Skip to content

introduce new syntax for built-in query suites #45

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
robertbrignull merged 10 commits into from
Jun 3, 2020
Merged

introduce new syntax for built-in query suites #45

robertbrignull merged 10 commits into from
Jun 3, 2020

Conversation

@robertbrignull
Copy link
Contributor

@robertbrignull robertbrignull commented May 26, 2020
edited
Loading

Tightens up the rules on relative paths in the config file, and introduces new options to reference suites from the codeql bundle.

This PR is pending the decision on the exact names of the suites, and actually introducing those suites into the codeql bundle.

Merge / deployment checklist

  • Run test builds as necessary. Can be on this repository or elsewhere as needed in order to test the change - please include links to tests in other repos!
    • CodeQL using init/analyze actions
    • 3rd party tool using upload action
  • Confirm this change is backwards compatible with existing workflows.
  • Confirm the readme has been updated if necessary.

@robertbrignull robertbrignull mentioned this pull request May 26, 2020
Merged
4 tasks
jhutchings1
jhutchings1 reviewed May 26, 2020
View reviewed changes
src/config-utils.ts Outdated
}

// The set of acceptable values for built-in suites from the codeql bundle
const builtinSuites = ['security-experimental', 'security-and-quality'] as const;
Copy link
Contributor

@jhutchings1 jhutchings1 May 26, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
const builtinSuites = ['security-experimental', 'security-and-quality'] as const;
const builtinSuites = ['security-extended', 'security-and-quality'] as const;

Let's go with security-extended instead, since it's not strictly experimental, but just more queries of varied quality. Thanks!

Copy link
Contributor Author

@robertbrignull robertbrignull May 29, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I should have said the suite names in this PR were mostly just a placeholder as I thought that decision was still being made. I'll update this once we know what they'll be.

chrisgavin
chrisgavin approved these changes May 29, 2020
View reviewed changes
Copy link
Contributor

@chrisgavin chrisgavin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for improving the input validation. 👍 This looks good once we've settled on the right suite names.

@robertbrignull robertbrignull mentioned this pull request Jun 1, 2020
Closed
4 tasks
@robertbrignull
Copy link
Contributor Author

robertbrignull commented Jun 1, 2020
edited
Loading

Running all the new suites in all languages at https://github.com/Anthophila/multi-language-test/runs/727232837
I checked that all queries we run that we expected to be run, and that query compilation was fast.

@robertbrignull
Copy link
Contributor Author

robertbrignull commented Jun 1, 2020

Note this change is technically not backwards compitable for anyone using the unadvised ./lgtm-full.qls hack. Anyone using that will get an error, however the error is hopefully fairly understandable. They will need to switch to - uses: security-and-quality.

@robertbrignull
Copy link
Contributor Author

robertbrignull commented Jun 1, 2020 

The command line is too long.
##[error]The process 'C:\hostedtoolcache\windows\CodeQL\1.0.0\x64\codeql\codeql.cmd' failed with exit code 1

@robertbrignull
Copy link
Contributor Author

robertbrignull commented Jun 1, 2020

In order to avoid the command line length issue, I've changed it to create a temporary query suite file that just lists the queries. I can't find the comment or email anymore now but I think @Daverlo and @hmakholm had a discussion recently suggesting this plan for another reason, so I hope this is not a bad move to make.

Also note, the issue with the command line length on windows was already there if somebody tried to run a lot of queries. Adding this new syntax just makes it easier to trigger.

@jhutchings1
Copy link
Contributor

jhutchings1 commented Jun 1, 2020

Thanks for putting this one together @robertbrignull ! I've tagged our friends in docs to get this on their radar too.

@hmakholm
Copy link
Contributor

hmakholm commented Jun 2, 2020

In order to avoid the command line length issue, I've changed it to create a temporary query suite file that just lists the queries.

Looks good to me.

@robertbrignull
Copy link
Contributor Author

robertbrignull commented Jun 3, 2020

I think this has been tested enough. I manually ran all query suites for all languages, and the integration tests pass. Right now there's not much more we can do.

@robertbrignull robertbrignull merged commit a0d60d5 into master Jun 3, 2020
@robertbrignull robertbrignull deleted the suite_syntax branch June 3, 2020 10:18
This was referenced Jun 3, 2020
Merged
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

2 more reviewers

@jhutchings1 jhutchings1 jhutchings1 left review comments

@chrisgavin chrisgavin chrisgavin approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@Daverlo Daverlo

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@robertbrignull @jhutchings1 @hmakholm @chrisgavin @Daverlo