If you are someone who writes/manages GitHub actions. This piece of writing is a must-read. How to secure your GitHub Actions workflows with CodeQL:

Day 124 - Bug Bounty. - Kept hunting on a target today and played around with CodeQL.- Learned about Server-Side Prototype Pollution .- Found these resources to be a nice introduction to SSPP:. Total earned so far: $2525.

Join us this Saturday as we explore API Security with GitHub CodeQL with Emmanuella Okorie (@pentester__), an amazing Software Engineer 🔥. Date: This Saturday.Topic: API Security with GitHub CodeQL.Time: 6 PM WAT. Come ready to learn, ask questions, and level up your API

Implementing a custom #CodeQL extractor + libs for an unsupported language is pure torture but hey I found some bugs already so I guess it’s worth it

Happy to share that @pwntester and I will be presenting our talk "Finding vulnerabilities at scale in Jenkins plugins with CodeQL" at @BarcelonaBsides, happening on May 29-30. Join us to learn about CodeQL, vulnerability research at scale, and the Jenkins plugin ecosystem!

Next week I'll be at @ekoparty talking about vulnerabilities in GitHub Actions and how I extended CodeQL to find them at scale. I've wanted to go to Eko for years - it's a dream come true, and on their 20th anniversary no less! So excited!

How to secure your GitHub Actions workflows with CodeQL. Dive into this actionable supply chain security research from @pwntester . This work resulted in dozens of high impact supply chain findings and, most importantly, added CodeQL support for your GitHub workflows!

so GitHub actions ubuntu-latest comes with:.- a bunch of docker images (e.g. node).- android sdk ???????.- haskell compiler ????.- dotnet ???.- codeql cache. which leaves you with only ~21gb of free space. fun fact you can delete it and bump that to ~38gb!!!. this also begs the

Last year I played Realworld CTF and solved "Protected by JavaSE" together with I-Al-Istannen. We exploited XXE in @github's CodeQL using the unintended CVE-2024-25129. I wrote about the (un)intended solution and how to use CodeQL to find bugs in CodeQL 😂.

La semana que viene estare por la @ekoparty hablando de vulnerabilidades en GitHub Actions y como extendi CodeQL para encontrarlas a escala. Llevo años queriendo ir a la Eko, sueño cumplido y encima en su 20 aniversario! Muchas ganas!

CodeQL support for Rust now in public preview 🦀. #rust #rustlang #programming .

Another day, another secret in an artifact leads to potential doom. @Praetorian_Labs found a token valid for only 1 SECOND in a @GitHub CodeQL debug artifact. They raced it, got write perms, and could've poisoned the v3 tag used by HUNDREDS OF THOUSANDS of repos. 🔗👇

📣 Copilot Autofix is now available for free for open source!. Fix vulnerabilities as fast as they're found⚡ Check it out!.

CodeQL support for Rust now in public preview

さっそくGitHub Advanced SecurityのCode scanning alertsのCodeQL使ってみた！.✅セキュリティタブ.✅Code scanning alerts.✅CodeQL analysisでAdvancedを選択.✅ワークフローをコミット.でいけました！！！.次は脆弱性をあえて作って実験してみたい

Day 121 - Bug Bounty . - Wasted 9 hours on CodeQL today. Pain.- Tomorrow will be better hopefully.- If someone is dealing with some issues, this might help:. Total earned so far: $2525.

An introduction to CodeQL and data flow analysis.

Amazing timing from John publishing this research on Secrets in Github Actions Workflow Logs, including a cool exploit of a 2s exposure window against CodeQL.

Use CodeQL to detect vulnerabilities?. Until recently, there was a big one hiding in plain sight. Researcher John Stawinski discovered a vulnerability (now patched) in the GitHub Action used by CodeQL. Check out the full article from DevClass here: