A curated list of awesome CodeQL resources.
☆74Feb 10, 2026Updated 2 weeks ago
Alternatives and similar repositories for awesome-codeql
Users that are interested in awesome-codeql are comparing it to the libraries listed below
Sorting:
- Grab some/all of CodeQL CLI binary, QL library, VSCode starter workspace, VSCode and VSCode QL extension☆11Jun 12, 2025Updated 8 months ago
- A GitHub Action that helps remove GHAS Licences☆12Jul 15, 2024Updated last year
- GitHub Advanced Security Python Toolkit☆14Feb 10, 2026Updated 2 weeks ago
- GH CLI CodeQL Scan Extension☆20Sep 4, 2025Updated 5 months ago
- ☆75Feb 11, 2026Updated 2 weeks ago
- Action to detect if a secret is initially detected in a PR commit☆11Jun 19, 2023Updated 2 years ago
- ☆10Oct 16, 2025Updated 4 months ago
- CodeQL Guide☆11Jan 12, 2022Updated 4 years ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆59Updated this week
- tree-sitter grammar for the CodeQL language☆34Aug 29, 2025Updated 6 months ago
- GitHub Code Scanning Mean Time to Remediate (GCSMTTR)☆14Jun 27, 2023Updated 2 years ago
- This repository contains CodeQL queries and libraries which support various Coding Standards.☆186Updated this week
- Present ZAProxy results in GitHub Advanced Security☆18May 24, 2024Updated last year
- Automatically set the CodeQL matrix job using the languages in your repository.☆17Jan 8, 2026Updated last month
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆158Jun 17, 2024Updated last year
- CodeQL queries developed by Trail of Bits☆147Updated this week
- PyCes (Python Code Scanner) - Enhanced Security Static Analysis Tool for Python☆11Apr 18, 2019Updated 6 years ago
- This repository will list GitHub Partners that have self validated their storage solutions on GHES.☆19Aug 17, 2024Updated last year
- GitHub Secret Scanning Auto Remediator (GSSAR)☆47Jan 1, 2026Updated last month
- GitHub Advance Security Compliance Action��☆134Dec 14, 2022Updated 3 years ago
- ☆83Apr 26, 2024Updated last year
- Examples of Custom Secret Scanning Patterns for use with GitHub Secret Protection/Advanced Security☆172Feb 2, 2026Updated 3 weeks ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆61Apr 16, 2025Updated 10 months ago
- Decrypt stored WinSCP Passwords.☆24May 4, 2015Updated 10 years ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆35Jan 25, 2026Updated last month
- The Power is a bunch of test scripts that share a single centralized configuration file for use with GitHub API's. It's commonly used by …☆209Feb 21, 2026Updated last week
- 就是一个练习RMI反序列化的最简单环境☆30Jan 8, 2022Updated 4 years ago
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Feb 9, 2026Updated 2 weeks ago
- Binaries for the CodeQL CLI☆943Feb 20, 2026Updated last week
- Mayhem example templates for programming languages and fuzzers that you love!☆36Oct 27, 2025Updated 4 months ago
- An OIDC client to retrieve a GitHub API scoped token from within an Actions workflow☆33Apr 19, 2024Updated last year
- CodeQL zero to hero blog post series challenges☆163Sep 29, 2025Updated 5 months ago
- 收集规则☆30Dec 8, 2022Updated 3 years ago
- Slides, exploits and PoCs :)☆94Jan 12, 2019Updated 7 years ago
- ☆15Feb 7, 2025Updated last year
- Smartcard APDU interception and MITM for one smartcard model☆38Mar 2, 2018Updated 7 years ago
- Microsoft Visual C++ Code Analysis GitHub Action☆46Jul 19, 2023Updated 2 years ago
- CVE-2022-26135☆11Jul 12, 2022Updated 3 years ago
- Good code.☆17Nov 18, 2018Updated 7 years ago