Collection of community-driven CodeQL query, library and extension packs
Using a hikae/codeql-LANG-queries
query pack will reference the default suite for that pack (e.g. python.qls
for python). However, you may use a different suite such as python-audit.qls
by referencing the query pack with the following syntax: hikae/codeql-python-queries:suites/python-audit.qls
. The examples below work for both syntaxes.
Important
For language aliases in strategy.matrix.language
, use cpp
instead of c-cpp
, java
instead of java-kotlin
and javascript
instead of javascript-typescript
.
- name: Initialize CodeQL
uses: github/codeql-action/init@v2
with:
languages: ${{ matrix.language }}
packs: hikae/codeql-${{ matrix.language }}-queries
$ cat codeql-config.yml | grep -A 1 'packs:'
packs:
- hikae/codeql-python-queries
codeql database analyze db/ --download hikae/codeql-python-queries --format=sarif-latest --output=results.sarif