Skip to content

Pull requests: mrigankpawagi/codeql

New pull request New
19 Open 8 Closed
19 Open 8 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

JavaScript: Exclude parsed URL host/hostname checks from incomplete URL substring sanitization documentation Improvements or additions to documentation JS
#27 opened Jun 28, 2026 by mrigankpawagi Owner Loading…
Java: Reduce false positives in java/concatenated-sql-query documentation Improvements or additions to documentation Java
#26 opened Jun 28, 2026 by mrigankpawagi Owner Loading…
Java: Reduce false positives in java/concatenated-command-line query documentation Improvements or additions to documentation Java
#25 opened Jun 28, 2026 by mrigankpawagi Owner Loading…
Java: Exclude JUnit test methods from log injection Java
#24 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
Python: Add shlex.quote as command injection sanitizer Python
#23 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
JavaScript: Reduce FPs in missing-regexp-anchor for intentional partial matching JS
#22 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
C#: Add EF Core interpolated SQL methods as SQL injection sanitizers C#
#21 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
Java: Exclude internal logging from stack trace exposure Java
#20 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
Python: Add json.dumps() as XSS sanitizer Python
#19 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
Java: Add URL.getHost() to SSRF host validation sanitizer Java
#18 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
JavaScript: Reduce FPs in incomplete-sanitization for bracket pair removal JS
#17 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
Python: Exclude dotted module paths from hardcoded credentials Python
#16 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
Python: Add Django safe_join as path injection sanitizer Python
#15 opened Jun 23, 2026 by mrigankpawagi Owner Loading…
Java: Improve java/log-injection with DEBUG/TRACE exclusion, URLEncoder sanitizer, and test file exclusion documentation Improvements or additions to documentation Java
#13 opened Jun 15, 2026 by mrigankpawagi Owner Loading…
Java: Improve saneString in java/concatenated-command-line using controlledString + test exclusion documentation Improvements or additions to documentation Java
#12 opened Jun 15, 2026 by mrigankpawagi Owner Loading…
JavaScript: Reduce FPs in js/incomplete-sanitization for regex escaping documentation Improvements or additions to documentation JS
#9 opened Jun 14, 2026 by kiro-agent Bot Loading…
1
Java: Exclude test files from java/concatenated-sql-query documentation Improvements or additions to documentation Java
#8 opened Jun 14, 2026 by kiro-agent Bot Loading…
JavaScript: Reduce false positives in js/regex/missing-regexp-anchor for non-URL patterns documentation Improvements or additions to documentation JS
#6 opened Jun 14, 2026 by mrigankpawagi Owner Loading…
JavaScript: Exclude debug npm package from js/log-injection sinks JS
#3 opened Jun 10, 2026 by kiro-agent Bot Loading…
ProTip! Updated in the last three days: updated:>2026-06-27.