codeql/4.3.4.md at c653d939d97ee728b95b7ea87b8ae5e4b71578cc - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Files

github-actions[bot] 02a1b1efcb Release preparation for version 2.23.1

2025-09-16 14:14:42 +00:00

349 B

Raw Blame History

4.3.4

Minor Analysis Improvements

The second argument of the CreateTemp function, from the os package, is no longer a path-injection sink due to proper sanitization by Go.
The query "Uncontrolled data used in path expression" (go/path-injection) now detects sanitizing a path by adding os.PathSeparator or \ to the beginning.