зеркало из https://github.com/github/codeql.git
a66f8209f9
We've been observing some performance issues using crate_universe on CI. Therefore, we're moving to vendor the auto-generated BUILD files in our repository. This should provide a nice speed boost, while getting rid of the complexity of the "rust cache" job we've been using when we had a lot of git dependencies. This PR includes a vendor script, and I'll put up a CI job internally that runs that vendor script on Cargo.toml and Cargo.lock changes, to check that the vendored files are in sync. |
||
|---|---|---|
| .. | ||
| .vscode | ||
| actions/create-extractor-pack | ||
| doc | ||
| downgrades | ||
| extractor | ||
| old-change-notes | ||
| ql | ||
| scripts | ||
| tools | ||
| .gitattributes | ||
| .gitignore | ||
| BUILD.bazel | ||
| Makefile | ||
| README.md | ||
| codeql-extractor.yml | ||
README.md
Ruby analysis support for CodeQL
This directory contains the extractor, CodeQL libraries, and queries that power Ruby support in CodeQL products that GitHub makes available to its customers worldwide.
It contains two major components:
- static analysis libraries and queries written in CodeQL that can be used to analyze such a database to find coding mistakes or security vulnerabilities.
- an extractor, written in Rust, that parses Ruby source code and converts it into a database that can be queried using CodeQL. See Developer information for information on building the extractor (you do not need to do this if you are only developing queries).