René's URL Explorer Experiment

Title: Java: Improve modelling of Spring requests, flow steps and XSS sinks by lcartey · Pull Request #3653 · github/codeql · GitHub

Open Graph Title: Java: Improve modelling of Spring requests, flow steps and XSS sinks by lcartey · Pull Request #3653 · github/codeql

X Title: Java: Improve modelling of Spring requests, flow steps and XSS sinks by lcartey · Pull Request #3653 · github/codeql

Description: As part of some recent customer engagements I spent some time improving our modelling of Spring sources, flow steps and XSS sink. The identification of trusted/untrusted data and XSS sinks is prima...

Open Graph Description: As part of some recent customer engagements I spent some time improving our modelling of Spring sources, flow steps and XSS sink. The identification of trusted/untrusted data and XSS sinks is prima...

X Description: As part of some recent customer engagements I spent some time improving our modelling of Spring sources, flow steps and XSS sink. The identification of trusted/untrusted data and XSS sinks is prima...

Opengraph URL: https://github.com/github/codeql/pull/3653

X: @github

direct link

Domain: github.com

route-pattern	/_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format)
route-controller	voltron_pull_requests_fragments
route-action	pull_request_layout
fetch-nonce	v2:625b59bc-cd0d-04de-a6fa-26e019ac2dfe
current-catalog-service-hash	ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-id	B740:26DD3A:36EFEAD:496A438:696F0F03
html-safe-nonce	9a0aa77b7da991c1a2b68f8ed93ba73fc46ec071df0286ed01b08e506f4de4b5
visitor-payload	eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJCNzQwOjI2REQzQTozNkVGRUFEOjQ5NkE0Mzg6Njk2RjBGMDMiLCJ2aXNpdG9yX2lkIjoiMzgyMzg0Nzk4ODU2Mzc0MjQ2NyIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmac	e60b037a256df01e71616c897ba4e47466e5e4e337ac6327270be4d88ce4761c
hovercard-subject-tag	pull_request:431683107
github-keyboard-shortcuts	repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verification	Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-url	https://collector.github.com/github/collect
analytics-location	///voltron/pull_requests_fragments/pull_request_layout
fb:app_id	1401488693436528
apple-itunes-app	app-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/github/codeql/3653/pull_request_layout
twitter:image	https://opengraph.githubassets.com/b90b0128673573b8bf8841851f48ab7a05de2d48ab1f05479daa5594857e543c/github/codeql/pull/3653
twitter:card	summary_large_image
og:image	https://opengraph.githubassets.com/b90b0128673573b8bf8841851f48ab7a05de2d48ab1f05479daa5594857e543c/github/codeql/pull/3653
og:image:alt	As part of some recent customer engagements I spent some time improving our modelling of Spring sources, flow steps and XSS sink. The identification of trusted/untrusted data and XSS sinks is prima...
og:image:width	1200
og:image:height	600
og:site_name	GitHub
og:type	object
og:author:username	lcartey
hostname	github.com
expected-hostname	github.com
None	b278ad162d35332b6de714dfb005de04386c4d92df6475522bef910f491a35ee
turbo-cache-control	no-preview
go-import	github.com/github/codeql git https://github.com/github/codeql.git
octolytics-dimension-user_id	9919
octolytics-dimension-user_login	github
octolytics-dimension-repository_id	143040428
octolytics-dimension-repository_nwo	github/codeql
octolytics-dimension-repository_public	true
octolytics-dimension-repository_is_fork	false
octolytics-dimension-repository_network_root_id	143040428
octolytics-dimension-repository_network_root_nwo	github/codeql
turbo-body-classes	logged-out env-production page-responsive
disable-turbo	false
browser-stats-url	https://api.github.com/_private/browser/stats
browser-errors-url	https://api.github.com/_private/browser/errors
release	39aed5006635ab6f45e6b77d23e73b08a00272a3
ui-target	full
theme-color	#1e2327
color-scheme	light dark

Links:

Skip to content	https://github.com/github/codeql/pull/3653#start-of-content
	https://github.com/
Sign in	https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgithub%2Fcodeql%2Fpull%2F3653
GitHub CopilotWrite better code with AI	https://github.com/features/copilot
GitHub SparkBuild and deploy intelligent apps	https://github.com/features/spark
GitHub ModelsManage and compare prompts	https://github.com/features/models
MCP RegistryNewIntegrate external tools	https://github.com/mcp
ActionsAutomate any workflow	https://github.com/features/actions
CodespacesInstant dev environments	https://github.com/features/codespaces
IssuesPlan and track work	https://github.com/features/issues
Code ReviewManage code changes	https://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilities	https://github.com/security/advanced-security
Code securitySecure your code as you build	https://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they start	https://github.com/security/advanced-security/secret-protection
Why GitHub	https://github.com/why-github
Documentation	https://docs.github.com
Blog	https://github.blog
Changelog	https://github.blog/changelog
Marketplace	https://github.com/marketplace
View all features	https://github.com/features
Enterprises	https://github.com/enterprise
Small and medium teams	https://github.com/team
Startups	https://github.com/enterprise/startups
Nonprofits	https://github.com/solutions/industry/nonprofits
App Modernization	https://github.com/solutions/use-case/app-modernization
DevSecOps	https://github.com/solutions/use-case/devsecops
DevOps	https://github.com/solutions/use-case/devops
CI/CD	https://github.com/solutions/use-case/ci-cd
View all use cases	https://github.com/solutions/use-case
Healthcare	https://github.com/solutions/industry/healthcare
Financial services	https://github.com/solutions/industry/financial-services
Manufacturing	https://github.com/solutions/industry/manufacturing
Government	https://github.com/solutions/industry/government
View all industries	https://github.com/solutions/industry
View all solutions	https://github.com/solutions
AI	https://github.com/resources/articles?topic=ai
Software Development	https://github.com/resources/articles?topic=software-development
DevOps	https://github.com/resources/articles?topic=devops
Security	https://github.com/resources/articles?topic=security
View all topics	https://github.com/resources/articles
Customer stories	https://github.com/customer-stories
Events & webinars	https://github.com/resources/events
Ebooks & reports	https://github.com/resources/whitepapers
Business insights	https://github.com/solutions/executive-insights
GitHub Skills	https://skills.github.com
Documentation	https://docs.github.com
Customer support	https://support.github.com
Community forum	https://github.com/orgs/community/discussions
Trust center	https://github.com/trust-center
Partners	https://github.com/partners
GitHub SponsorsFund open source developers	https://github.com/sponsors
Security Lab	https://securitylab.github.com
Maintainer Community	https://maintainers.github.com
Accelerator	https://github.com/accelerator
Archive Program	https://archiveprogram.github.com
Topics	https://github.com/topics
Trending	https://github.com/trending
Collections	https://github.com/collections
Enterprise platformAI-powered developer platform	https://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security features	https://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI features	https://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 support	https://github.com/premium-support
Pricing	https://github.com/pricing
Search syntax tips	https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentation	https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in	https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgithub%2Fcodeql%2Fpull%2F3653
Sign up	https://github.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fvoltron%2Fpull_requests_fragments%2Fpull_request_layout&source=header-repo&source_repo=github%2Fcodeql
Reload	https://github.com/github/codeql/pull/3653
Reload	https://github.com/github/codeql/pull/3653
Reload	https://github.com/github/codeql/pull/3653
github	https://github.com/github
codeql	https://github.com/github/codeql
Notifications	https://github.com/login?return_to=%2Fgithub%2Fcodeql
Fork 1.9k	https://github.com/login?return_to=%2Fgithub%2Fcodeql
Star 9.1k	https://github.com/login?return_to=%2Fgithub%2Fcodeql
Code	https://github.com/github/codeql
Issues 919	https://github.com/github/codeql/issues
Pull requests 367	https://github.com/github/codeql/pulls
Discussions	https://github.com/github/codeql/discussions
Actions	https://github.com/github/codeql/actions
Projects 0	https://github.com/github/codeql/projects
Models	https://github.com/github/codeql/models
Security Uh oh! There was an error while loading. Please reload this page.	https://github.com/github/codeql/security
Please reload this page	https://github.com/github/codeql/pull/3653
Insights	https://github.com/github/codeql/pulse
Code	https://github.com/github/codeql
Issues	https://github.com/github/codeql/issues
Pull requests	https://github.com/github/codeql/pulls
Discussions	https://github.com/github/codeql/discussions
Actions	https://github.com/github/codeql/actions
Projects	https://github.com/github/codeql/projects
Models	https://github.com/github/codeql/models
Security	https://github.com/github/codeql/security
Insights	https://github.com/github/codeql/pulse
Sign up for GitHub	https://github.com/signup?return_to=%2Fgithub%2Fcodeql%2Fissues%2Fnew%2Fchoose
terms of service	https://docs.github.com/terms
privacy statement	https://docs.github.com/privacy
Sign in	https://github.com/login?return_to=%2Fgithub%2Fcodeql%2Fissues%2Fnew%2Fchoose
Jump to bottom	https://github.com/github/codeql/pull/3653#issue-comment-box
aschackmull	https://github.com/aschackmull
github:master	https://github.com/github/codeql/tree/master
lcartey:java/improve-spring-support	https://github.com/lcartey/codeql/tree/java/improve-spring-support
Java: Improve modelling of Spring requests, flow steps and XSS sinks	https://github.com/github/codeql/pull/3653#top
aschackmull	https://github.com/aschackmull
github:master	https://github.com/github/codeql/tree/master
lcartey:java/improve-spring-support	https://github.com/lcartey/codeql/tree/java/improve-spring-support
Conversation 13	https://github.com/github/codeql/pull/3653
Commits 38	https://github.com/github/codeql/pull/3653/commits
Checks 0	https://github.com/github/codeql/pull/3653/checks
Files changed	https://github.com/github/codeql/pull/3653/files
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.co/hiddenchars
	https://github.com/github/codeql/pull/{{ revealButtonHref }}
	https://github.com/lcartey
lcartey	https://github.com/lcartey
Jun 9, 2020	https://github.com/github/codeql/pull/3653#issue-635295796
Spring reference documentation for request mapping handler methods	https://docs.spring.io/spring/docs/current/spring-framework-reference/web.html#mvc-ann-methods
https://github.com/github/codeql-java-team/issues/9	https://github.com/github/codeql-java-team/issues/9
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/lcartey
lcartey	https://github.com/lcartey
code owner	https://github.com/github/codeql/blob/398678a28bb33357b164edf4d77877ea9a7fe741/CODEOWNERS#L3
June 9, 2020 10:08	https://github.com/github/codeql/pull/3653#event-3424109789
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jun 9, 2020	https://github.com/github/codeql/pull/3653#issuecomment-641217656
https://github.com/github/codeql/blob/master/java/ql/src/semmle/code/java/dataflow/internal/ContainerFlow.qll	https://github.com/github/codeql/blob/master/java/ql/src/semmle/code/java/dataflow/internal/ContainerFlow.qll
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jun 9, 2020	https://github.com/github/codeql/pull/3653#issuecomment-641232278
https://jenkins.internal.semmle.com/job/Changes/job/Java-Differences/775/	https://jenkins.internal.semmle.com/job/Changes/job/Java-Differences/775/
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jun 16, 2020	https://github.com/github/codeql/pull/3653#issuecomment-644596689
Please reload this page	https://github.com/github/codeql/pull/3653
lcartey	https://github.com/lcartey
June 16, 2020 09:50	https://github.com/github/codeql/pull/3653#commits-pushed-f5dc033
	https://github.com/lcartey
Java: Improve modelling of Spring request methods	https://github.com/github/codeql/pull/3653/commits/f5dc0337edda85b24f9ffeec9c589648233a8e8a
f5dc033	https://github.com/github/codeql/pull/3653/commits/f5dc0337edda85b24f9ffeec9c589648233a8e8a
@RequestMapping	https://github.com/RequestMapping
	https://github.com/lcartey
Java: Update RemoteFlowSource to use improve Spring request parameter	https://github.com/github/codeql/pull/3653/commits/4300bc8088ce2359bb5fc9600ae9f4be8339a341
4300bc8	https://github.com/github/codeql/pull/3653/commits/4300bc8088ce2359bb5fc9600ae9f4be8339a341
	https://github.com/lcartey
Java: Add SpringWebRequest to RemoteTaintedMethod	https://github.com/github/codeql/pull/3653/commits/6de2b93f3a03022c25bda20a08b9658cf779edea
6de2b93	https://github.com/github/codeql/pull/3653/commits/6de2b93f3a03022c25bda20a08b9658cf779edea
	https://github.com/lcartey
Java: Add flow out of Map and List	https://github.com/github/codeql/pull/3653/commits/7c4251deacecb12b49ce62810d23866d4e07a4c7
7c4251d	https://github.com/github/codeql/pull/3653/commits/7c4251deacecb12b49ce62810d23866d4e07a4c7
	https://github.com/lcartey
Java: Improve Spring controller modelling	https://github.com/github/codeql/pull/3653/commits/bfcc06dd0be2d90490a0064ea16c86fb9f903595
bfcc06d	https://github.com/github/codeql/pull/3653/commits/bfcc06dd0be2d90490a0064ea16c86fb9f903595
	https://github.com/lcartey
Java: Modelling of the Spring HTTP classes.	https://github.com/github/codeql/pull/3653/commits/fd2cd6025d3d2a4ba6b8f718f17f36b0a114f081
fd2cd60	https://github.com/github/codeql/pull/3653/commits/fd2cd6025d3d2a4ba6b8f718f17f36b0a114f081
	https://github.com/lcartey
Java: Model Spring	https://github.com/github/codeql/pull/3653/commits/1d1234093f2a7aec963b84919b901c0189b13b88
@responsebody	https://github.com/responsebody
methods.	https://github.com/github/codeql/pull/3653/commits/1d1234093f2a7aec963b84919b901c0189b13b88
1d12340	https://github.com/github/codeql/pull/3653/commits/1d1234093f2a7aec963b84919b901c0189b13b88
	https://github.com/lcartey
Java: Track flow through HttpEntity and ResponseEntity	https://github.com/github/codeql/pull/3653/commits/7d555a7467d974de1c496f0868bc8e88ec994aff
7d555a7	https://github.com/github/codeql/pull/3653/commits/7d555a7467d974de1c496f0868bc8e88ec994aff
	https://github.com/lcartey
Java: Taint tracking through String.replace(all)?	https://github.com/github/codeql/pull/3653/commits/c59042f9c392c20a4a3a0bd89f2c273d1aac1c39
c59042f	https://github.com/github/codeql/pull/3653/commits/c59042f9c392c20a4a3a0bd89f2c273d1aac1c39
	https://github.com/lcartey
Java: Add Spring XSS sinks	https://github.com/github/codeql/pull/3653/commits/8057dff3684201bb5eaf4f5c4598d0b08f5a6a46
8057dff	https://github.com/github/codeql/pull/3653/commits/8057dff3684201bb5eaf4f5c4598d0b08f5a6a46
	https://github.com/lcartey
Java: Model produces parameter to RequestMapping attribute.	https://github.com/github/codeql/pull/3653/commits/f6a99cb42ee82b73c16a5952f9661828bf11fb80
f6a99cb	https://github.com/github/codeql/pull/3653/commits/f6a99cb42ee82b73c16a5952f9661828bf11fb80
	https://github.com/lcartey
Java: XSS - ignore Spring sinks when content-type is safe.	https://github.com/github/codeql/pull/3653/commits/e2cec582be9f632b7df2fcd5a9dc0f5bfd0b8208
e2cec58	https://github.com/github/codeql/pull/3653/commits/e2cec582be9f632b7df2fcd5a9dc0f5bfd0b8208
@RequestMapping	https://github.com/RequestMapping
	https://github.com/lcartey
Java: Model ResponseEntity.BodyBuilder	https://github.com/github/codeql/pull/3653/commits/f6b2accabdf745f3c72d81f205cd577fcd9c09d0
f6b2acc	https://github.com/github/codeql/pull/3653/commits/f6b2accabdf745f3c72d81f205cd577fcd9c09d0
	https://github.com/lcartey
Java: Model taint flow through ResponseEntity.	https://github.com/github/codeql/pull/3653/commits/0db7cead31872b16950cf7e7fa48510892af132b
0db7cea	https://github.com/github/codeql/pull/3653/commits/0db7cead31872b16950cf7e7fa48510892af132b
	https://github.com/lcartey
Java: SpringController - handle non-string literal produces values.	https://github.com/github/codeql/pull/3653/commits/8bd5f748b468509b68040503ede0ed55bb34ba92
8bd5f74	https://github.com/github/codeql/pull/3653/commits/8bd5f748b468509b68040503ede0ed55bb34ba92
	https://github.com/lcartey
Java: Model untrusted user data types	https://github.com/github/codeql/pull/3653/commits/8678d5fc6f2e225192b8b7f69a15314c3356d012
8678d5f	https://github.com/github/codeql/pull/3653/commits/8678d5fc6f2e225192b8b7f69a15314c3356d012
	https://github.com/lcartey
Java: Add taint step to flow through Spring tainted user data class	https://github.com/github/codeql/pull/3653/commits/93c28d4c03a14893b8fc3b2bb42ced435bb8d349
93c28d4	https://github.com/github/codeql/pull/3653/commits/93c28d4c03a14893b8fc3b2bb42ced435bb8d349
	https://github.com/lcartey
Java: Add Spring flow out of HttpEntity and HttpHeader	https://github.com/github/codeql/pull/3653/commits/cd6339f5cdb5c8aa1b295295cde5ff760942b7c1
cd6339f	https://github.com/github/codeql/pull/3653/commits/cd6339f5cdb5c8aa1b295295cde5ff760942b7c1
	https://github.com/lcartey
Java: Model Spring WebClients/RestTemplates.	https://github.com/github/codeql/pull/3653/commits/9625e82afdf904bc8472cbdff1dafeb408f95248
9625e82	https://github.com/github/codeql/pull/3653/commits/9625e82afdf904bc8472cbdff1dafeb408f95248
	https://github.com/lcartey
Java: Add Spring RestTemplate return values to untrusted data types	https://github.com/github/codeql/pull/3653/commits/f2edc5314417cd44a09e840906b9053323c7deec
f2edc53	https://github.com/github/codeql/pull/3653/commits/f2edc5314417cd44a09e840906b9053323c7deec
	https://github.com/lcartey
Java: Add RestTemplate as flow source.	https://github.com/github/codeql/pull/3653/commits/2978af34cdda413a4ece8bf3ff1901e0e2992b27
2978af3	https://github.com/github/codeql/pull/3653/commits/2978af34cdda413a4ece8bf3ff1901e0e2992b27
	https://github.com/lcartey
lcartey	https://github.com/lcartey
force-pushed	https://github.com/github/codeql/compare/60c536d80326717289d8b893f27fd392045d5b73..2978af34cdda413a4ece8bf3ff1901e0e2992b27
60c536d	https://github.com/github/codeql/commit/60c536d80326717289d8b893f27fd392045d5b73
2978af3	https://github.com/github/codeql/commit/2978af34cdda413a4ece8bf3ff1901e0e2992b27
Compare	https://github.com/github/codeql/compare/60c536d80326717289d8b893f27fd392045d5b73..2978af34cdda413a4ece8bf3ff1901e0e2992b27
June 16, 2020 08:51	https://github.com/github/codeql/pull/3653#event-3447933082
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jun 24, 2020	https://github.com/github/codeql/pull/3653#issuecomment-648701981
https://jenkins.internal.semmle.com/job/Changes/job/Java-Differences/797/	https://jenkins.internal.semmle.com/job/Changes/job/Java-Differences/797/
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jul 2, 2020	https://github.com/github/codeql/pull/3653#issuecomment-652905575
https://jenkins.internal.semmle.com/job/Changes/job/Java-Differences/815/	https://jenkins.internal.semmle.com/job/Changes/job/Java-Differences/815/
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jul 3, 2020	https://github.com/github/codeql/pull/3653#issuecomment-653513950
https://jenkins.internal.semmle.com/job/Changes/job/Java-Differences/822/	https://jenkins.internal.semmle.com/job/Changes/job/Java-Differences/822/
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/aschackmull
Java: Split SpringWebRequestGetMethod into its own class.	https://github.com/github/codeql/pull/3653/commits/6de612a56605eea2a2262f33e86d891f38033667
6de612a	https://github.com/github/codeql/pull/3653/commits/6de612a56605eea2a2262f33e86d891f38033667
	https://github.com/aibaars
aibaars	https://github.com/aibaars
Jul 3, 2020	https://github.com/github/codeql/pull/3653#pullrequestreview-442491353
View reviewed changes	https://github.com/github/codeql/pull/3653/files/2978af34cdda413a4ece8bf3ff1901e0e2992b27
java/ql/src/semmle/code/java/dataflow/internal/TaintTrackingUtil.qll	https://github.com/github/codeql/pull/3653/files/2978af34cdda413a4ece8bf3ff1901e0e2992b27#diff-97efb7ecf62c8b0752f8ac2381aa77dbd2806d5383d2dd705cb430268f2a6022
aibaars	https://github.com/aibaars
Jul 3, 2020	https://github.com/github/codeql/pull/3653#discussion_r449644895
Learn more	https://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
@aschackmull	https://github.com/aschackmull
Please reload this page	https://github.com/github/codeql/pull/3653
aschackmull	https://github.com/aschackmull
July 6, 2020 14:18	https://github.com/github/codeql/pull/3653#commits-pushed-a41c2d8
	https://github.com/aschackmull
Java: Make a few predicates private and autoformat SpringController.	https://github.com/github/codeql/pull/3653/commits/a41c2d8abfaf18d5990e348ba159fa3f332b2a9e
a41c2d8	https://github.com/github/codeql/pull/3653/commits/a41c2d8abfaf18d5990e348ba159fa3f332b2a9e
	https://github.com/aschackmull
Java: Remove list, map, and StringReplaceMethod flow steps.	https://github.com/github/codeql/pull/3653/commits/2ae15f9ace7efff75a82b18cc47d6f3e8f13bac9
2ae15f9	https://github.com/github/codeql/pull/3653/commits/2ae15f9ace7efff75a82b18cc47d6f3e8f13bac9
	https://github.com/aschackmull
Java: Clean up SpringHttp.qll	https://github.com/github/codeql/pull/3653/commits/2ce09219359ce3733a71ecf8bdcd913f4fdafada
2ce0921	https://github.com/github/codeql/pull/3653/commits/2ce09219359ce3733a71ecf8bdcd913f4fdafada
	https://github.com/aschackmull
Java: Minor typo fix and autoformat	https://github.com/github/codeql/pull/3653/commits/a80e663ab5f1dfc2146d939ebdb8a2cce7a509bb
a80e663	https://github.com/github/codeql/pull/3653/commits/a80e663ab5f1dfc2146d939ebdb8a2cce7a509bb
	https://github.com/aschackmull
Java: Misc grammar fixes.	https://github.com/github/codeql/pull/3653/commits/5d8f9a79f1c5ee80d29143cabb01b43af4f3845c
5d8f9a7	https://github.com/github/codeql/pull/3653/commits/5d8f9a79f1c5ee80d29143cabb01b43af4f3845c
	https://github.com/aschackmull
Java: Cleanup TaintTrackingUtil.qll	https://github.com/github/codeql/pull/3653/commits/e6658c5110c3beff29755319ec46d09371c18794
e6658c5	https://github.com/github/codeql/pull/3653/commits/e6658c5110c3beff29755319ec46d09371c18794
	https://github.com/aschackmull
Java: Add some qldoc and minor formatting.	https://github.com/github/codeql/pull/3653/commits/5e9e7feddc8fc02c8a04a6486f857cfcbd0b526b
5e9e7fe	https://github.com/github/codeql/pull/3653/commits/5e9e7feddc8fc02c8a04a6486f857cfcbd0b526b
	https://github.com/aschackmull
Java: More qldoc and some formatting.	https://github.com/github/codeql/pull/3653/commits/b06d1c715aa804da7454ded78858ef2d4fb35ce0
b06d1c7	https://github.com/github/codeql/pull/3653/commits/b06d1c715aa804da7454ded78858ef2d4fb35ce0
	https://github.com/aschackmull
Java: Misc grammar and formatting.	https://github.com/github/codeql/pull/3653/commits/ae21de90b6f1f2eecb77ae3bfabba61c2dd1fa0b
ae21de9	https://github.com/github/codeql/pull/3653/commits/ae21de90b6f1f2eecb77ae3bfabba61c2dd1fa0b
	https://github.com/aschackmull
Java: Use SpringHttpEntity class.	https://github.com/github/codeql/pull/3653/commits/f98460cfd091f56733a78c8a99d324edb8bfb485
f98460c	https://github.com/github/codeql/pull/3653/commits/f98460cfd091f56733a78c8a99d324edb8bfb485
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jul 6, 2020	https://github.com/github/codeql/pull/3653#issuecomment-654295782
lcartey#1	https://github.com/lcartey/codeql/pull/1
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jul 6, 2020	https://github.com/github/codeql/pull/3653#issuecomment-654296612
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jul 6, 2020	https://github.com/github/codeql/pull/3653#issuecomment-654298039
7d555a7	https://github.com/github/codeql/commit/7d555a7467d974de1c496f0868bc8e88ec994aff
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/lcartey
Merge pull request	https://github.com/github/codeql/pull/3653/commits/3fef5cabf1038ad8d27966715e88f8530e2f2a3c
#1	https://github.com/lcartey/codeql/pull/1
from aschackmull/java/spring-3653	https://github.com/github/codeql/pull/3653/commits/3fef5cabf1038ad8d27966715e88f8530e2f2a3c
3fef5ca	https://github.com/github/codeql/pull/3653/commits/3fef5cabf1038ad8d27966715e88f8530e2f2a3c
github#3653	https://github.com/github/codeql/pull/3653
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jul 7, 2020	https://github.com/github/codeql/pull/3653#issuecomment-654834874
@lcartey	https://github.com/lcartey
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/lcartey
lcartey	https://github.com/lcartey
Jul 7, 2020	https://github.com/github/codeql/pull/3653#issuecomment-654859825
7d555a7	https://github.com/github/codeql/commit/7d555a7467d974de1c496f0868bc8e88ec994aff
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/lcartey
lcartey	https://github.com/lcartey
Jul 7, 2020	https://github.com/github/codeql/pull/3653#issuecomment-654865624
@lcartey	https://github.com/lcartey
Please reload this page	https://github.com/github/codeql/pull/3653
aschackmull	https://github.com/aschackmull
July 8, 2020 13:06	https://github.com/github/codeql/pull/3653#commits-pushed-48e4759
	https://github.com/aschackmull
Merge branch 'master' into java/spring-3653-2	https://github.com/github/codeql/pull/3653/commits/48e4759632da70beea2ececc62b54459e9219284
48e4759	https://github.com/github/codeql/pull/3653/commits/48e4759632da70beea2ececc62b54459e9219284
	https://github.com/aschackmull
Java: Fix LdapInjection qltest	https://github.com/github/codeql/pull/3653/commits/581d496167bb2e6e228114bfad3ed1f68e97a921
581d496	https://github.com/github/codeql/pull/3653/commits/581d496167bb2e6e228114bfad3ed1f68e97a921
	https://github.com/aschackmull
Java: Fix JndiInjection qltest	https://github.com/github/codeql/pull/3653/commits/a4fe4f41b9386f8d1b8259f0fe2c883f15884bbf
a4fe4f4	https://github.com/github/codeql/pull/3653/commits/a4fe4f41b9386f8d1b8259f0fe2c883f15884bbf
	https://github.com/aschackmull
Java: Fix OgnlInjection qltest	https://github.com/github/codeql/pull/3653/commits/b88ebd69c187411973aa4e571b615b9e6121e5c6
b88ebd6	https://github.com/github/codeql/pull/3653/commits/b88ebd69c187411973aa4e571b615b9e6121e5c6
	https://github.com/lcartey
Merge pull request	https://github.com/github/codeql/pull/3653/commits/443c13d516b63b395cc94c68941f3d442a58760b
#2	https://github.com/lcartey/codeql/pull/2
from aschackmull/java/spring-3653-2	https://github.com/github/codeql/pull/3653/commits/443c13d516b63b395cc94c68941f3d442a58760b
443c13d	https://github.com/github/codeql/pull/3653/commits/443c13d516b63b395cc94c68941f3d442a58760b
github#3653	https://github.com/github/codeql/pull/3653
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Jul 8, 2020	https://github.com/github/codeql/pull/3653#pullrequestreview-444710128
View reviewed changes	https://github.com/github/codeql/pull/3653/files/443c13d516b63b395cc94c68941f3d442a58760b
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
528f250	https://github.com/github/codeql/commit/528f250af3db048ac42231cbc4b7a6e1a0a3b15b
Jul 8, 2020	https://github.com/github/codeql/pull/3653#event-3525098754
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
Oct 7, 2020	https://github.com/github/codeql/pull/3653#ref-pullrequest-636322251
[java] Merged with 3665 （https://github.com/github/codeql/pull/3665） #3674	https://github.com/github/codeql/pull/3674
Sign up for free	https://github.com/join?source=comment-repo
Sign in to comment	https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgithub%2Fcodeql%2Fpull%2F3653
	https://github.com/aschackmull
aschackmull	https://github.com/aschackmull
	https://github.com/github/codeql/pull/3653/files/443c13d516b63b395cc94c68941f3d442a58760b
	https://github.com/aibaars
aibaars	https://github.com/aibaars
	https://github.com/github/codeql/pull/3653/files/2978af34cdda413a4ece8bf3ff1901e0e2992b27
Please reload this page	https://github.com/github/codeql/pull/3653
	https://github.com/lcartey
	https://github.com/aschackmull
	https://github.com/aibaars
	https://github.com
Terms	https://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacy	https://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Security	https://github.com/security
Status	https://www.githubstatus.com/
Community	https://github.community/
Docs	https://docs.github.com/
Contact	https://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.