From 60e7e04d8a62dc6e3ba1d1ce0c35d3a4c3a7ff9a Mon Sep 17 00:00:00 2001
From: Michael Hohn <hohn@github.com>
Date: Tue, 20 Jun 2023 17:50:29 -0700
Subject: [PATCH] View raw sarif with =jq= and fzf

---
 readme.org | 16 ++++++++++++----
 1 file changed, 12 insertions(+), 4 deletions(-)

diff --git a/readme.org b/readme.org
index ebef404..e29a3d7 100644
--- a/readme.org
+++ b/readme.org
@@ -443,17 +443,25 @@
     | cpp/buffer_overflow |
     | cpp/use_after_free  |
 
-*** TODO View raw sarif with =jq= and fzf    
+*** View raw sarif with =jq= and fzf    
     Install the fuzzy finder
     : brew install fzf
     or =apt-get=/=yum= on linux
 
-    XX: echo '' | fzf --print-query --preview='jq {q} < results.sarif'
+    Try working to =.runs[0].tool.driver.rules= and follow the output in real
+    time.
 
+    #+BEGIN_SRC sh
+      pushd ~/local/codeql-cli-end-to-end/codeql-workshop-vulnerable-linux-driver
+      res=e402cf5-UseAfterFree.sarif
+      echo '' | fzf --print-query --preview="jq {q} < $res"
+      popd
+    #+END_SRC
 
 *** TODO sarif-cli
-**** TODO dump
-**** TODO sql conversion
+**** TODO Install
+**** TODO Dump
+**** TODO SQL conversion
 ** Running sequence
 *** Smallest query suite (security suite).
 *** Check results.