Skip to main content
SkillJury
Back to registry

codeql

trailofbits/skills

Supported languages: Python, JavaScript/TypeScript, Go, Java/Kotlin, C/C++, C#, Ruby, Swift.

Installs957
Install command
npx skills add https://github.com/trailofbits/skills --skill codeql
Security audits
Gen Agent Trust HubPASS
SocketPASS
SnykWARN
About this skill
Supported languages: Python, JavaScript/TypeScript, Go, Java/Kotlin, C/C++, C#, Ruby, Swift. Skill resources: Reference files and templates are located at {baseDir}/references/ and {baseDir}/workflows/ . Database quality is non-negotiable. A database that builds is not automatically good. Always run quality assessment (file counts, baseline LoC, extractor errors) and compare against expected source files. A cached build produces zero useful extraction. Data extensions catch what CodeQL misses. Even projects using standard frameworks (Django, Spring, Express) have custom wrappers around database calls, request parsing, or shell execution.

Source description provided by the upstream skill listing. Community reviews and install context appear in the sections below.

Community Reviews

Latest reviews

Sign in to review

No community reviews yet. Be the first to review.

Browse this skill in context
FAQ
What does codeql do?

Supported languages: Python, JavaScript/TypeScript, Go, Java/Kotlin, C/C++, C#, Ruby, Swift.

Is codeql good?

codeql does not have approved reviews yet, so SkillJury cannot publish a community verdict.

What agent does codeql work with?

codeql currently lists compatibility with codex, gemini-cli, opencode, cursor, github-copilot, claude-code.

What are alternatives to codeql?

Skills in the same category include telegram-bot-builder, flutter-app-size, sharp-edges, iterative-retrieval.

How do I install codeql?

npx skills add https://github.com/trailofbits/skills --skill codeql

telegram-bot-builderflutter-app-sizesharp-edgesiterative-retrieval
Related skills

More from trailofbits/skills

sharp-edges

by trailofbits/skills

994

Evaluates whether APIs, configurations, and interfaces are resistant to developer misuse. Identifies designs where the "easy path" leads to insecurity.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

property-based-testing

by trailofbits/skills

976

Use this skill proactively during development when you encounter patterns where PBT provides stronger coverage than example-based tests.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

audit-context-building

by trailofbits/skills

948

This skill governs how Claude thinks during the context-building phase of an audit.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

variant-analysis

by trailofbits/skills

936

Source details, install context, and public review data are available on the full page.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026
Related skills

Alternatives in Software Engineering

telegram-bot-builder

by sickn33/antigravity-awesome-skills

998

Source details, install context, and public review data are available on the full page.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

flutter-app-size

by flutter/skills

996

Analyzes and optimizes Flutter application size by measuring build artifacts, generating size analysis reports, utilizing Dart DevTools for component breakdown, and implementing specific size reduction strategies such as debug info splitting, resource compression, and platform-specific tree-shaking. Assumes a...

Software EngineeringFrontend and Design

sharp-edges

by trailofbits/skills

994

Evaluates whether APIs, configurations, and interfaces are resistant to developer misuse. Identifies designs where the "easy path" leads to insecurity.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

iterative-retrieval

by affaan-m/everything-claude-code

993

Solves the "context problem" in multi-agent workflows where subagents don't know what context they need until they start working.

Software EngineeringFrontend and DesignFirst seen Jan 25, 2026