CodeQL 是一个代码语义分析引擎,主要用于自动化安全检测,漏洞扫描
Actions for running CodeQL analysis
Starter workspace to use with the CodeQL extension for Visual Studio Code.
An extension for Visual Studio Code that adds rich language support for CodeQL
记录学习codeql的过程
The CodeQL extractor and libraries for Go.
CodeQLpy是一款基于CodeQL实现的半自动化代码审计工具,目前仅支持java语言。实现从源码反编译,数据库生成,脆弱性发现的全过程,可以辅助代码审计人员快速定位源码可能存在的漏洞。
Binaries for the CodeQL CLI
GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
A declarative static analysis tool for jvm bytecode based Datalog like CodeQL
个人使用CodeQL编写的一些规则
自动反编译闭源应用,创建codeql数据库
codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)
Easily add ANSI colors to your text and symbols in the terminal. ansi-colors is the official ansi styling library for gulp. Used by hundreds of projects, including enquirer, vscode, codeql, azure data...