Skip to content

Pull requests: trailofbits/codeql

New pull request New
9 Open 10 Closed
9 Open 10 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Bump thin-vec from 0.2.14 to 0.2.16 dependencies Pull requests that update a dependency file rust Pull requests that update rust code
#19 opened Apr 15, 2026 by dependabot bot Loading…
Bump rand from 0.9.1 to 0.9.3 dependencies Pull requests that update a dependency file rust Pull requests that update rust code
#18 opened Apr 14, 2026 by dependabot bot Loading…
Bump pytest from 8.3.5 to 9.0.3 in /misc/codegen dependencies Pull requests that update a dependency file python Pull requests that update python code
#17 opened Apr 14, 2026 by dependabot bot Loading…
Bump next from 15.5.10 to 15.5.15 in /javascript/ql/test/query-tests/Security/CWE-918/Request dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code JS
#16 opened Apr 13, 2026 by dependabot bot Loading…
Bump lodash from 4.17.23 to 4.18.1 in /javascript/ql/test/query-tests/Security/CWE-915/PrototypePollutingMergeCall/src-non-vulnerable-lodash dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code JS
#15 opened Apr 10, 2026 by dependabot bot Loading…
Bump lodash from 4.17.4 to 4.18.1 in /javascript/ql/test/query-tests/Security/CWE-915/PrototypePollutingMergeCall/src-vulnerable-lodash dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code JS
#14 opened Apr 9, 2026 by dependabot bot Loading…
Bump google.golang.org/grpc from 1.72.0 to 1.79.3 in /go/ql/test/library-tests/semmle/go/frameworks/SQL/bigquery dependencies Pull requests that update a dependency file documentation go Pull requests that update go code
#12 opened Mar 19, 2026 by dependabot bot Loading…
Fix dependabot config: weekly schedule, cooldown, missing ecosystems
#11 opened Feb 13, 2026 by dguido Member Loading…
2 tasks
Bump golang.org/x/crypto from 0.37.0 to 0.45.0 in /go/ql/test/library-tests/semmle/go/frameworks/SQL/bigquery dependencies Pull requests that update a dependency file documentation go Pull requests that update go code
#5 opened Nov 20, 2025 by dependabot bot Loading…
ProTip! Type g i on any issue or pull request to go back to the issue listing page.