, 2026
Add changed framework coverage reports
github-actions[bot]
committed
b0e23a7
Copy full SHA for b0e23a7
Commits on May 12, 2026
Merge pull request #21807 from owen-mc/java/improve-qhelp-unsafe-deserialization
Show description for 0b808e1
owen-mc
authored
0b808e1
Copy full SHA for 0b808e1
Commits on May 11, 2026
Use all path injection sinks when generating docs
owen-mc
committed
ec8ff6f
Copy full SHA for ec8ff6f
Commits on May 8, 2026
Note that common standard library types can be vulnerable to gadget-chain attacks
owen-mc
committed
a5ef036
Copy full SHA for a5ef036
Merge pull request #21741 from MarkLee131/fix/path-injection-read-subkind
Show description for 36554d1
owen-mc
authored
36554d1
Copy full SHA for 36554d1
Merge pull request #21808 from aschackmull/cfg/switch-pattern-eval
Show description for 81e1ab7
aschackmull
authored
81e1ab7
Copy full SHA for 81e1ab7
Commits on May 7, 2026
Merge branch 'main' into fix/path-injection-read-subkind
MarkLee131
authored
26af528
Copy full SHA for 26af528
Fix QL formatting
owen-mc
authored
f9240e7
Copy full SHA for f9240e7
C#/Java: Accept test changes.
aschackmull
committed
6b6df37
Copy full SHA for 6b6df37
C#/Java: Adjust Guards instantiations.
aschackmull
committed
072166b
Copy full SHA for 072166b
Cfg: Rework CFG for switch case patterns.
aschackmull
committed
48785a0
Copy full SHA for 48785a0
Fix yaml formatting
owen-mc
authored
33035db
Copy full SHA for 33035db
Do not make such a strong security claim
Show description for f2ea3b9
owen-mc
and
Copilot
authored
f2ea3b9
Copy full SHA for f2ea3b9
Clarify that deserialization that follows a schema is safe
owen-mc
committed
427b73e
Copy full SHA for 427b73e
Remove double spaces from qhelp
owen-mc
committed
7aa3fd8
Copy full SHA for 7aa3fd8
Commits on May 5, 2026
Post-release preparation for codeql-cli-2.25.4
github-actions[bot]
committed
7610277
Copy full SHA for 7610277
Release preparation for version 2.25.4
github-actions[bot]
committed
88e1d86
Copy full SHA for 88e1d86
Commits on May 4, 2026
Merge branch 'main' into fix/path-injection-read-subkind
MarkLee131
authored
4673941
Copy full SHA for 4673941
Merge pull request #21781 from aschackmull/java/rm-deprecated
Show description for f663ecc
aschackmull
authored
f663ecc
Copy full SHA for f663ecc
Java: Fix reference in deprecated code.
aschackmull
committed
c7904b1
Copy full SHA for c7904b1
Java: Delete old deprecated code.
aschackmull
committed
17fded4
Copy full SHA for 17fded4
Update java/ql/lib/ext/org.apache.commons.io.model.yml
Show description for 49e5886
MarkLee131
and
owen-mc
authored
49e5886
Copy full SHA for 49e5886
Commits on May 3, 2026
Update java/ql/lib/ext/org.apache.commons.io.model.yml
Show description for c10a05f
MarkLee131
and
owen-mc
authored
c10a05f
Copy full SHA for c10a05f
Update java/ql/lib/ext/javax.servlet.model.yml
Show description for 8710e63
MarkLee131
and
owen-mc
authored
8710e63
Copy full SHA for 8710e63
Update java/ql/lib/ext/org.apache.commons.io.model.yml
Show description for dbc9d0d
MarkLee131
and
owen-mc
authored
dbc9d0d
Copy full SHA for dbc9d0d
Update java/ql/lib/ext/java.nio.file.model.yml
Show description for 9194cda
MarkLee131
and
owen-mc
authored
9194cda
Copy full SHA for 9194cda
Update java/ql/lib/ext/java.nio.file.model.yml
Show description for 7050241
MarkLee131
and
owen-mc
authored
7050241
Copy full SHA for 7050241
Update java/ql/lib/ext/java.nio.file.model.yml
Show description for 62a0a3e
MarkLee131
and
owen-mc
authored
62a0a3e
Copy full SHA for 62a0a3e
Update java/ql/lib/ext/java.nio.file.model.yml
Show description for 3ad2d8c
MarkLee131
and
owen-mc
authored
3ad2d8c
Copy full SHA for 3ad2d8c
Commits on May 1, 2026
Merge branch 'main' into fix/path-injection-read-subkind
MarkLee131
authored
bafa892
Copy full SHA for bafa892
Java: move File inspection methods to path-injection[read]
Show description for 119994b
MarkLee131
committed
119994b
Copy full SHA for 119994b
Commits on Apr 30, 2026
Merge pull request #21654 from MarkLee131/fix/sensitive-log-hash-sanitizer
Show description for 87c35e6
owen-mc
authored
87c35e6
Copy full SHA for 87c35e6
Address review comments on path-injection[read] sub-kind
Show description for 936f0c6
MarkLee131
committed
936f0c6
Copy full SHA for 936f0c6
Merge branch 'main' into fix/path-injection-read-subkind
MarkLee131
authored
90741b1
Copy full SHA for 90741b1
Previous
Next
You can’t perform that action at this time.