CodeQL - Query language

home code edit

CodeQL is a query language created in 2018 by Pavel Avgustinov.

Source code:

git clone https://github.com/github/codeql

#521on PLDB

6Years Old

4kRepos

CodeQL let's you query code as if it were data.

CodeQL website
CodeQL is developed on GitHub and has 5,035 stars
There are at least 3,559 CodeQL repos on GitHub
CodeQL first developed in GitHub
file extensions for CodeQL include ql and qll
The Google BigQuery Public Dataset GitHub snapshot shows 23 users using CodeQL in 25 repos on GitHub
Read more about CodeQL on the web: 1.

Example from the web:

from DataFlow::PathNode source, DataFlow::PathNode sink, UnsafeDeserializationConfig conf
  
          where conf.hasFlowPath(source, sink)
  
          select sink.getNode().(UnsafeDeserializationSink).getMethodAccess(), source, sink,
      "Unsafe deserialization of $@.", source.getNode(), "user input"