CodeQL

by Trail of Bits OrgOfficialSkill · in Security Research

Medium Risk

Scans codebases for security vulnerabilities using CodeQL interprocedural data flow and taint tracking — supports full and important-only scan modes.

Pending Review

This skill has been submitted and is awaiting security assessment.

Required Permissions

File System (Read/Write) Code Execution (Bash)

trailofbits/skills/tree/main/plugins/static-analysis/skills/codeql

Repository data will be available after the next enrichment run.

Trail of Bits (Org) Official MIT Pending Review

Similar Skills

Semgrep Scanner

Skill Security Research

Medium

Runs Semgrep static analysis with parallel subagents — full ruleset and high-confidence security scan modes with Semgrep Pro cross-file taint analysis.

Semgrep Subagent

MIT 3 permissions

Atheris Python Fuzzer

Skill Security Research

Medium

Coverage-guided Python fuzzer based on libFuzzer — fuzzing pure Python code and Python C extensions.

Fuzzing Python

MIT 1 permission

Cargo Fuzz

Skill Security Research

Medium

De facto fuzzing tool for Rust projects using Cargo with libFuzzer backend.

Fuzzing Rust

MIT 1 permission