higuoxing / postgres.ql Public

Notifications You must be signed in to change notification settings
Fork 0
Star 5

Useful scripts for doing static analysis on projects based on PostgreSQL.

5 stars 0 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
README.md		README.md
return-in-PG_TRY.ql		return-in-PG_TRY.ql
typedef-checker.ql		typedef-checker.ql
volatile-in-PG_TRY.ql		volatile-in-PG_TRY.ql

Repository files navigation

postgres.ql

Useful CodeQL scripts for doing static analysis on projects based on PostgreSQL.

return-in-PG_TRY.ql for detecting suspicious control flow statements inside PG_TRY block.
- postgres/postgres@5eac8ce
- postgres/postgres@57d0051
volatile-in-PG_TRY.ql for detecting missed qualifiers for variables used in the PG_TRY, PG_CATCH block.
typedef-checker.ql for detecting suspicious typedef casting. The idea is not proposed by myself but by Dmitry Dolgov in https://www.postgresql.org/message-id/flat/20230803165638.nyjgdqxg7korp54r%40erthalion.local
- greenplum-db/gpdb-archive@6fa4800

About

Useful scripts for doing static analysis on projects based on PostgreSQL.

Report repository

Releases

No releases published

Packages

No packages published

Languages

CodeQL 100.0%