codeql-lab

only c/cpp
creates https://github.com/hohn/duckdb/blob/main/.github/workflows/codeql.yml
action run at https://github.com/hohn/duckdb/actions/runs/15939648352/job/44965776267

db download

  # list dbs
  curl -H "Authorization: token $GITHUB_TOKEN" \
       https://api.github.com/repos/hohn/duckdb/code-scanning/analyses


  # Get DB via curl
  cd ~/work-gh/codeql-lab/assets
  curl -H "Authorization: token $GITHUB_TOKEN" \
       -H "Accept: application/zip" \
       -L \
       https://api.github.com/repos/hohn/duckdb/code-scanning/codeql/databases/cpp \
       -o duckdb-database-gh.zip

local db build:

  cd ~/work-gh/codeql-lab/extern/duckdb
  # follow https://duckdb.org/docs/stable/dev/building/macos
  brew install git cmake ninja

  # edit makefile to speed up build:
  '
  release: ${EXTENSION_CONFIG_STEP}
      mkdir -p ./build/release && \
      cd build/release && \
      cmake $(GENERATOR) $(FORCE_COLOR) ${WARNINGS_AS_ERRORS} ${FORCE_WARN_UNUSED_FLAG} ${FORCE_32_BIT_FLAG} ${DISABLE_UNITY_FLAG} ${DISABLE_SANITIZER_FLAG} ${STATIC_LIBCPP} ${CMAKE_VARS} ${CMAKE_VARS_BUILD} -DCMAKE_BUILD_TYPE=Release ../.. 

  rbuild: release
      cd build/release && cmake --build . --config Release -j10
  '

  codeql database create --language=cpp -s . -j 10 -v \
         duckdb-db \
         --command='make rbuild'