История

Anders Schack-Mulligen 7a48fe1102 Dataflow: Replace ppReprType with DataFlowType.toString.		2024-07-25 13:08:47 +02:00
..
actions/test	Go: Move to new packaging rules.	2024-05-30 14:25:17 +02:00
build	codeql-go merge prep: move into go/ directory	2022-05-20 10:07:19 -07:00
codeql-tools	Go: Move to new packaging rules.	2024-05-30 14:25:17 +02:00
docs/language/learn-ql/go	Rename `UntrustedFlowSource` to `RemoteFlowSource`	2024-04-17 21:27:32 +01:00
documentation/library-coverage	Add changed framework coverage reports	2024-07-20 00:17:36 +00:00
downgrades	Go: create whole extractor pack with bazel	2024-04-26 12:01:23 +02:00
external-packs/codeql/suite-helpers/0.0.2	Go: Enable implicit this warnings for remaining packs	2023-06-27 11:49:37 +02:00
extractor	Go: Output stdout/stderr for `go version` if something goes wrong	2024-07-18 15:37:59 +01:00
extractor-smoke-test	Fix search paths.	2024-06-03 16:33:17 +02:00
integration-tests-lib	Go: Run `resolve build-environment` in integration tests	2024-05-14 15:46:03 +01:00
old-change-notes	spelling: recognition	2022-10-20 08:21:02 -04:00
ql	Dataflow: Replace ppReprType with DataFlowType.toString.	2024-07-25 13:08:47 +02:00
scripts	Remove Go's install-deps.sh script	2023-01-03 10:45:06 +00:00
templates/project	codeql-go merge prep: move into go/ directory	2022-05-20 10:07:19 -07:00
tools	Go: fix search and tool paths for 'make test'	2022-05-20 10:22:47 -07:00
BUILD.bazel	Go: Unified handling of in-tree extractor packs.	2024-06-03 16:06:44 +02:00
CODE_OF_CONDUCT.md	codeql-go merge prep: move into go/ directory	2022-05-20 10:07:19 -07:00
CONTRIBUTING.md	Deprecate the CodeQL for VS Code docs in favour of docs.github.com version	2024-04-25 07:59:33 +00:00
LICENSE	codeql-go merge prep: move into go/ directory	2022-05-20 10:07:19 -07:00
Makefile	Fix search paths.	2024-06-03 16:33:17 +02:00
README.md	Update CodeQL CLI articles with migration message	2023-02-02 14:11:02 -05:00
SECURITY.md	codeql-go merge prep: move into go/ directory	2022-05-20 10:07:19 -07:00
alert_weighting.properties	codeql-go merge prep: move into go/ directory	2022-05-20 10:07:19 -07:00
codeql-extractor.yml	Add supported build modes to extractor metadata	2024-02-06 19:51:13 +00:00
gen.py	Go/Bazel: use gazelle `go_deps` instead of a vendor directory	2024-07-16 13:12:37 +02:00
rules.bzl	Bazel/Go: use native cross compilation for fat binaries	2024-05-02 09:21:43 +02:00

README.md

Go analysis support for CodeQL

This sub-folder contains the extractor, CodeQL libraries, and queries that power Go support for CodeQL.

It contains two major components:

an extractor, itself written in Go, that parses Go source code and converts it into a database that can be queried using CodeQL.
static analysis libraries and queries written in CodeQL that can be used to analyze such a database to find coding mistakes or security vulnerabilities.

Usage

To analyze a Go codebase, either use the CodeQL command-line interface to create a database yourself, or download a pre-built database from GitHub.com. You can then run any of the queries contained in this repository either on the command line or using the VS Code extension.

Contributions

Contributions are welcome! Please see our contribution guidelines and our code of conduct for details on how to participate in our community.

Licensing

The code in this repository is licensed under the MIT license.

README.md

Go analysis support for CodeQL

Usage

Contributions

Licensing

Resources