René's URL Explorer Experiment


Title: Python: Prompt injection in OpenAI clients by mbaluda · Pull Request #21141 · github/codeql · GitHub

Open Graph Title: Python: Prompt injection in OpenAI clients by mbaluda · Pull Request #21141 · github/codeql

X Title: Python: Prompt injection in OpenAI clients by mbaluda · Pull Request #21141 · github/codeql

Description: This pull request introduces a new CodeQL query for detecting prompt injection vulnerabilities in Python code targeting AI prompting APIs such as agents and openai. The changes includes a new expe...

Open Graph Description: This pull request introduces a new CodeQL query for detecting prompt injection vulnerabilities in Python code targeting AI prompting APIs such as agents and openai. The changes includes a new expe...

X Description: This pull request introduces a new CodeQL query for detecting prompt injection vulnerabilities in Python code targeting AI prompting APIs such as agents and openai. The changes includes a new expe...

Opengraph URL: https://github.com/github/codeql/pull/21141

X: @github

direct link

Domain: patch-diff.githubusercontent.com

route-pattern/_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format)
route-controllervoltron_pull_requests_fragments
route-actionpull_request_layout
fetch-noncev2:d4f95e69-88f9-69c8-b5b3-d21e4711847c
current-catalog-service-hashae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-idB8C8:33E6E7:89056FA:B72CF26:696E1CCB
html-safe-noncec351a067c6e5dd6aff21c3d2f2757a335267be68d4a85d2f8724ac38c0c84582
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJCOEM4OjMzRTZFNzo4OTA1NkZBOkI3MkNGMjY6Njk2RTFDQ0IiLCJ2aXNpdG9yX2lkIjoiNzI4NDcxMjk2MDQzNTI5NzQ4MyIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmac6161756161af40847ecf297faf8b00d31b7850c137bbd5631479c6d265c86c79
hovercard-subject-tagpull_request:3160387369
github-keyboard-shortcutsrepository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location///voltron/pull_requests_fragments/pull_request_layout
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/github/codeql/21141/pull_request_layout
twitter:imagehttps://opengraph.githubassets.com/77e38dcf5ad266ca234f00da3724a0fe7db7bc1c89151173fc401474dc3188fb/github/codeql/pull/21141
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/77e38dcf5ad266ca234f00da3724a0fe7db7bc1c89151173fc401474dc3188fb/github/codeql/pull/21141
og:image:altThis pull request introduces a new CodeQL query for detecting prompt injection vulnerabilities in Python code targeting AI prompting APIs such as agents and openai. The changes includes a new expe...
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
og:author:usernamembaluda
hostnamegithub.com
expected-hostnamegithub.com
None113cc336e7105fbb9f2ee8beb67c6cc584d65fa66a8a1a5dd236ba66db174af7
turbo-cache-controlno-preview
go-importgithub.com/github/codeql git https://github.com/github/codeql.git
octolytics-dimension-user_id9919
octolytics-dimension-user_logingithub
octolytics-dimension-repository_id143040428
octolytics-dimension-repository_nwogithub/codeql
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forkfalse
octolytics-dimension-repository_network_root_id143040428
octolytics-dimension-repository_network_root_nwogithub/codeql
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
release1d23f8b0bc31294c6a73ba2f3adfdd8c7052ca1e
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://patch-diff.githubusercontent.com/github/codeql/pull/21141#start-of-content
https://patch-diff.githubusercontent.com/
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgithub%2Fcodeql%2Fpull%2F21141
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub SparkBuild and deploy intelligent appshttps://github.com/features/spark
GitHub ModelsManage and compare promptshttps://github.com/features/models
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
GitHub SponsorsFund open source developershttps://github.com/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/accelerator
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgithub%2Fcodeql%2Fpull%2F21141
Sign up https://patch-diff.githubusercontent.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fvoltron%2Fpull_requests_fragments%2Fpull_request_layout&source=header-repo&source_repo=github%2Fcodeql
Reloadhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
Reloadhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
Reloadhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
github https://patch-diff.githubusercontent.com/github
codeqlhttps://patch-diff.githubusercontent.com/github/codeql
Notifications https://patch-diff.githubusercontent.com/login?return_to=%2Fgithub%2Fcodeql
Fork 1.9k https://patch-diff.githubusercontent.com/login?return_to=%2Fgithub%2Fcodeql
Star 9.1k https://patch-diff.githubusercontent.com/login?return_to=%2Fgithub%2Fcodeql
Code https://patch-diff.githubusercontent.com/github/codeql
Issues 918 https://patch-diff.githubusercontent.com/github/codeql/issues
Pull requests 367 https://patch-diff.githubusercontent.com/github/codeql/pulls
Discussions https://patch-diff.githubusercontent.com/github/codeql/discussions
Actions https://patch-diff.githubusercontent.com/github/codeql/actions
Projects 0 https://patch-diff.githubusercontent.com/github/codeql/projects
Models https://patch-diff.githubusercontent.com/github/codeql/models
Security Uh oh! There was an error while loading. Please reload this page. https://patch-diff.githubusercontent.com/github/codeql/security
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
Insights https://patch-diff.githubusercontent.com/github/codeql/pulse
Code https://patch-diff.githubusercontent.com/github/codeql
Issues https://patch-diff.githubusercontent.com/github/codeql/issues
Pull requests https://patch-diff.githubusercontent.com/github/codeql/pulls
Discussions https://patch-diff.githubusercontent.com/github/codeql/discussions
Actions https://patch-diff.githubusercontent.com/github/codeql/actions
Projects https://patch-diff.githubusercontent.com/github/codeql/projects
Models https://patch-diff.githubusercontent.com/github/codeql/models
Security https://patch-diff.githubusercontent.com/github/codeql/security
Insights https://patch-diff.githubusercontent.com/github/codeql/pulse
Sign up for GitHub https://patch-diff.githubusercontent.com/signup?return_to=%2Fgithub%2Fcodeql%2Fissues%2Fnew%2Fchoose
terms of servicehttps://docs.github.com/terms
privacy statementhttps://docs.github.com/privacy
Sign inhttps://patch-diff.githubusercontent.com/login?return_to=%2Fgithub%2Fcodeql%2Fissues%2Fnew%2Fchoose
Jump to bottomhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141#issue-comment-box
mbaludahttps://patch-diff.githubusercontent.com/mbaluda
github:mainhttps://patch-diff.githubusercontent.com/github/codeql/tree/main
mbaluda:prompt-injectionhttps://patch-diff.githubusercontent.com/mbaluda/codeql/tree/prompt-injection
Python: Prompt injection in OpenAI clients https://patch-diff.githubusercontent.com/github/codeql/pull/21141#top
mbaludahttps://patch-diff.githubusercontent.com/mbaluda
github:mainhttps://patch-diff.githubusercontent.com/github/codeql/tree/main
mbaluda:prompt-injectionhttps://patch-diff.githubusercontent.com/mbaluda/codeql/tree/prompt-injection
Conversation 14 https://patch-diff.githubusercontent.com/github/codeql/pull/21141
Commits 29 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits
Checks 13 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/checks
Files changed https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/mbaluda
mbaludahttps://patch-diff.githubusercontent.com/mbaluda
Jan 9, 2026https://patch-diff.githubusercontent.com/github/codeql/pull/21141#issue-3797774220
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
knewbury01https://patch-diff.githubusercontent.com/knewbury01
December 12, 2025 17:41https://patch-diff.githubusercontent.com/github/codeql/pull/21141#commits-pushed-005db5b
https://patch-diff.githubusercontent.com/knewbury01
Add first version prompt injection query python openai agents sdkhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/005db5bdcf9572585a2a902072263136c12de463
005db5bhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/005db5bdcf9572585a2a902072263136c12de463
https://patch-diff.githubusercontent.com/mbaluda
Add support for openai.OpenAI client libraryhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/7a9e03d1be3171f1ed0789cc4dfd10393e25a3f5
7a9e03dhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/7a9e03d1be3171f1ed0789cc4dfd10393e25a3f5
https://patch-diff.githubusercontent.com/mbaluda
Merge branch 'knewbury01/add-prompt-injection-query-python' into prom…https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/b30444bcacb0346111ec14c7c638cabfc6878189
b30444bhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/b30444bcacb0346111ec14c7c638cabfc6878189
https://patch-diff.githubusercontent.com/mbaluda
Fix projcet build errorshttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/6c5c87e05075ee49977eadd4f71e0630be300bb9
6c5c87ehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/6c5c87e05075ee49977eadd4f71e0630be300bb9
https://patch-diff.githubusercontent.com/mbaluda
Fix newline at end of PromptInjection.qlrefhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/616698cb4a9c96e53cbc0725693eb37aeac29677
616698chttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/616698cb4a9c96e53cbc0725693eb37aeac29677
https://patch-diff.githubusercontent.com/mbaluda
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Update python/ql/lib/semmle/python/frameworks/OpenAI.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/942834d86f4cbe70fa9208fb34288eae9ce53596
942834dhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/942834d86f4cbe70fa9208fb34288eae9ce53596
https://patch-diff.githubusercontent.com/mbaluda
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Update python/ql/src/Security/CWE-1427/PromptInjection.qlhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/df979da1b6bd4a54443d91fc537aca5c74397fe6
df979dahttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/df979da1b6bd4a54443d91fc537aca5c74397fe6
https://patch-diff.githubusercontent.com/mbaluda
Add example to qlhelphttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/bacecb7250265341e113378b7306126725faa555
bacecb7https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/bacecb7250265341e113378b7306126725faa555
https://patch-diff.githubusercontent.com/mbaluda
Fix missing predicatehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/a9d0a1639a3cca767650e21d1d016ed2e3ffa48e
a9d0a16https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/a9d0a1639a3cca767650e21d1d016ed2e3ffa48e
https://patch-diff.githubusercontent.com/mbaluda
Une inline expectationshttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/04193f4bb585eeef90da5c9df35fedd77e3d6558
04193f4https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/04193f4bb585eeef90da5c9df35fedd77e3d6558
https://patch-diff.githubusercontent.com/mbaluda
Use models as datahttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/2c83dc3689ed94c8450d74db50b2b278296e12da
2c83dc3https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/2c83dc3689ed94c8450d74db50b2b278296e12da
https://patch-diff.githubusercontent.com/mbaluda
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Update python/ql/src/Security/CWE-1427/examples/example.pyhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/0c7996eb7efe549d0745fc6e50fcf22f1c303b1a
0c7996ehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/0c7996eb7efe549d0745fc6e50fcf22f1c303b1a
https://patch-diff.githubusercontent.com/mbaluda
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Update python/ql/lib/semmle/python/Concepts.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/21a21469f1afd7decd76e3efee785621223e8530
21a2146https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/21a21469f1afd7decd76e3efee785621223e8530
https://patch-diff.githubusercontent.com/mbaluda
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Update python/ql/src/Security/CWE-1427/PromptInjection.qhelphttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/7d450c580b66c3bbd0785549d61dbe3f57985adc
7d450c5https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/7d450c580b66c3bbd0785549d61dbe3f57985adc
https://patch-diff.githubusercontent.com/mbaluda
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Update python/ql/lib/change-notes/2026-01-02-prompt-injection.mdhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/c352ffd28c043484170e146eb4f00f8af0482680
c352ffdhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/c352ffd28c043484170e146eb4f00f8af0482680
https://patch-diff.githubusercontent.com/mbaluda
Fix capitalization typohttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/9ea0a1258c306751d047c94ddd90108915333d7a
9ea0a12https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/9ea0a1258c306751d047c94ddd90108915333d7a
https://patch-diff.githubusercontent.com/mbaluda
QLdochttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/fd8e1700c252249f2470183badc4b92fea3e0780
fd8e170https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/fd8e1700c252249f2470183badc4b92fea3e0780
https://patch-diff.githubusercontent.com/knewbury01
Merge branch 'main' into knewbury01/add-prompt-injection-query-pythonhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/b4275e8a2ae7543827daafcb86f7e61b818bcfbc
b4275e8https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/b4275e8a2ae7543827daafcb86f7e61b818bcfbc
https://patch-diff.githubusercontent.com/mbaluda
Merge pull requesthttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/4117252725aaf1d1894e0229e8b336addffc4659
#4https://github.com/mbaluda/codeql/pull/4
from github/mainhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/4117252725aaf1d1894e0229e8b336addffc4659
4117252https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/4117252725aaf1d1894e0229e8b336addffc4659
https://patch-diff.githubusercontent.com/mbaluda
Merge branch 'knewbury01/add-prompt-injection-query-python' into prom…https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/c7d99a1339ceae805090bff578df0af04f6546b0
c7d99a1https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/c7d99a1339ceae805090bff578df0af04f6546b0
https://patch-diff.githubusercontent.com/mbaluda
precise models for experimental queryhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/1a0feb4bac33d6e112d54f6ac8e4c670d083a58a
1a0feb4https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/1a0feb4bac33d6e112d54f6ac8e4c670d083a58a
https://patch-diff.githubusercontent.com/mbaluda
removed spurious filehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/01b9fa245388341c70a6e4d731f21d94d1fa3d5b
01b9fa2https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/01b9fa245388341c70a6e4d731f21d94d1fa3d5b
https://patch-diff.githubusercontent.com/mbaluda
remove testhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/29aad2e5164accba59bcc5900fdcdeb2ebd20672
29aad2ehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/29aad2e5164accba59bcc5900fdcdeb2ebd20672
https://patch-diff.githubusercontent.com/mbaluda
Refactor openai modelhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/0a36be1ae34ac25ae43819682c6cb4c9e7f1117f
0a36be1https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/0a36be1ae34ac25ae43819682c6cb4c9e7f1117f
https://patch-diff.githubusercontent.com/knewbury01
Improve agents sdk modelling (https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/dccaa84b96e557e85a146ff1c9b6a7939a443f66
#5https://github.com/mbaluda/codeql/pull/5
)https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/dccaa84b96e557e85a146ff1c9b6a7939a443f66
dccaa84https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/dccaa84b96e557e85a146ff1c9b6a7939a443f66
https://patch-diff.githubusercontent.com/mbaluda
Update OpenAI.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/1ec82d9f56878eb24a27aa0c2d700cfc7e78da70
1ec82d9https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/1ec82d9f56878eb24a27aa0c2d700cfc7e78da70
https://patch-diff.githubusercontent.com/mbaluda
Merge branch 'github:main' into prompt-injectionhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/3c14266b972ae247da55c7b46edf7ac6b31dec35
3c14266https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/3c14266b972ae247da55c7b46edf7ac6b31dec35
https://patch-diff.githubusercontent.com/mbaluda
mbaludahttps://patch-diff.githubusercontent.com/mbaluda
code ownerhttps://patch-diff.githubusercontent.com/github/codeql/blob/44089d84a34c98cf10267824087ec4eb8bfede4f/CODEOWNERS#L19
January 9, 2026 17:34https://patch-diff.githubusercontent.com/github/codeql/pull/21141#event-21952503539
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Copilothttps://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
January 9, 2026 17:34https://patch-diff.githubusercontent.com/github/codeql/pull/21141#event-21952503597
https://patch-diff.githubusercontent.com/mbaluda
mbaludahttps://patch-diff.githubusercontent.com/mbaluda
documentation https://patch-diff.githubusercontent.com/github/codeql/issues?q=state%3Aopen%20label%3Adocumentation
Jan 9, 2026https://patch-diff.githubusercontent.com/github/codeql/pull/21141#event-21952503760
https://patch-diff.githubusercontent.com/mbaluda
mbaludahttps://patch-diff.githubusercontent.com/mbaluda
Python https://patch-diff.githubusercontent.com/github/codeql/issues?q=state%3Aopen%20label%3APython
Jan 9, 2026https://patch-diff.githubusercontent.com/github/codeql/pull/21141#event-21952503820
started reviewinghttps://github.com/copilot/tasks/pull/PR_kwDOCIafrM68X68p?session_id=4d31485e-693c-4481-afb8-d201abbed520
mbaludahttps://patch-diff.githubusercontent.com/mbaluda
January 9, 2026 17:35https://patch-diff.githubusercontent.com/github/codeql/pull/21141#event-21952515903
View session https://github.com/copilot/tasks/pull/PR_kwDOCIafrM68X68p?session_id=4d31485e-693c-4481-afb8-d201abbed520
https://patch-diff.githubusercontent.com/apps/github-actions
github-actionshttps://patch-diff.githubusercontent.com/apps/github-actions
Jan 9, 2026https://patch-diff.githubusercontent.com/github/codeql/pull/21141#issuecomment-3729920966
Guardrailshttps://openai.github.io/openai-guardrails-python
CWE-1427https://cwe.mitre.org/data/definitions/1427.html
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
https://patch-diff.githubusercontent.com/apps/github-advanced-security
github-advanced-securityhttps://patch-diff.githubusercontent.com/apps/github-advanced-security
Jan 9, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141#pullrequestreview-3644931997
View reviewed changes https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35
python/ql/lib/semmle/python/frameworks/OpenAI.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-a6c92437a20f4c6214b62086fb0fd536a1b16eeaa6f1666322e22acfd49a4060
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Copilothttps://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Jan 9, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141#pullrequestreview-3644945609
View reviewed changes https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35
Copilothttps://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
https://patch-diff.githubusercontent.com/github/codeql/pull/21141#pullrequestreview-3644945609
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Add Copilot custom instructionshttps://patch-diff.githubusercontent.com/github/codeql/new/main/.github/instructions?filename=*.instructions.md
Learn how to get startedhttps://docs.github.com/en/copilot/customizing-copilot/adding-repository-custom-instructions-for-github-copilot
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
python/ql/test/experimental/query-tests/Security/CWE-1427-PromptInjection/openai_test.pyhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-90d2ef6bd61151b45f6a215abaf2947dfabc93b0dc8780da0056a9b444460afe
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
python/ql/lib/semmle/python/frameworks/OpenAI.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-a6c92437a20f4c6214b62086fb0fd536a1b16eeaa6f1666322e22acfd49a4060
Copilothttps://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Jan 9, 2026https://patch-diff.githubusercontent.com/github/codeql/pull/21141#discussion_r2677058601
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
Copilothttps://docs.github.com/copilot/responsible-use-of-github-copilot-features/responsible-use-of-github-copilot-code-review
python/ql/src/experimental/Security/CWE-1427/examples/example.pyhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-c9610644f8623ad9a16a9553eb1c748e1aaa80934cb814a7ce4d0aad76b83b96
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
python/ql/test/experimental/query-tests/Security/CWE-1427-PromptInjection/agent_instructions.pyhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-c788d78a6e8e1496c01c8eaa67250de709b2f6cdd93f77bc5170bf922b6ac8f2
Copilothttps://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Jan 9, 2026https://patch-diff.githubusercontent.com/github/codeql/pull/21141#discussion_r2677058655
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
Copilothttps://docs.github.com/copilot/responsible-use-of-github-copilot-features/responsible-use-of-github-copilot-code-review
python/ql/src/experimental/Security/CWE-1427/PromptInjection.qhelphttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-d20eb93347e104727690e2e8c3be1e6c0986286a38a96dacaf99946d7a4a7ed9
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
python/ql/src/experimental/Security/CWE-1427/examples/example.pyhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-c9610644f8623ad9a16a9553eb1c748e1aaa80934cb814a7ce4d0aad76b83b96
Copilothttps://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Jan 9, 2026https://patch-diff.githubusercontent.com/github/codeql/pull/21141#discussion_r2677058700
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
Copilothttps://docs.github.com/copilot/responsible-use-of-github-copilot-features/responsible-use-of-github-copilot-code-review
python/ql/lib/semmle/python/frameworks/OpenAI.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-a6c92437a20f4c6214b62086fb0fd536a1b16eeaa6f1666322e22acfd49a4060
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
python/ql/test/experimental/query-tests/Security/CWE-1427-PromptInjection/agent_instructions.pyhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-c788d78a6e8e1496c01c8eaa67250de709b2f6cdd93f77bc5170bf922b6ac8f2
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
python/ql/src/experimental/Security/CWE-1427/examples/example.pyhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-c9610644f8623ad9a16a9553eb1c748e1aaa80934cb814a7ce4d0aad76b83b96
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
python/ql/test/experimental/query-tests/Security/CWE-1427-PromptInjection/openai_test.pyhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35#diff-90d2ef6bd61151b45f6a215abaf2947dfabc93b0dc8780da0056a9b444460afe
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
mbaludahttps://patch-diff.githubusercontent.com/mbaluda
January 9, 2026 19:07https://patch-diff.githubusercontent.com/github/codeql/pull/21141#commits-pushed-16370d6
https://patch-diff.githubusercontent.com/mbaluda
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Update python/ql/test/experimental/query-tests/Security/CWE-1427-Prom…https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/16370d6cd1c38d11114f1ba6de9dd5b073dee7ec
16370d6https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/16370d6cd1c38d11114f1ba6de9dd5b073dee7ec
https://patch-diff.githubusercontent.com/mbaluda
https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Update python/ql/lib/semmle/python/frameworks/OpenAI.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/454268187f87928e1e261648d7e8ea60f59859ea
4542681https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/454268187f87928e1e261648d7e8ea60f59859ea
https://patch-diff.githubusercontent.com/apps/github-advanced-security
github-advanced-securityhttps://patch-diff.githubusercontent.com/apps/github-advanced-security
Jan 9, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141#pullrequestreview-3645062064
View reviewed changes https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/454268187f87928e1e261648d7e8ea60f59859ea
python/ql/lib/semmle/python/frameworks/OpenAI.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/454268187f87928e1e261648d7e8ea60f59859ea#diff-a6c92437a20f4c6214b62086fb0fd536a1b16eeaa6f1666322e22acfd49a4060
Sign up for freehttps://patch-diff.githubusercontent.com/join?source=comment-repo
Sign in to commenthttps://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgithub%2Fcodeql%2Fpull%2F21141
Copilot code review https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Copilot https://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files/3c14266b972ae247da55c7b46edf7ac6b31dec35
documentation https://patch-diff.githubusercontent.com/github/codeql/issues?q=state%3Aopen%20label%3Adocumentation
Python https://patch-diff.githubusercontent.com/github/codeql/issues?q=state%3Aopen%20label%3APython
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141
https://patch-diff.githubusercontent.com/mbaluda
https://patch-diff.githubusercontent.com/knewbury01
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.