Skip to content

General issue - RandonUsedOnce.ql treated as a critical security issue #7601

Open
@garethhurley

Description

@garethhurley

Description of the issue
The following query is reported in Github alerts as a Critical severity security issue (with a severity of 9.8).
However there is no 'security' tag.

The impact is that other tools (e.g. LGTM) that parse the query differently do not treat this as a security issue. Can this be clarified?

https://github.com/github/codeql/blob/main/java/ql/src/Likely%20Bugs/Arithmetic/RandomUsedOnce.ql

Metadata

Metadata

Assignees

No one assigned

    Labels

    questionFurther information is requested

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions