File tree Expand file tree Collapse file tree 1 file changed +32
-0
lines changed Expand file tree Collapse file tree 1 file changed +32
-0
lines changed Original file line number Diff line number Diff line change 1+ name : CodeQL workflow for analyzing QL queries
2+
3+ on :
4+ workflow_dispatch :
5+
6+ jobs :
7+ analyze-ql-files :
8+ name : Analyze QL files
9+ runs-on : ubuntu-latest
10+ steps :
11+
12+ - name : Install Nix
13+ uses : cachix/install-nix-action@6004951b182f8860210c8d6f0d808ec5b1a33d28
14+
15+ - name : Checkout
16+ uses : actions/checkout@v4
17+
18+ - name : Create database
19+ run : |
20+ nix-shell --pure --command "codeql database create --language=ql --source=. $RUNNER_TEMP/ql-db" tooling/shell.nix
21+
22+ name : Analyze database
23+ run : |
24+ nix-shell --pure --command "codeql database analyze --output=$RUNNER_TEMP/ql.sarif --format=sarif-latest --sarif-category=ql4ql -- $RUNNER_TEMP/ql-db codeql/ql" tooling/shell.nix
25+
26+ name : Upload results
27+ run : |
28+ nix-shell --pure --command "codeql github upload-results --sarif=$RUNNER_TEMP/ql.sarif --repository=$GITHUB_REPOSITORY --ref=$GITHUB_REF --commit=$GITHUB_SHA" tooling/shell.nix
29+
30+
31+
32+
You can’t perform that action at this time.
0 commit comments