Skip to content

Merge upstream codeql-cli-2.22.3 #20841

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
chanel-y wants to merge 1,171 commits into from

resolved merge conflicts, accepting incoming change

a26da74
Select commit
Loading
Failed to load commit list.
Closed

Merge upstream codeql-cli-2.22.3 #20841

resolved merge conflicts, accepting incoming change
a26da74
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL failed Nov 14, 2025 in 2s

1 configuration not found

Warning: Code scanning may not have found all the alerts introduced by this pull request, because 1 configuration present on refs/heads/main was not found:

Actions workflow (cpp-swift-analysis.yml)

  • ⌛  .github/workflows/cpp-swift-analysis.yml:CodeQL-Build

New alerts in code changed by this pull request

Security Alerts:

  • 4 medium

Other Alerts:

  • 6 errors
  • 197 warnings

Alerts not introduced by this pull request might have been detected because the code changes were too large.

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 16 in .github/workflows/microsoft-codeql-pack-publish.yml

See this annotation in the file changed.

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {}

Check warning on line 35 in .github/workflows/microsoft-codeql-pack-publish.yml

See this annotation in the file changed.

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Check warning on line 97 in .github/workflows/microsoft-codeql-pack-publish.yml

See this annotation in the file changed.

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Check warning on line 151 in .github/workflows/microsoft-codeql-pack-publish.yml

See this annotation in the file changed.

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Check warning on line 8 in cpp/ql/lib/semmle/code/cpp/interproccontrolflow/internal/ControlFlowSpecific.qll

See this annotation in the file changed.

Code scanning / CodeQL

Names only differing by case Warning

Private is only different by casing from private that is used elsewhere for modules.

Check warning on line 25 in cpp/ql/src/Likely Bugs/Leap Year/Adding365DaysPerYear.ql

See this annotation in the file changed.

Code scanning / CodeQL

Alert message style violation Warning

Don't repeat the alert location as a link.

Check warning on line 17 in cpp/ql/src/Likely Bugs/Leap Year/AntiPattern5InvalidLeapYearCheck.ql

See this annotation in the file changed.

Code scanning / CodeQL

Alert message style violation Warning

Alert message should end with a full stop.

Check warning on line 100 in cpp/ql/src/Likely Bugs/Leap Year/LeapYear.qll

See this annotation in the file changed.

Code scanning / CodeQL

Use of 'if' with a 'none()' branch. Warning

Use a conjunction instead.

Check warning on line 109 in cpp/ql/src/Likely Bugs/Leap Year/LeapYear.qll

See this annotation in the file changed.

Code scanning / CodeQL

Expression can be replaced with a cast Warning

The assignment in the exists(..) is redundant.

Check warning on line 116 in cpp/ql/src/Likely Bugs/Leap Year/LeapYear.qll

See this annotation in the file changed.

Code scanning / CodeQL

Class QLDoc style. Warning

The QLDoc for a class should start with 'A', 'An', or 'The'.

Check warning on line 294 in cpp/ql/src/Likely Bugs/Leap Year/LeapYear.qll

See this annotation in the file changed.

Code scanning / CodeQL

Predicate QLDoc style. Warning

The QLDoc for a predicate without a result should start with 'Holds'.

Check warning on line 508 in cpp/ql/src/Likely Bugs/Leap Year/LeapYear.qll

See this annotation in the file changed.

Code scanning / CodeQL

Class QLDoc style. Warning

The QLDoc for a class should start with 'A', 'An', or 'The'.

Check warning on line 517 in cpp/ql/src/Likely Bugs/Leap Year/LeapYear.qll

See this annotation in the file changed.

Code scanning / CodeQL

Class QLDoc style. Warning

The QLDoc for a class should start with 'A', 'An', or 'The'.

Check warning on line 28 in cpp/ql/src/Likely Bugs/Leap Year/LeapYearConditionalLogic.ql

See this annotation in the file changed.

Code scanning / CodeQL

Alert message style violation Warning

Alert message should end with a full stop.

Check warning on line 55 in cpp/ql/src/Likely Bugs/Leap Year/UnsafeArrayForDaysOfYear.ql

See this annotation in the file changed.

Code scanning / CodeQL

Omittable 'exists' variable Warning

This exists variable can be omitted by using a don't-care expression
in this argument
Loading
.

Check warning on line 31 in cpp/ql/src/Microsoft/Likely Bugs/Conversion/BadOverflowGuard.ql

See this annotation in the file changed.

Code scanning / CodeQL

Alert message style violation Warning

Alert message should end with a full stop.

Check warning on line 12 in cpp/ql/src/Microsoft/Likely Bugs/Drivers/IncorrectUsageOfRtlCompareMemory.ql

See this annotation in the file changed.

Code scanning / CodeQL

Missing security metadata Warning

This query file is missing a @security-severity tag.

Check warning on line 69 in cpp/ql/src/Microsoft/Likely Bugs/Drivers/IncorrectUsageOfRtlCompareMemory.ql

See this annotation in the file changed.

Code scanning / CodeQL

Alert message style violation Warning

Don't repeat the alert location as a link.

Check warning on line 9 in cpp/ql/src/Microsoft/Likely Bugs/SizeOfMisuse/ArgumentIsSizeofOrOperation.ql

See this annotation in the file changed.

Code scanning / CodeQL

Missing security metadata Warning

This query file is missing a @security-severity tag.

Check warning on line 61 in cpp/ql/src/Microsoft/Likely Bugs/SizeOfMisuse/ArgumentIsSizeofOrOperation.ql

See this annotation in the file changed.

Code scanning / CodeQL

Alert message style violation Warning

Don't repeat the alert location as a link.

Check warning on line 9 in cpp/ql/src/Microsoft/Likely Bugs/SizeOfMisuse/SizeOfConstIntMacro.ql

See this annotation in the file changed.

Code scanning / CodeQL

Missing security metadata Warning

This query file is missing a @security-severity tag.

Check warning on line 27 in cpp/ql/src/Microsoft/Likely Bugs/SizeOfMisuse/SizeOfConstIntMacro.ql

See this annotation in the file changed.

Code scanning / CodeQL

Using 'toString' in query logic Warning

Query logic depends on implementation of 'toString'.

Check warning on line 54 in cpp/ql/src/Microsoft/Likely Bugs/SizeOfMisuse/SizeOfConstIntMacro.ql

See this annotation in the file changed.

Code scanning / CodeQL

Alert message style violation Warning

Don't repeat the alert location as a link.

Check warning on line 40 in cpp/ql/src/Microsoft/Likely Bugs/SizeOfMisuse/SizeOfTypeUtils.qll

See this annotation in the file changed.

Code scanning / CodeQL

Class QLDoc style. Warning

The QLDoc for a class should start with 'A', 'An', or 'The'.

Check warning on line 10 in cpp/ql/src/Microsoft/Security/Cryptography/BannedEncryption.ql

See this annotation in the file changed.

Code scanning / CodeQL

Missing security metadata Warning

This query file is missing a @security-severity tag.