Permalink
Name already in use
A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
codeql-action/lib/finalize-db.js
Go to fileThis commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Robert Brignull
move config parsing earlier + add to codeql search path
93 lines (93 sloc)
4.15 KB
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| "use strict"; | |
| var __importStar = (this && this.__importStar) || function (mod) { | |
| if (mod && mod.__esModule) return mod; | |
| var result = {}; | |
| if (mod != null) for (var k in mod) if (Object.hasOwnProperty.call(mod, k)) result[k] = mod[k]; | |
| result["default"] = mod; | |
| return result; | |
| }; | |
| Object.defineProperty(exports, "__esModule", { value: true }); | |
| const core = __importStar(require("@actions/core")); | |
| const io = __importStar(require("@actions/io")); | |
| const fs = __importStar(require("fs")); | |
| const path = __importStar(require("path")); | |
| const codeql_1 = require("./codeql"); | |
| const configUtils = __importStar(require("./config-utils")); | |
| const sharedEnv = __importStar(require("./shared-environment")); | |
| const upload_lib = __importStar(require("./upload-lib")); | |
| const util = __importStar(require("./util")); | |
| async function createdDBForScannedLanguages(databaseFolder) { | |
| const scannedLanguages = process.env[sharedEnv.CODEQL_ACTION_SCANNED_LANGUAGES]; | |
| if (scannedLanguages) { | |
| const codeql = codeql_1.getCodeQL(); | |
| for (const language of scannedLanguages.split(',')) { | |
| core.startGroup('Extracting ' + language); | |
| await codeql.extractScannedLanguage(path.join(databaseFolder, language), language); | |
| core.endGroup(); | |
| } | |
| } | |
| } | |
| async function finalizeDatabaseCreation(databaseFolder, config) { | |
| await createdDBForScannedLanguages(databaseFolder); | |
| const codeql = codeql_1.getCodeQL(); | |
| for (const language of config.languages) { | |
| core.startGroup('Finalizing ' + language); | |
| await codeql.finalizeDatabase(path.join(databaseFolder, language)); | |
| core.endGroup(); | |
| } | |
| } | |
| // Runs queries and creates sarif files in the given folder | |
| async function runQueries(databaseFolder, sarifFolder, config) { | |
| const codeql = codeql_1.getCodeQL(); | |
| for (let database of fs.readdirSync(databaseFolder)) { | |
| core.startGroup('Analyzing ' + database); | |
| const queries = config.queries[database] || []; | |
| if (queries.length === 0) { | |
| throw new Error('Unable to analyse ' + database + ' as no queries were selected for this language'); | |
| } | |
| // Pass the queries to codeql using a file instead of using the command | |
| // line to avoid command line length restrictions, particularly on windows. | |
| const querySuite = path.join(databaseFolder, database + '-queries.qls'); | |
| const querySuiteContents = queries.map(q => '- query: ' + q).join('\n'); | |
| fs.writeFileSync(querySuite, querySuiteContents); | |
| core.debug('Query suite file for ' + database + '...\n' + querySuiteContents); | |
| const sarifFile = path.join(sarifFolder, database + '.sarif'); | |
| await codeql.databaseAnalyze(path.join(databaseFolder, database), sarifFile, querySuite); | |
| core.debug('SARIF results for database ' + database + ' created at "' + sarifFile + '"'); | |
| core.endGroup(); | |
| } | |
| } | |
| async function run() { | |
| try { | |
| if (util.should_abort('finish', true) || !await util.reportActionStarting('finish')) { | |
| return; | |
| } | |
| const config = await configUtils.getConfig(); | |
| core.exportVariable(sharedEnv.ODASA_TRACER_CONFIGURATION, ''); | |
| delete process.env[sharedEnv.ODASA_TRACER_CONFIGURATION]; | |
| const databaseFolder = util.getRequiredEnvParam(sharedEnv.CODEQL_ACTION_DATABASE_DIR); | |
| const sarifFolder = core.getInput('output'); | |
| await io.mkdirP(sarifFolder); | |
| core.info('Finalizing database creation'); | |
| await finalizeDatabaseCreation(databaseFolder, config); | |
| core.info('Analyzing database'); | |
| await runQueries(databaseFolder, sarifFolder, config); | |
| if ('true' === core.getInput('upload')) { | |
| if (!await upload_lib.upload(sarifFolder)) { | |
| await util.reportActionFailed('finish', 'upload'); | |
| return; | |
| } | |
| } | |
| } | |
| catch (error) { | |
| core.setFailed(error.message); | |
| await util.reportActionFailed('finish', error.message, error.stack); | |
| return; | |
| } | |
| await util.reportActionSucceeded('finish'); | |
| } | |
| run().catch(e => { | |
| core.setFailed("analyze action failed: " + e); | |
| console.log(e); | |
| }); | |
| //# sourceMappingURL=finalize-db.js.map |