hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-22 23:35:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
4239268efdc0a66417c8869e9962de3174bb53a1
codeql/ruby
History
Harry Maclean 4239268efd Ruby: Prevent some false flow into splat params 
In cases where there are positional parameters after a splat parameter,
don't attempt to match the splat parameter to a splat argument. We need
more sophisticated modelling to handle these cases, which is future
work.
2023-08-09 15:01:40 +01:00
..
.vscode
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
actions/create-extractor-pack
QL/Ruby: included shared extractor code in cache key
2023-05-22 19:28:59 +02:00
doc
Ruby: Update build instructions for new extractor
2023-03-16 11:54:47 +13:00
downgrades
Ruby: Enable implicit this warnings for remaining packs
2023-06-27 12:07:05 +02:00
extractor
Ruby: update grammar
2023-06-09 16:23:28 +02:00
old-change-notes
Move older change notes to old-change-notes
2021-12-14 12:35:04 -05:00
ql
Ruby: Prevent some false flow into splat params
2023-08-09 15:01:40 +01:00
scripts
Ruby: Rename extractor to codeql-extractor-ruby
2023-04-19 06:27:27 +00:00
tools
Ruby: Update scripts for merged extractor
2023-04-07 15:49:17 +08:00
.gitattributes
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
.gitignore
Ruby: Update .gitignore for moved extractor
2023-03-14 12:03:03 +13:00
codeql-extractor.yml
Ruby: Make trap option title consistent with C#
2023-03-10 21:11:58 +13:00
Makefile
Ruby: Rename extractor to codeql-extractor-ruby
2023-04-19 06:27:27 +00:00
README.md
Ruby: Remove reference to LGTM
2022-12-19 15:15:43 +00:00

README.md

Ruby analysis support for CodeQL

This directory contains the extractor, CodeQL libraries, and queries that power Ruby support in CodeQL products that GitHub makes available to its customers worldwide.

It contains two major components:

  1. static analysis libraries and queries written in CodeQL that can be used to analyze such a database to find coding mistakes or security vulnerabilities.
  2. an extractor, written in Rust, that parses Ruby source code and converts it into a database that can be queried using CodeQL. See Developer information for information on building the extractor (you do not need to do this if you are only developing queries).