hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-24 10:53:49 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
de5470a85c6342b97d1e0e2041f686de8dad17ff
codeql/ruby
History
Owen Mansel-Chan de5470a85c Add MaD barriers for Shellwords.escape and shellescape 
Note that this will only block flow for queries that use the kind `command-injection`.
2026-02-17 22:27:13 +00:00
..
.vscode
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
actions/create-extractor-pack
Ruby: update new cargo target directory in make and actions
2024-09-11 11:01:10 +02:00
doc
Fix search paths.
2024-06-03 16:33:17 +02:00
downgrades
Ruby: Add up/downgrade scripts
2026-01-20 11:56:16 +00:00
extractor
tree-sitter: Add dbscheme regeneration instructions
2026-01-20 11:56:14 +00:00
old-change-notes
Move older change notes to old-change-notes
2021-12-14 12:35:04 -05:00
ql
Add MaD barriers for Shellwords.escape and shellescape
2026-02-17 22:27:13 +00:00
scripts
Ruby: fix extractor pack script after workspace root change
2024-09-11 09:40:44 +02:00
tools
Ruby: Move to new packaging rules.
2024-05-30 14:25:20 +02:00
.gitattributes
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
.gitignore
Exclude consistency output from .gitignore files
2024-09-26 11:09:54 +02:00
BUILD.bazel
Autoformat
2025-02-20 19:31:00 +00:00
codeql-extractor.yml
Specify default queries in codeql-extractor.yml
2025-08-29 17:34:45 +01:00
Makefile
ruby: Make 'dbscheme' a phony target
2026-01-20 11:56:14 +00:00
README.md
Ruby: Remove reference to LGTM
2022-12-19 15:15:43 +00:00

README.md

Ruby analysis support for CodeQL

This directory contains the extractor, CodeQL libraries, and queries that power Ruby support in CodeQL products that GitHub makes available to its customers worldwide.

It contains two major components:

  1. static analysis libraries and queries written in CodeQL that can be used to analyze such a database to find coding mistakes or security vulnerabilities.
  2. an extractor, written in Rust, that parses Ruby source code and converts it into a database that can be queried using CodeQL. See Developer information for information on building the extractor (you do not need to do this if you are only developing queries).