René's URL Explorer Experiment


Title: Python: Prompt injection in OpenAI clients by mbaluda · Pull Request #21141 · github/codeql · GitHub

Open Graph Title: Python: Prompt injection in OpenAI clients by mbaluda · Pull Request #21141 · github/codeql

X Title: Python: Prompt injection in OpenAI clients by mbaluda · Pull Request #21141 · github/codeql

Description: This pull request introduces a new CodeQL query for detecting prompt injection vulnerabilities in Python code targeting AI prompting APIs such as agents and openai. The changes includes a new experimental query, new taint flow and type models, a customizable dataflow configuration, documentation, and comprehensive test coverage.

Open Graph Description: This pull request introduces a new CodeQL query for detecting prompt injection vulnerabilities in Python code targeting AI prompting APIs such as agents and openai. The changes includes a new expe...

X Description: This pull request introduces a new CodeQL query for detecting prompt injection vulnerabilities in Python code targeting AI prompting APIs such as agents and openai. The changes includes a new expe...

Opengraph URL: https://github.com/github/codeql/pull/21141

X: @github

direct link

Domain: patch-diff.githubusercontent.com

route-pattern/:user_id/:repository/pull/:id/files(.:format)
route-controllerpull_requests
route-actionfiles
fetch-noncev2:5e27402b-4caf-d4ee-448a-8d72f1f704f5
current-catalog-service-hashae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-idB04A:1FE82D:935EED:C9BB0B:696E8112
html-safe-nonce6a0cc9d8f9ba0d70096cdf433d33e9c6327c3f17d61e25dbc3f3a446414ee2e6
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJCMDRBOjFGRTgyRDo5MzVFRUQ6QzlCQjBCOjY5NkU4MTEyIiwidmlzaXRvcl9pZCI6Ijc5MzA4NzY2NjgyNjYwNTM5MDYiLCJyZWdpb25fZWRnZSI6ImlhZCIsInJlZ2lvbl9yZW5kZXIiOiJpYWQifQ==
visitor-hmac1bd840ef15c9f3daeed5aebb8616833415bbd42017c51da1a51b6609f30badd5
hovercard-subject-tagpull_request:3160387369
github-keyboard-shortcutsrepository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location///pull_requests/show/files
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/github/codeql/pull/21141/files
twitter:imagehttps://avatars.githubusercontent.com/u/5237080?s=400&v=4
twitter:cardsummary_large_image
og:imagehttps://avatars.githubusercontent.com/u/5237080?s=400&v=4
og:image:altThis pull request introduces a new CodeQL query for detecting prompt injection vulnerabilities in Python code targeting AI prompting APIs such as agents and openai. The changes includes a new expe...
og:site_nameGitHub
og:typeobject
hostnamegithub.com
expected-hostnamegithub.com
Nonefdad15fd2ad43212aa8b8be5f2c2725550f8374ceeeb154a999ad9145b43f3f7
turbo-cache-controlno-preview
diff-viewunified
go-importgithub.com/github/codeql git https://github.com/github/codeql.git
octolytics-dimension-user_id9919
octolytics-dimension-user_logingithub
octolytics-dimension-repository_id143040428
octolytics-dimension-repository_nwogithub/codeql
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forkfalse
octolytics-dimension-repository_network_root_id143040428
octolytics-dimension-repository_network_root_nwogithub/codeql
turbo-body-classeslogged-out env-production page-responsive full-width
disable-turbotrue
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
release27b23bc056eb973d350fc95afc848757edb9e7a9
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#start-of-content
https://patch-diff.githubusercontent.com/
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgithub%2Fcodeql%2Fpull%2F21141%2Ffiles
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub SparkBuild and deploy intelligent appshttps://github.com/features/spark
GitHub ModelsManage and compare promptshttps://github.com/features/models
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
GitHub SponsorsFund open source developershttps://github.com/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/accelerator
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgithub%2Fcodeql%2Fpull%2F21141%2Ffiles
Sign up https://patch-diff.githubusercontent.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fpull_requests%2Fshow%2Ffiles&source=header-repo&source_repo=github%2Fcodeql
Reloadhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Reloadhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Reloadhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
github https://patch-diff.githubusercontent.com/github
codeqlhttps://patch-diff.githubusercontent.com/github/codeql
Notifications https://patch-diff.githubusercontent.com/login?return_to=%2Fgithub%2Fcodeql
Fork 1.9k https://patch-diff.githubusercontent.com/login?return_to=%2Fgithub%2Fcodeql
Star 9.1k https://patch-diff.githubusercontent.com/login?return_to=%2Fgithub%2Fcodeql
Code https://patch-diff.githubusercontent.com/github/codeql
Issues 919 https://patch-diff.githubusercontent.com/github/codeql/issues
Pull requests 367 https://patch-diff.githubusercontent.com/github/codeql/pulls
Discussions https://patch-diff.githubusercontent.com/github/codeql/discussions
Actions https://patch-diff.githubusercontent.com/github/codeql/actions
Projects 0 https://patch-diff.githubusercontent.com/github/codeql/projects
Models https://patch-diff.githubusercontent.com/github/codeql/models
Security Uh oh! There was an error while loading. Please reload this page. https://patch-diff.githubusercontent.com/github/codeql/security
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Insights https://patch-diff.githubusercontent.com/github/codeql/pulse
Code https://patch-diff.githubusercontent.com/github/codeql
Issues https://patch-diff.githubusercontent.com/github/codeql/issues
Pull requests https://patch-diff.githubusercontent.com/github/codeql/pulls
Discussions https://patch-diff.githubusercontent.com/github/codeql/discussions
Actions https://patch-diff.githubusercontent.com/github/codeql/actions
Projects https://patch-diff.githubusercontent.com/github/codeql/projects
Models https://patch-diff.githubusercontent.com/github/codeql/models
Security https://patch-diff.githubusercontent.com/github/codeql/security
Insights https://patch-diff.githubusercontent.com/github/codeql/pulse
Sign up for GitHub https://patch-diff.githubusercontent.com/signup?return_to=%2Fgithub%2Fcodeql%2Fissues%2Fnew%2Fchoose
terms of servicehttps://docs.github.com/terms
privacy statementhttps://docs.github.com/privacy
Sign inhttps://patch-diff.githubusercontent.com/login?return_to=%2Fgithub%2Fcodeql%2Fissues%2Fnew%2Fchoose
mbaludahttps://patch-diff.githubusercontent.com/mbaluda
github:mainhttps://patch-diff.githubusercontent.com/github/codeql/tree/main
mbaluda:prompt-injectionhttps://patch-diff.githubusercontent.com/mbaluda/codeql/tree/prompt-injection
Conversation 14 https://patch-diff.githubusercontent.com/github/codeql/pull/21141
Commits 29 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits
Checks 13 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/checks
Files changed https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Python: Prompt injection in OpenAI clients https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#top
Show all changes 29 commits https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
005db5b Add first version prompt injection query python openai agents sdk knewbury01 Dec 12, 2025 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/005db5bdcf9572585a2a902072263136c12de463
7a9e03d Add support for `openai.OpenAI` client library mbaluda Jan 2, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/7a9e03d1be3171f1ed0789cc4dfd10393e25a3f5
b30444b Merge branch 'knewbury01/add-prompt-injection-query-python' into prom… mbaluda Jan 2, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/b30444bcacb0346111ec14c7c638cabfc6878189
6c5c87e Fix projcet build errors mbaluda Jan 2, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/6c5c87e05075ee49977eadd4f71e0630be300bb9
616698c Fix newline at end of PromptInjection.qlref mbaluda Jan 2, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/616698cb4a9c96e53cbc0725693eb37aeac29677
942834d Update python/ql/lib/semmle/python/frameworks/OpenAI.qll mbaluda Jan 2, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/942834d86f4cbe70fa9208fb34288eae9ce53596
df979da Update python/ql/src/Security/CWE-1427/PromptInjection.ql mbaluda Jan 2, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/df979da1b6bd4a54443d91fc537aca5c74397fe6
bacecb7 Add example to qlhelp mbaluda Jan 2, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/bacecb7250265341e113378b7306126725faa555
a9d0a16 Fix missing predicate mbaluda Jan 2, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/a9d0a1639a3cca767650e21d1d016ed2e3ffa48e
04193f4 Une inline expectations mbaluda Jan 5, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/04193f4bb585eeef90da5c9df35fedd77e3d6558
2c83dc3 Use models as data mbaluda Jan 5, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/2c83dc3689ed94c8450d74db50b2b278296e12da
0c7996e Update python/ql/src/Security/CWE-1427/examples/example.py mbaluda Jan 6, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/0c7996eb7efe549d0745fc6e50fcf22f1c303b1a
21a2146 Update python/ql/lib/semmle/python/Concepts.qll mbaluda Jan 6, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/21a21469f1afd7decd76e3efee785621223e8530
7d450c5 Update python/ql/src/Security/CWE-1427/PromptInjection.qhelp mbaluda Jan 6, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/7d450c580b66c3bbd0785549d61dbe3f57985adc
c352ffd Update python/ql/lib/change-notes/2026-01-02-prompt-injection.md mbaluda Jan 6, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/c352ffd28c043484170e146eb4f00f8af0482680
9ea0a12 Fix capitalization typo mbaluda Jan 6, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/9ea0a1258c306751d047c94ddd90108915333d7a
fd8e170 QLdoc mbaluda Jan 6, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/fd8e1700c252249f2470183badc4b92fea3e0780
b4275e8 Merge branch 'main' into knewbury01/add-prompt-injection-query-python knewbury01 Jan 7, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/b4275e8a2ae7543827daafcb86f7e61b818bcfbc
4117252 Merge pull request #4 from github/main mbaluda Jan 7, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/4117252725aaf1d1894e0229e8b336addffc4659
c7d99a1 Merge branch 'knewbury01/add-prompt-injection-query-python' into prom… mbaluda Jan 7, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/c7d99a1339ceae805090bff578df0af04f6546b0
1a0feb4 precise models for experimental query mbaluda Jan 7, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/1a0feb4bac33d6e112d54f6ac8e4c670d083a58a
01b9fa2 removed spurious file mbaluda Jan 7, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/01b9fa245388341c70a6e4d731f21d94d1fa3d5b
29aad2e remove test mbaluda Jan 7, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/29aad2e5164accba59bcc5900fdcdeb2ebd20672
0a36be1 Refactor openai model mbaluda Jan 7, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/0a36be1ae34ac25ae43819682c6cb4c9e7f1117f
dccaa84 Improve agents sdk modelling (#5) knewbury01 Jan 9, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/dccaa84b96e557e85a146ff1c9b6a7939a443f66
1ec82d9 Update OpenAI.qll mbaluda Jan 9, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/1ec82d9f56878eb24a27aa0c2d700cfc7e78da70
3c14266 Merge branch 'github:main' into prompt-injection mbaluda Jan 9, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/3c14266b972ae247da55c7b46edf7ac6b31dec35
16370d6 Update python/ql/test/experimental/query-tests/Security/CWE-1427-Prom… mbaluda Jan 9, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/16370d6cd1c38d11114f1ba6de9dd5b073dee7ec
4542681 Update python/ql/lib/semmle/python/frameworks/OpenAI.qll mbaluda Jan 9, 2026 https://patch-diff.githubusercontent.com/github/codeql/pull/21141/commits/454268187f87928e1e261648d7e8ea60f59859ea
Clear filters https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
2026-01-02-prompt-injection.md https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-6dc492180bafdf1e80af9f4e6efe37bacb44fd908e4bbbe867e43aa5703917d7
Concepts.qll https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-d31b95d0643733e70ef7320bd131b75f31ea4a9701fd817781a438ef1a87a48d
Frameworks.qll https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-29692e4114f44187490ab5c3a2b9c937ffd91123fc3bbd9298aae38a09a2e256
OpenAI.qll https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-a6c92437a20f4c6214b62086fb0fd536a1b16eeaa6f1666322e22acfd49a4060
agent.model.yml https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-1ca4da26285a4c1794961987e7077b39b4b87e74214e5c46a894e63f74366b34
openai.model.yml https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-e1a3500e7337f088f644055e9afda8984d8c796722beb524ce01b38d026bfd9b
PromptInjectionCustomizations.qll https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-8af665bf47e86b6ce929b72469873d6f59a339d10148b22d48663913f964f689
PromptInjectionQuery.qll https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-9a2295bbb2a4cac84750e26b94a8a4445b75675c45fb371cdf29a673967191ac
PromptInjection.qhelp https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-d20eb93347e104727690e2e8c3be1e6c0986286a38a96dacaf99946d7a4a7ed9
PromptInjection.ql https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-331ea0175e7e42f2f9a848afe8a5beab8903318c21f9ae53c4136d4d86d7710e
example.py https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-c9610644f8623ad9a16a9553eb1c748e1aaa80934cb814a7ce4d0aad76b83b96
PromptInjection.expected https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-34e413246060ea4799d8a5fd1b35aa318ba9ed23fb9cd3881dc1cd50c5c30dd6
PromptInjection.qlref https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-627937193477a4affb4b8ff6df98c434f267c78a776ecc153071f136b3ec5b9a
agent_instructions.py https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-c788d78a6e8e1496c01c8eaa67250de709b2f6cdd93f77bc5170bf922b6ac8f2
openai_test.py https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-90d2ef6bd61151b45f6a215abaf2947dfabc93b0dc8780da0056a9b444460afe
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/lib/change-notes/2026-01-02-prompt-injection.mdhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-6dc492180bafdf1e80af9f4e6efe37bacb44fd908e4bbbe867e43aa5703917d7
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/lib/change-notes/2026-01-02-prompt-injection.md
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/lib/semmle/python/Concepts.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-d31b95d0643733e70ef7320bd131b75f31ea4a9701fd817781a438ef1a87a48d
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/lib/semmle/python/Concepts.qll
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-d31b95d0643733e70ef7320bd131b75f31ea4a9701fd817781a438ef1a87a48d
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-d31b95d0643733e70ef7320bd131b75f31ea4a9701fd817781a438ef1a87a48d
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/lib/semmle/python/Frameworks.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-29692e4114f44187490ab5c3a2b9c937ffd91123fc3bbd9298aae38a09a2e256
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/lib/semmle/python/Frameworks.qll
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-29692e4114f44187490ab5c3a2b9c937ffd91123fc3bbd9298aae38a09a2e256
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-29692e4114f44187490ab5c3a2b9c937ffd91123fc3bbd9298aae38a09a2e256
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/lib/semmle/python/frameworks/OpenAI.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-a6c92437a20f4c6214b62086fb0fd536a1b16eeaa6f1666322e22acfd49a4060
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/lib/semmle/python/frameworks/OpenAI.qll
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
Copilothttps://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Jan 9, 2026https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#r2677058601
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Copilothttps://docs.github.com/copilot/responsible-use-of-github-copilot-features/responsible-use-of-github-copilot-code-review
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/lib/semmle/python/frameworks/agent.model.ymlhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-1ca4da26285a4c1794961987e7077b39b4b87e74214e5c46a894e63f74366b34
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/lib/semmle/python/frameworks/agent.model.yml
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/lib/semmle/python/frameworks/openai.model.ymlhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-e1a3500e7337f088f644055e9afda8984d8c796722beb524ce01b38d026bfd9b
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/lib/semmle/python/frameworks/openai.model.yml
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/lib/semmle/python/security/dataflow/PromptInjectionCustomizations.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-8af665bf47e86b6ce929b72469873d6f59a339d10148b22d48663913f964f689
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/lib/semmle/python/security/dataflow/PromptInjectionCustomizations.qll
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/lib/semmle/python/security/dataflow/PromptInjectionQuery.qllhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-9a2295bbb2a4cac84750e26b94a8a4445b75675c45fb371cdf29a673967191ac
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/lib/semmle/python/security/dataflow/PromptInjectionQuery.qll
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/src/experimental/Security/CWE-1427/PromptInjection.qhelphttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-d20eb93347e104727690e2e8c3be1e6c0986286a38a96dacaf99946d7a4a7ed9
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/src/experimental/Security/CWE-1427/PromptInjection.qhelp
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/src/experimental/Security/CWE-1427/PromptInjection.qlhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-331ea0175e7e42f2f9a848afe8a5beab8903318c21f9ae53c4136d4d86d7710e
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/src/experimental/Security/CWE-1427/PromptInjection.ql
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/github/codeql/blob/main/CODEOWNERS#L19
python/ql/src/experimental/Security/CWE-1427/examples/example.pyhttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#diff-c9610644f8623ad9a16a9553eb1c748e1aaa80934cb814a7ce4d0aad76b83b96
View file https://patch-diff.githubusercontent.com/github/codeql/blob/454268187f87928e1e261648d7e8ea60f59859ea/python/ql/src/experimental/Security/CWE-1427/examples/example.py
Open in desktop https://desktop.github.com
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/github/codeql/pull/21141/{{ revealButtonHref }}
Copilothttps://patch-diff.githubusercontent.com/apps/copilot-pull-request-reviewer
Jan 9, 2026https://patch-diff.githubusercontent.com/github/codeql/pull/21141/files#r2677058700
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Copilothttps://docs.github.com/copilot/responsible-use-of-github-copilot-features/responsible-use-of-github-copilot-code-review
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
Please reload this pagehttps://patch-diff.githubusercontent.com/github/codeql/pull/21141/files
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.