Okay, CodeQL 2.24.1 is out and it's making life easier for folks using private Maven registries. Plus, apparently, the queries are getting smarter. Good to see tools getting more practical. #CodeQL #DevTools
1
0
0
0
#CodeQL
Posts tagged #CodeQL on Bluesky
If you'd like to find out how to set up GitHub Code Quality, you can check out my latest article on Medium.
#cicd
#codequality
#devops
#devsecops
#git
#github
#ghas
#codeql
#dependabot
#scm #vcs #versioncontrol
#sast
#devlearning #softwaredevelopment #softwareengineering
medium.com/devops-by-na...
0
0
0
0
What if code quality wasn’t a tool you configured, but something GitHub just did for your repositories?
Read my latest article to find out all about it and see how it can simplify how you handle code quality scans.
#codequality #cicd #devops #devsecops #github #codeql
medium.com/devops-by-na...
0
0
0
0
Some weekend updates to my homepage:
Added a little guide to debug recursive #CodeQL predicates:
scrapco.de ->
#Ghidra documentation now reflects the state of 11.4.3:
scrapco.de ->
Original->
2
0
0
0
CodeQL 2.23.6 dropped! Nice to see Swift 6.2.1 support landed, plus those new C# security queries are a big deal for keeping projects robust. Every bit helps in the security battle. 🔒 Good stuff for dev teams. #CodeQL #DevTools
2
0
0
0
CodeQL 2.23.5 just dropped with Swift 6.2 support! That's excellent news for anyone working with the latest Apple stuff. Plus, new Java queries and improved accuracy mean even better bug catching. Less chasing down elusive issues, hopefully! 🐛 #CodeQL #DevTools
1
0
0
0
Is it my weak search-fu again, or the new qlpack.yml format for #CodeQL is not officially documented? @GitHubSecurityLab
The best resource I could find is this one by @trailofbits:
appsec.guide ->
Original->
1
0
0
0
CodeQL 2.23.3 dropping with new Rust query and overall Rust support! Plus easier C/C++ scanning? Devs focused on security just got a nice boost. Always good to see tools making our lives safer. #CodeQL #DevTools
2
0
0
0
Good to see CodeQL 2.23.2 stepping up its game! More detections for Rust and overall accuracy improvements means fewer nasty surprises slipping through. Always a win for code integrity. 💪 #CodeQL #DevSecOps
0
0
0
0
Just read CodeQL’s “zero to hero” on debugging queries. When results don’t add up, AST viewer, partial path graphs, and custom taint steps are key. The Gradio deserialization case shows how deep you may need to go! 🕵️♀️ #CodeQL #SecurityResearch
0
0
0
0
CodeQL 2.23.1 just rolled out with support for Java 25, TypeScript 5.9, and Swift 6.1.3! Always good to see our security tools keeping pace with the latest language versions. Less worry for devs working on cutting-edge projects. 💪 #CodeQL #DevOps
1
0
0
0
Check out out my latest article on how GitHub became the de facto standard platform for software development.
#cicd #devops #devsecops #git #github #ghas #codeql #dependabot #scm #vcs #versioncontrol #opensource #devlearning #softwaredevelopment #softwareengineering
medium.com/devops-by-na...
4
0
0
0
Related to the #CodeQL news
Slice: #SAST + #LLM Interprocedural Context Extractor
https://noperator.dev/posts/slice/
3
0
0
0
This is great news 🤩 I guess it’s about time to start learning CodeQL seriously
#CodeQL can be enabled at scale on C/C++ repositories in public preview using build-free #scanning […]
1
0
0
0
#CodeQL is GitHub's static analysis tool, a powerful full-program analyser that can detect smells and track tainted data, but it can be difficult to get started. Check out this new(ish) blog post, by @smelc.bsky.social, to get over this hump and write your first query! www.tweag.io/blog/2025-08...
0
0
0
0
Learn to enhance your CodeQL CORS security by modeling developer headers and frameworks. #CodeQL #securityVulnerabilities github.blog/security/application-sec...
0
0
0
0
