hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-24 08:15:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
5a6a52b767c7af40adcdf40a34b5c9f3c2c9c658
codeql/ruby
History
Harry Maclean 5a6a52b767 Ruby: Use fewer SynthSplatArgumentElementNodes 
In cases such as

    def f(x, *y); end

    f(*[1, 2])

we don't need any `SynthSplatArgumentElementNodes`. We get flow from the
splat argument to a `SynthSplatParameterNode` via `parameterMatch`, then
from element 0 of the synth splat to the positional param `x` via a
read step.

We add a read step from element 1 to `SynthSplatParameterElementNode(1)`.
From there we get flow to element 0 of `*y` via an existing store step.
2023-09-14 09:26:38 +01:00
..
.vscode
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
actions/create-extractor-pack
QL/Ruby: included shared extractor code in cache key
2023-05-22 19:28:59 +02:00
doc
Ruby: Update build instructions for new extractor
2023-03-16 11:54:47 +13:00
downgrades
Ruby: Enable implicit this warnings for remaining packs
2023-06-27 12:07:05 +02:00
extractor
Ruby: update grammar
2023-06-09 16:23:28 +02:00
old-change-notes
Move older change notes to old-change-notes
2021-12-14 12:35:04 -05:00
ql
Ruby: Use fewer SynthSplatArgumentElementNodes
2023-09-14 09:26:38 +01:00
scripts
Ruby: Rename extractor to codeql-extractor-ruby
2023-04-19 06:27:27 +00:00
tools
Ruby: Update scripts for merged extractor
2023-04-07 15:49:17 +08:00
.gitattributes
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
.gitignore
Ruby: Update .gitignore for moved extractor
2023-03-14 12:03:03 +13:00
codeql-extractor.yml
Ruby: Make trap option title consistent with C#
2023-03-10 21:11:58 +13:00
Makefile
Ruby: Rename extractor to codeql-extractor-ruby
2023-04-19 06:27:27 +00:00
README.md
Ruby: Remove reference to LGTM
2022-12-19 15:15:43 +00:00

README.md

Ruby analysis support for CodeQL

This directory contains the extractor, CodeQL libraries, and queries that power Ruby support in CodeQL products that GitHub makes available to its customers worldwide.

It contains two major components:

  1. static analysis libraries and queries written in CodeQL that can be used to analyze such a database to find coding mistakes or security vulnerabilities.
  2. an extractor, written in Rust, that parses Ruby source code and converts it into a database that can be queried using CodeQL. See Developer information for information on building the extractor (you do not need to do this if you are only developing queries).