Skip to content

Issues: github/codeql-coding-standards

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
22 Open 44 Closed
22 Open 44 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Add support for tss_t thread local objects in Objects.qll Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address Impact-Low Standard-MISRA-C
#877 opened Mar 27, 2025 by MichaelRFairhurst
1
RULE-18-1: Picky about how pointers are tracked, doesn't consider derefs before 1 from end, or array-to-pointer conversions Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. false-negative An issue representing a false negative report. Impact-Medium Standard-AUTOSAR Standard-MISRA-C
#840 opened Jan 16, 2025 by MichaelRFairhurst
A15-4-4: Query incorrectly alerts functions that raise/can raise exceptions Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Low
#824 opened Dec 17, 2024 by rak3-sh
@rak3-sh
DCL53-CPP: Reports non syntactically ambiguous object declarations Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Low
#812 opened Dec 6, 2024 by lcartey
A12-8-6: Compiler generated special functions are not consistently flagged Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Medium
#811 opened Dec 5, 2024 by lcartey
RULE-8-4: Improve detection of compatible types Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Low Standard-CERT-C
#780 opened Oct 24, 2024 by lcartey
@MichaelRFairhurst
A0-1-1: initialization of constexpr used as NTTP is detected as useless assignment Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Medium Standard-AUTOSAR user-report Issue reported by an end user of CodeQL Coding Standards
#728 opened Oct 3, 2024 by fjatWbyT
@lcartey
A2-7-3: documented type alias to template instantiation considered undocumented Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Low Standard-AUTOSAR user-report Issue reported by an end user of CodeQL Coding Standards
#709 opened Sep 22, 2024 by fjatWbyT
2
A15-4-4: Functions that allocate are considered non-throwing Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Medium Standard-AUTOSAR user-report Issue reported by an end user of CodeQL Coding Standards
#662 opened Aug 13, 2024 by gg-sr
1
STR34-C: Rule improvements Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-High Standard-CERT-C
#577 opened May 1, 2024 by lcartey
@lcartey
RULE-21-15: Improve detection of compatible types Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Medium Standard-MISRA-C
#573 opened Apr 25, 2024 by lcartey
@MichaelRFairhurst
A2-7-3: template function prototypes with comments are not correctly detected Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-High Phase III Standard-AUTOSAR user-report Issue reported by an end user of CodeQL Coding Standards
#528 opened Feb 9, 2024 by rvermeulen
1
DCL30-C: Replace implementation with cpp/return-stack-allocated-memory Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Medium Standard-CERT-C
#495 opened Jan 19, 2024 by lcartey
A5-6-1: Replace with INT33-C implementation Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-High Standard-AUTOSAR
#492 opened Jan 17, 2024 by lcartey
@lcartey
A4-7-1: Incorporate CERT C integer data loss rules Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-High Standard-AUTOSAR
#491 opened Jan 17, 2024 by lcartey
@lcartey
A16-2-2: Consider TypeMentions for useless includes Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Low Standard-AUTOSAR user-report Issue reported by an end user of CodeQL Coding Standards
#422 opened Nov 3, 2023 by lcartey
@knewbury01
MEM53-CPP: False positive due to flow through realloc Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Low Stardard-CERT-C++
#420 opened Oct 31, 2023 by MathiasVP
1
A15-4-2: Ignore elided calls when calculating the exception graph Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-High Standard-AUTOSAR top-25-fps user-report Issue reported by an end user of CodeQL Coding Standards
#158 opened Jan 6, 2023 by lcartey
@lcartey
3
M0-2-1: Consider expanding to inter-procedural overlapping analysis Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Low Standard-AUTOSAR
#120 opened Nov 3, 2022 by lcartey
A1-1-1: Implementation of Rule only looks for deprecated features and not use of implementation extensions Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-High Standard-AUTOSAR user-report Issue reported by an end user of CodeQL Coding Standards
#86 opened Sep 16, 2022 by rcseacord
@lcartey
1
CTR50-CPP: Failed to compute the proper range for a resized vector. Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address false positive/false negative An issue related to observed false positives or false negatives. Impact-Low Stardard-CERT-C++ user-report Issue reported by an end user of CodeQL Coding Standards
#66 opened Aug 20, 2022 by MFaisalZaki
1
FIO32-C: enhance the query to support secure fopen usage pattern Difficulty-Medium A false positive or false negative report which is expected to take 1-5 days effort to address enhancement New feature or request Impact-Low Standard-CERT-C
#12 opened Jul 15, 2022 by mbaluda
ProTip! Exclude everything labeled bug with -label:bug.