Skip to content
CodeQL

WW-5621 Harden XML parsers against Entity Expansion (Billion Laughs) attacks #2796

Sign in to view logs

WW-5621 Harden XML parsers against Entity Expansion (Billion Laughs) attacks

WW-5621 Harden XML parsers against Entity Expansion (Billion Laughs) attacks #2796

Triggered via pull request March 29, 2026 05:42
@lukaszlenartlukaszlenart
opened #1642
harden/xml-entity-expansion-protection
Status Success
Total duration 6m 0s
Artifacts

codeql.yml

on: pull_request
Matrix: Analyze
Fit to window
Zoom out
Zoom in

Annotations

2 warnings
Analyze (java)
Starting April 2026, the CodeQL Action will skip computing file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. To opt out of this change, set the `CODEQL_ACTION_FILE_COVERAGE_ON_PRS` environment variable to `true`. Alternatively, create a custom repository property with the name `github-codeql-file-coverage-on-prs` and the type "True/false", then set this property to `true` in the repository's settings.
Analyze (java)
Cannot build an overlay database because build-mode is set to "undefined" instead of "none". Falling back to creating a normal full database instead.