trganda / qlqueries

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

CodeQL Quickstart

A step by step tutorial for using CodeQL to query your code.

Table of Contents


Introduction of CodeQL

CodeQL is the analysis engine used by developers to automate security checks, and by security researchers to perform variant analysis.

In CodeQL, code is treated like data. Security vulnerabilities, bugs, and other errors are modeled as queries that can be executed against databases extracted from code. You can run the standard CodeQL queries, written by GitHub researchers and community contributors, or write your own to use in custom analyses. Queries that find potential bugs highlight the result directly in the source file.

Articles

  1. https://securitylab.github.com/research/apache-dubbo/

About

License:Apache License 2.0


Languages

Language:CodeQL 100.0%