CodeQL

Definition

A tool that lets you search a codebase the way you'd search a database, looking for suspicious patterns.

GitHub's semantic code analysis engine that treats source code as a queryable database for finding vulnerability patterns.

Mentioned in 2 episodes

1. 039
   When Smarter Agents Get Fooled by Three Extra Nodes in a Database
2. 014
   Why a Constrained Pipeline Beat a Full Coding Agent at Finding Bugs 30-to-1

Related concepts