github / codeql
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Trending
See what the GitHub community is most excited about today.
Spoken Language: Any
Select a spoken language
Abkhazian
Afar
Afrikaans
Akan
Albanian
Amharic
Arabic
Aragonese
Armenian
Assamese
Avaric
Avestan
Aymara
Azerbaijani
Bambara
Bashkir
Basque
Belarusian
Bengali
Bihari languages
Bislama
Bosnian
Breton
Bulgarian
Burmese
Catalan, Valencian
Chamorro
Chechen
Chichewa, Chewa, Nyanja
Chinese
Chuvash
Cornish
Corsican
Cree
Croatian
Czech
Danish
Divehi, Dhivehi, Maldivian
Dutch, Flemish
Dzongkha
English
Esperanto
Estonian
Ewe
Faroese
Fijian
Finnish
French
Fulah
Galician
Georgian
German
Greek, Modern
Guarani
Gujarati
Haitian, Haitian Creole
Hausa
Hebrew
Herero
Hindi
Hiri Motu
Hungarian
Interlingua (International Auxil...
Indonesian
Interlingue, Occidental
Irish
Igbo
Inupiaq
Ido
Icelandic
Italian
Inuktitut
Japanese
Javanese
Kalaallisut, Greenlandic
Kannada
Kanuri
Kashmiri
Kazakh
Central Khmer
Kikuyu, Gikuyu
Kinyarwanda
Kirghiz, Kyrgyz
Komi
Kongo
Korean
Kurdish
Kuanyama, Kwanyama
Latin
Luxembourgish, Letzeburgesch
Ganda
Limburgan, Limburger, Limburgish
Lingala
Lao
Lithuanian
Luba-Katanga
Latvian
Manx
Macedonian
Malagasy
Malay
Malayalam
Maltese
Maori
Marathi
Marshallese
Mongolian
Nauru
Navajo, Navaho
North Ndebele
Nepali
Ndonga
Norwegian Bokmål
Norwegian Nynorsk
Norwegian
Sichuan Yi, Nuosu
South Ndebele
Occitan
Ojibwa
Church Slavic, Old Slavonic, Chu...
Oromo
Oriya
Ossetian, Ossetic
Punjabi, Panjabi
Pali
Persian
Polish
Pashto, Pushto
Portuguese
Quechua
Romansh
Rundi
Romanian, Moldavian, Moldovan
Russian
Sanskrit
Sardinian
Sindhi
Northern Sami
Samoan
Sango
Serbian
Gaelic, Scottish Gaelic
Shona
Sinhala, Sinhalese
Slovak
Slovenian
Somali
Southern Sotho
Spanish, Castilian
Sundanese
Swahili
Swati
Swedish
Tamil
Telugu
Tajik
Thai
Tigrinya
Tibetan
Turkmen
Tagalog
Tswana
Tonga (Tonga Islands)
Turkish
Tsonga
Tatar
Twi
Tahitian
Uighur, Uyghur
Ukrainian
Urdu
Uzbek
Venda
Vietnamese
Volapük
Walloon
Welsh
Wolof
Western Frisian
Xhosa
Yiddish
Yoruba
Zhuang, Chuang
Zulu
Language: CodeQL
Select a language
Unknown languages
1C Enterprise
2-Dimensional Array
4D
ABAP
ABAP CDS
ABNF
ActionScript
Ada
Adblock Filter List
Adobe Font Metrics
Agda
AGS Script
AIDL
AL
Alloy
Alpine Abuild
Altium Designer
AMPL
AngelScript
Ant Build System
Antlers
ANTLR
ApacheConf
Apex
API Blueprint
APL
Apollo Guidance Computer
AppleScript
Arc
AsciiDoc
ASL
ASN.1
Classic ASP
ASP.NET
AspectJ
Assembly
Astro
Asymptote
ATS
Augeas
AutoHotkey
AutoIt
Avro IDL
Awk
Ballerina
BASIC
Batchfile
Beef
Befunge
Berry
BibTeX
Bicep
Bikeshed
Bison
BitBake
Blade
BlitzBasic
BlitzMax
Bluespec
Bluespec BH
Boo
Boogie
Brainfuck
BrighterScript
Brightscript
Zeek
Browserslist
C
C#
C++
C-ObjDump
C2hs Haskell
Cabal Config
Cadence
Cairo
CameLIGO
CAP CDS
Cap'n Proto
CartoCSS
Ceylon
Chapel
Charity
Checksums
ChucK
CIL
Circom
Cirru
Clarion
Clarity
Classic ASP
Clean
Click
CLIPS
Clojure
Closure Templates
Cloud Firestore Security Rules
CMake
COBOL
CODEOWNERS
CodeQL
CoffeeScript
ColdFusion
ColdFusion CFC
COLLADA
Common Lisp
Common Workflow Language
Component Pascal
CoNLL-U
Cool
Coq
Cpp-ObjDump
Creole
Crystal
CSON
Csound
Csound Document
Csound Score
CSS
CSV
Cuda
CUE
Cue Sheet
cURL Config
Curry
CWeb
Cycript
Cypher
Cython
D
D-ObjDump
D2
Dafny
Darcs Patch
Dart
DataWeave
Debian Package Control File
DenizenScript
desktop
Dhall
Diff
DIGITAL Command Language
dircolors
DirectX 3D File
DM
DNS Zone
Dockerfile
Dogescript
Dotenv
DTrace
Dylan
E
E-mail
Eagle
Earthly
Easybuild
EBNF
eC
Ecere Projects
ECL
ECLiPSe
Ecmarkup
EdgeQL
EditorConfig
Edje Data Collection
edn
Eiffel
EJS
Elixir
Elm
Elvish
Elvish Transcript
Emacs Lisp
EmberScript
E-mail
EQ
Erlang
Euphoria
F#
F*
Factor
Fancy
Fantom
Faust
Fennel
FIGlet Font
Filebench WML
Filterscript
fish
Fluent
FLUX
Formatted
Forth
Fortran
Fortran Free Form
FreeBasic
FreeMarker
Frege
Futhark
G-code
Game Maker Language
GAML
GAMS
GAP
GCC Machine Description
GDB
GDScript
GEDCOM
Gemfile.lock
Gemini
Genero 4gl
Genero per
Genie
Genshi
Gentoo Ebuild
Gentoo Eclass
Gerber Image
Gettext Catalog
Gherkin
Git Attributes
Git Config
Git Revision List
Gleam
Glimmer JS
GLSL
Glyph
Glyph Bitmap Distribution Format
GN
Gnuplot
Go
Go Checksums
Go Module
Go Workspace
Godot Resource
Golo
Gosu
Grace
Gradle
Gradle Kotlin DSL
Grammatical Framework
Graph Modeling Language
GraphQL
Graphviz (DOT)
Groovy
Groovy Server Pages
GSC
Hack
Haml
Handlebars
HAProxy
Harbour
Haskell
Haxe
HCL
HiveQL
HLSL
HOCON
HolyC
hoon
Hosts File
HTML
Jinja
HTML+ECR
HTML+EEX
HTML+ERB
HTML+PHP
HTML+Razor
HTTP
HXML
Hy
HyPhy
IDL
Idris
Ignore List
IGOR Pro
ImageJ Macro
Imba
Inform 7
INI
Ink
Inno Setup
Io
Ioke
IRC log
Isabelle
Isabelle ROOT
J
Janet
JAR Manifest
Jasmin
Java
Java Properties
Java Server Pages
JavaScript
JavaScript+ERB
JCL
Jest Snapshot
JetBrains MPS
JFlex
Jinja
Jison
Jison Lex
Jolie
jq
JSON
JSON with Comments
JSON5
JSONiq
JSONLD
Jsonnet
Julia
Jupyter Notebook
Just
Kaitai Struct
KakouneScript
KerboScript
KiCad Layout
KiCad Legacy Layout
KiCad Schematic
Kickstart
Kit
Kotlin
KRL
Kusto
kvlang
LabVIEW
Lark
Lasso
Latte
Lean
Lean 4
Less
Lex
LFE
LigoLANG
LilyPond
Limbo
Linker Script
Linux Kernel Module
Liquid
Literate Agda
Literate CoffeeScript
Literate Haskell
LiveScript
LLVM
Logos
Logtalk
LOLCODE
LookML
LoomScript
LSL
LTspice Symbol
Lua
M
M4
M4Sugar
Macaulay2
Makefile
Mako
Markdown
Marko
Mask
Mathematica
MATLAB
Maven POM
Max
MAXScript
mcfunction
MDX
Wikitext
Mercury
Mermaid
Meson
Metal
Microsoft Developer Studio Project
Microsoft Visual Studio Solution
MiniD
MiniYAML
Mint
Mirah
mIRC Script
MLIR
Modelica
Modula-2
Modula-3
Module Management System
Monkey
Monkey C
Moocode
MoonScript
Motoko
Motorola 68K Assembly
Move
MQL4
MQL5
MTML
MUF
mupad
Muse
Mustache
Myghty
nanorc
Nasal
NASL
NCL
Nearley
Nemerle
NEON
nesC
NetLinx
NetLinx+ERB
NetLogo
NewLisp
Nextflow
Nginx
Nim
Ninja
Nit
Nix
NL
NPM Config
NSIS
Nu
NumPy
Nunjucks
Nushell
NWScript
OASv2-json
OASv2-yaml
OASv3-json
OASv3-yaml
ObjDump
Object Data Instance Notation
Objective-C
Objective-C++
Objective-J
ObjectScript
OCaml
Odin
Omgrofl
ooc
Opa
Opal
Open Policy Agent
OpenAPI Specification v2
OpenAPI Specification v3
OpenCL
OpenEdge ABL
OpenQASM
OpenRC runscript
OpenSCAD
OpenStep Property List
OpenType Feature File
Option List
Org
Ox
Oxygene
Oz
P4
Pact
Pan
Papyrus
Parrot
Parrot Assembly
Parrot Internal Representation
Pascal
Pawn
PDDL
PEG.js
Pep8
Perl
PHP
Pic
Pickle
PicoLisp
PigLatin
Pike
PlantUML
PLpgSQL
PLSQL
Pod
Pod 6
PogoScript
Polar
Pony
Portugol
PostCSS
PostScript
POV-Ray SDL
PowerBuilder
PowerShell
Praat
Prisma
Processing
Procfile
Proguard
Prolog
Promela
Propeller Spin
Protocol Buffer
Protocol Buffer Text Format
Public Key
Pug
Puppet
Pure Data
PureBasic
PureScript
Pyret
Python
Python console
Python traceback
q
Q#
QMake
QML
Qt Script
Quake
R
Racket
Ragel
Raku
RAML
Rascal
Raw token data
RBS
RDoc
Readline Config
REALbasic
Reason
ReasonLIGO
Rebol
Record Jar
Red
Redcode
Redirect Rules
Regular Expression
Ren'Py
RenderScript
ReScript
reStructuredText
REXX
Rez
Rich Text Format
Ring
Riot
RMarkdown
RobotFramework
robots.txt
Roff
Roff Manpage
Rouge
RouterOS Script
RPC
RPGLE
RPM Spec
Ruby
RUNOFF
Rust
Sage
SaltStack
SAS
Sass
Scala
Scaml
Scenic
Scheme
Scilab
SCSS
sed
Self
SELinux Policy
ShaderLab
Shell
ShellCheck Config
ShellSession
Shen
Sieve
Simple File Verification
Singularity
Slash
Slice
Slim
Smali
Smalltalk
Smarty
Smithy
SmPL
SMT
Snakemake
Solidity
Soong
SourcePawn
SPARQL
Spline Font Database
SQF
SQL
SQLPL
Squirrel
SRecode Template
SSH Config
Stan
Standard ML
STAR
Starlark
Stata
STL
STON
StringTemplate
Stylus
SubRip Text
SugarSS
SuperCollider
Svelte
SVG
Sway
Sweave
Swift
SWIG
SystemVerilog
Talon
Tcl
Tcsh
Tea
Terra
Terraform Template
TeX
Texinfo
Text
Textile
TextMate Properties
Thrift
TI Program
TL-Verilog
TLA
Toit
TOML
TSQL
TSV
TSX
Turing
Turtle
Twig
TXL
Type Language
TypeScript
Typst
Unified Parallel C
Unity3D Asset
Unix Assembly
Uno
UnrealScript
UrWeb
V
Vala
Valve Data Format
VBA
VBScript
VCL
Velocity Template Language
Verilog
VHDL
Vim Help File
Vim Script
Vim Snippet
Visual Basic .NET
Visual Basic .NET
Visual Basic 6.0
Volt
Vue
Vyper
Wavefront Material
Wavefront Object
WDL
Web Ontology Language
WebAssembly
WebAssembly Interface Type
WebIDL
WebVTT
Wget Config
WGSL
Whiley
Wikitext
Win32 Message File
Windows Registry Entries
wisp
Witcher Script
Wollok
World of Warcraft Addon Data
Wren
X BitMap
X Font Directory Index
X PixMap
X10
xBase
XC
XCompose
XML
XML Property List
Xojo
Xonsh
XPages
XProc
XQuery
XS
XSLT
Xtend
Yacc
YAML
YANG
YARA
YASnippet
Yul
ZAP
Zeek
ZenScript
Zephir
Zig
ZIL
Zimpl
Date range: Today
Adjust time span
webraybtl / CodeQLpy
CodeQLpy是一款基于CodeQL实现的半自动化代码审计工具,目前仅支持java语言。实现从源码反编译,数据库生成,脆弱性发现的全过程,可以辅助代码审计人员快速定位源码可能存在的漏洞。
