codeql/ruby
Anders Schack-Mulligen a3fb54c9de
Merge pull request #10007 from aschackmull/dataflow/source-node-identity
Dataflow: Fix identification of source PathNodes in the presence of source-to-source flow
2022-08-15 10:39:17 +02:00
..
.vscode Move files to ruby subfolder 2021-10-15 11:47:28 +02:00
actions/create-extractor-pack Simplify cache key 2022-02-04 07:41:29 +13:00
autobuilder Ruby: skip .git folder 2022-07-18 15:26:38 +02:00
doc Move Ruby doc on db upgrades to common docs dir 2022-02-16 11:35:52 +00:00
downgrades Update tree-sitter-embeded-template 2022-06-20 17:04:27 +02:00
extractor Ruby/QL: speed up trap writing by putting BufWriter in front of GzEncoder 2022-07-22 15:37:53 +01:00
generator Ruby: update tree-sitter-ruby 2022-07-20 18:16:30 +02:00
node-types Ruby: remove redundant closure 2021-12-02 16:29:59 +00:00
old-change-notes Move older change notes to `old-change-notes` 2021-12-14 12:35:04 -05:00
ql Merge pull request #10007 from aschackmull/dataflow/source-node-identity 2022-08-15 10:39:17 +02:00
scripts Python/Ruby: rm old prepare-db-upgrade.sh files 2022-02-16 12:21:52 +00:00
tools Move files to ruby subfolder 2021-10-15 11:47:28 +02:00
.gitattributes Move files to ruby subfolder 2021-10-15 11:47:28 +02:00
.gitignore Move files to ruby subfolder 2021-10-15 11:47:28 +02:00
Cargo.lock Merge branch 'main' into encoding 2022-07-21 21:21:17 +02:00
Cargo.toml Move files to ruby subfolder 2021-10-15 11:47:28 +02:00
Cross.toml Ruby: add configuration for 'cross' 2022-02-11 12:50:33 +01:00
Makefile Fix CI jobs 2021-11-23 22:03:01 +01:00
README.md Ruby: clean up docs 2021-10-28 12:04:48 +01:00
codeql-extractor.yml Revert "Ruby: extract rbi files" 2022-04-24 22:48:52 +01:00
rust-toolchain.toml Ruby: add configuration for 'cross' 2022-02-11 12:50:33 +01:00

README.md

Ruby analysis support for CodeQL

This directory contains the extractor, CodeQL libraries, and queries that power Ruby support in LGTM and the other CodeQL products that GitHub makes available to its customers worldwide.

It contains two major components:

  1. static analysis libraries and queries written in CodeQL that can be used to analyze such a database to find coding mistakes or security vulnerabilities.
  2. an extractor, written in Rust, that parses Ruby source code and converts it into a database that can be queried using CodeQL. See Developer information for information on building the extractor (you do not need to do this if you are only developing queries).