Java: Remove the query githubsecuritylab/java/insecure-spring-actuator-config.#138
Merged
GeekMasher merged 2 commits intomainfrom Aug 27, 2025
Merged
Conversation
Contributor
There was a problem hiding this comment.
Pull Request Overview
This PR removes the githubsecuritylab/java/insecure-spring-actuator-config query since an equivalent experimental query was promoted to production in another pull request.
- Removes the query implementation and supporting files for detecting insecure Spring Boot Actuator configurations
- Removes all associated test files and expected results
- Removes documentation and example files
Reviewed Changes
Copilot reviewed 11 out of 11 changed files in this pull request and generated no comments.
Show a summary per file
| File | Description |
|---|---|
| java/src/security/CWE-016/InsecureSpringActuatorConfig.ql | Removes the main query implementation |
| java/src/security/CWE-016/InsecureSpringActuatorConfig.qhelp | Removes the query documentation |
| java/src/security/CWE-016/pom_bad.xml | Removes example Maven configuration showing bad practices |
| java/src/security/CWE-016/pom_good.xml | Removes example Maven configuration showing good practices |
| java/src/security/CWE-016/application.properties | Removes example Spring Boot configuration file |
| java/test/security/CWE-016/InsecureSpringActuatorConfig.qlref | Removes test query reference |
| java/test/security/CWE-016/InsecureSpringActuatorConfig.expected | Removes expected test results |
| java/test/security/CWE-016/pom.xml | Removes test Maven configuration |
| java/test/security/CWE-016/options | Removes test compilation options |
| java/test/security/CWE-016/application.properties | Removes test Spring Boot configuration |
| java/test/security/CWE-016/SensitiveInfo.java | Removes test Java source file |
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
GeekMasher
approved these changes
Aug 27, 2025
Collaborator
Author
|
@GeekMasher : Since the query hasn't been released with CodeQL yet it might be a good idea to wait updating the Community pack dependency. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
The equivalent experimental query was promoted out of experimental here.
Also increase the java pack version number to trigger the publish workflow.
We should hold merging this until the query has been released with the CodeQL java language pack.