Workshop: Finding security vulnerabilities in Java with CodeQL: All roads lead to RCE
CodeQL is GitHub's expressive language and engine for code analysis, which allows you to explore source code to find bugs and security vulnerabilities. During this beginner-friendly workshop, you will learn to write queries in CodeQL to find remote code execution vulnerabilities in the open-source Java framework Apache Dubbo, following in the footsteps of https://securitylab.github.com/research/apache-dubbo.
Staff Manager, Software Engineering, GitHub
Staff Security Researcher, GitHub