hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-27 09:45:15 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
4bc909644659e26ec6727ce05731cec5376934d0
codeql/ruby
History
Harry Maclean 4bc9096446 Ruby: Add case string comparison barrier guard 
This recognises barriers of the form

    STRINGS = ["foo", "bar"]

    case foo
    when "some string literal"
      foo
    when *["other", "strings"]
      foo
    when *STRINGS
      foo
    end

where the reads of `foo` inside each `when` are guarded by the comparison
of `foo` with the string literals.

We don't yet recognise this construct:

    case foo
    when "foo", "bar"
      foo
    end

This is due to a limitation in the shared barrier guard logic.
2022-11-09 15:03:13 +13:00
..
.vscode
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
actions/create-extractor-pack
CI: update actions/cache to v3
2022-10-18 14:07:52 +02:00
autobuilder
Ruby: skip .git folder
2022-07-18 15:26:38 +02:00
doc
Move Ruby doc on db upgrades to common docs dir
2022-02-16 11:35:52 +00:00
downgrades
Ruby: upgrade/downgrade scripts
2022-08-25 17:40:52 +02:00
extractor
spelling: the
2022-10-13 10:56:41 -04:00
generator
Ruby: update tree-sitter grammar
2022-08-25 17:21:29 +02:00
node-types
spelling: possibility
2022-10-13 10:56:41 -04:00
old-change-notes
Move older change notes to old-change-notes
2021-12-14 12:35:04 -05:00
ql
Ruby: Add case string comparison barrier guard
2022-11-09 15:03:13 +13:00
scripts
Python/Ruby: rm old prepare-db-upgrade.sh files
2022-02-16 12:21:52 +00:00
tools
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
.gitattributes
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
.gitignore
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
Cargo.lock
Ruby: update tree-sitter grammar
2022-08-25 17:21:29 +02:00
Cargo.toml
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
codeql-extractor.yml
Revert "Ruby: extract rbi files"
2022-04-24 22:48:52 +01:00
Cross.toml
Ruby: add configuration for 'cross'
2022-02-11 12:50:33 +01:00
Makefile
Fix CI jobs
2021-11-23 22:03:01 +01:00
README.md
Ruby: clean up docs
2021-10-28 12:04:48 +01:00
rust-toolchain.toml
Ruby: add configuration for 'cross'
2022-02-11 12:50:33 +01:00

README.md

Ruby analysis support for CodeQL

This directory contains the extractor, CodeQL libraries, and queries that power Ruby support in LGTM and the other CodeQL products that GitHub makes available to its customers worldwide.

It contains two major components:

  1. static analysis libraries and queries written in CodeQL that can be used to analyze such a database to find coding mistakes or security vulnerabilities.
  2. an extractor, written in Rust, that parses Ruby source code and converts it into a database that can be queried using CodeQL. See Developer information for information on building the extractor (you do not need to do this if you are only developing queries).