GitHub

ececiu/exercise-reference-a-codeql-query

A grading script exists under .github/workflows/grading.yml. You do not need to use this workflow for any purpose and altering its contents will affect the repository ...
GitHub

iammainul/-exercise-reference-a-codeql-query

A grading script exists under .github/workflows/grading.yml. You do not need to use this workflow for any purpose and altering its contents will affect the repository ...
Security Boulevard

Introducing mrva, a terminal-first approach to CodeQL multi-repo variant analysis

In 2023 GitHub introduced CodeQL multi-repository variant analysis (MRVA). This functionality lets you run queries across thousands of projects using pre-built databases and drastically reduces the ...
InfoWorld

GitHub makes CodeQL free for research and open source

CodeQL, a semantic code analysis engine and query tool for finding security vulnerabilities across a codebase, has been made available for free by GitHub for anyone to use in research or to analyze ...
Visual Studio Magazine

Microsoft's Tools to Fight Solorigate Attack Are Now Open Source

Microsoft open sourced homegrown tools it used to check its systems for code related to the recent massive breach of supply chains that the company has named Solorigate. Redmond has devoted massive ...
Bleeping Computer

Microsoft shares CodeQL queries to scan code for SolarWinds-like implants

Microsoft has open-sourced CodeQL queries that developers can use to scan source code for malicious implants matching the SolarWinds supply-chain attack. In December, it was disclosed that threat ...