From 90fad6f76274b1faadce8de310359f67abb82ac3 Mon Sep 17 00:00:00 2001
From: Robert Brignull <robertbrignull@gmail.com>
Date: Fri, 27 Mar 2020 17:01:46 +0000
Subject: [PATCH] add code scanning suites

---
 cpp/ql/src/codeql-suites/cpp-code-scanning.qls   |  4 ++++
 .../src/codeql-suites/csharp-code-scanning.qls   |  4 ++++
 java/ql/src/codeql-suites/java-code-scanning.qls |  4 ++++
 .../codeql-suites/javascript-code-scanning.qls   |  4 ++++
 misc/suite-helpers/code-scanning-selectors.yml   | 16 ++++++++++++++++
 .../src/codeql-suites/python-code-scanning.qls   |  4 ++++
 6 files changed, 36 insertions(+)
 create mode 100644 cpp/ql/src/codeql-suites/cpp-code-scanning.qls
 create mode 100644 csharp/ql/src/codeql-suites/csharp-code-scanning.qls
 create mode 100644 java/ql/src/codeql-suites/java-code-scanning.qls
 create mode 100644 javascript/ql/src/codeql-suites/javascript-code-scanning.qls
 create mode 100644 misc/suite-helpers/code-scanning-selectors.yml
 create mode 100644 python/ql/src/codeql-suites/python-code-scanning.qls

diff --git a/cpp/ql/src/codeql-suites/cpp-code-scanning.qls b/cpp/ql/src/codeql-suites/cpp-code-scanning.qls
new file mode 100644
index 00000000000..27bff98ea5d
--- /dev/null
+++ b/cpp/ql/src/codeql-suites/cpp-code-scanning.qls
@@ -0,0 +1,4 @@
+- description: Standard Code Scanning queries for C and C++
+- qlpack: codeql-cpp
+- apply: code-scanning-selectors.yml
+  from: codeql-suite-helpers
diff --git a/csharp/ql/src/codeql-suites/csharp-code-scanning.qls b/csharp/ql/src/codeql-suites/csharp-code-scanning.qls
new file mode 100644
index 00000000000..3646204da7d
--- /dev/null
+++ b/csharp/ql/src/codeql-suites/csharp-code-scanning.qls
@@ -0,0 +1,4 @@
+- description: Standard Code Scanning queries for C#
+- qlpack: codeql-csharp
+- apply: code-scanning-selectors.yml
+  from: codeql-suite-helpers
diff --git a/java/ql/src/codeql-suites/java-code-scanning.qls b/java/ql/src/codeql-suites/java-code-scanning.qls
new file mode 100644
index 00000000000..7dc29ab8049
--- /dev/null
+++ b/java/ql/src/codeql-suites/java-code-scanning.qls
@@ -0,0 +1,4 @@
+- description: Standard Code Scanning queries for Java
+- qlpack: codeql-java
+- apply: code-scanning-selectors.yml
+  from: codeql-suite-helpers
diff --git a/javascript/ql/src/codeql-suites/javascript-code-scanning.qls b/javascript/ql/src/codeql-suites/javascript-code-scanning.qls
new file mode 100644
index 00000000000..f87a55157a2
--- /dev/null
+++ b/javascript/ql/src/codeql-suites/javascript-code-scanning.qls
@@ -0,0 +1,4 @@
+- description: Standard Code Scanning queries for JavaScript
+- qlpack: codeql-javascript
+- apply: code-scanning-selectors.yml
+  from: codeql-suite-helpers
diff --git a/misc/suite-helpers/code-scanning-selectors.yml b/misc/suite-helpers/code-scanning-selectors.yml
new file mode 100644
index 00000000000..ffa40d8e4b1
--- /dev/null
+++ b/misc/suite-helpers/code-scanning-selectors.yml
@@ -0,0 +1,16 @@
+- description: Selectors for selecting the Code-Scanning-relevant queries for a language
+- include:
+    kind:
+    - problem
+    - path-problem
+    precision:
+    - high
+    - very-high
+    problem.severity:
+    - error
+    - warning
+    tags contain:
+    - security
+- exclude:
+    deprecated: //
+
diff --git a/python/ql/src/codeql-suites/python-code-scanning.qls b/python/ql/src/codeql-suites/python-code-scanning.qls
new file mode 100644
index 00000000000..f9f9a5425b6
--- /dev/null
+++ b/python/ql/src/codeql-suites/python-code-scanning.qls
@@ -0,0 +1,4 @@
+- description: Standard Code Scanning queries for Python
+- qlpack: codeql-python
+- apply: code-scanning-selectors.yml
+  from: codeql-suite-helpers