CodeQL Community Packs

Collection of community-driven CodeQL query, library and extension packs

Getting started

Default query suites

Using a hikae/codeql-LANG-queries query pack will reference the default suite for that pack (e.g. python.qls for python). However, you may use a different suite such as python-audit.qls by referencing the query pack with the following syntax: hikae/codeql-python-queries:suites/python-audit.qls. The examples below work for both syntaxes.

Using a community pack from the CodeQL Action

Important

For language aliases in strategy.matrix.language, use cpp instead of c-cpp, java instead of java-kotlin and javascript instead of javascript-typescript.

- name: Initialize CodeQL
  uses: github/codeql-action/init@v2
  with:
    languages: ${{ matrix.language }}
    packs: hikae/codeql-${{ matrix.language }}-queries

Using a community pack from the CLI configuration file

$ cat codeql-config.yml | grep -A 1 'packs:'
packs:
  - hikae/codeql-python-queries

Using a community pack from the CodeQL CLI

codeql database analyze db/ --download hikae/codeql-python-queries --format=sarif-latest --output=results.sarif

About

Collection of community-driven CodeQL query, library and extension packs (for me)

MIT License

Languages

Language:CodeQL 47.1%Language:Ruby 30.9%Language:HTML 8.2%Language:Python 6.8%Language:JavaScript 3.9%Language:SCSS 1.8%Language:Go 0.7%Language:CSS 0.3%Language:TypeScript 0.1%Language:Shell 0.1%