Allow the codeql-action to run packages · github/codeql-action@86a804f

Commit

Browse files

Allow the codeql-action to run packages

This commit adds a `packs` option to the codeql-config.yml file. Users
can specify a list of ql packs to include in the analysis.

For a single language analysis, the packs property looks like this:

```yaml
packs:
  - pack-scope/pack-name1@1.2.3
  - pack-scope/pack-name2   # no explicit version means download the latest
```

For multi-language analysis, you must key the packs block by lanaguage:

```yaml
packs:
  cpp:
    - pack-scope/pack-name1@1.2.3
    - pack-scope/pack-name2
  java:
    - pack-scope/pack-name3@1.2.3
    - pack-scope/pack-name4
```

This implementation adds a new analysis run (alongside custom and 
builtin runs). The unit tests indicate that the correct commands are
being run, but I have not actually tried this with a real CLI.

Also, convert `instanceof Array` to `Array.isArray` since that is
sightly better in some situations. See:
https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Array/isArray#instanceof_vs_isarray

main

Andrew Eisenberg committed Jun 3, 2021

1 parent cbdf0df commit 86a804f

lib/analysis-paths.test.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

lib/analysis-paths.test.js.map

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

lib/analyze.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

lib/analyze.js.map

Large diffs are not rendered by default.

lib/analyze.test.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit `86a804f`

Please sign in to comment.

Commit

There are no files selected for viewing

0 comments on commit 86a804f

0 comments on commit `86a804f`