codeql/0.1.3.md at d38ffe0ad59fe1cf0dc4e30364996abd4a77586f - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2026-06-29 08:37:04 +02:00

Files

Erik Krogh Kristensen 009ba4c280 update query id to the updated id

2022-05-25 10:55:33 +02:00

435 B

Raw Blame History

0.1.3

New Queries

The js/actions/command-injection query has been added. It highlights GitHub Actions workflows that may allow an attacker to execute arbitrary code in the workflow. The query previously existed an experimental query.
A new query js/insecure-temporary-file has been added. The query detects the creation of temporary files that may be accessible by others users. The query is not run by default.