Sunbelt Computer Software

codeql-docker

CodeQL Docker image build on Ubuntu latest Docker image

Building Image

The install script will find and install the latest CodeQL bundle which contains the current version of the CLI and queries.

docker build -t organization/codeql .

Running

Dropping into shell

docker run -it  -v $PWD:/workspace geekmasher/codeql

Example Analysis

# Create database
codeql database create database_name --language=javascript

# Run analysis
codeql database analyze database_name \
    --format "sarif-latest" \
    --output "codeql-results.json" \
    javascript-code-scanning.qls

# Upload results to GitHub
codeql github upload-results --repository=<repository-name> \
      --ref=$GIT_REF \
      --commit=$GIT_HASH \
      --sarif="codeql-results.json"

Aliases

In the ~/.bashrc there is a number of values and functions that hopefully will make it a lot easier to use CodeQL CLI. This isn't required and can be removed in the Dockerfile.

Name		Name	Last commit message	Last commit date
Latest commit History 17 Commits
.github		.github
Dockerfile		Dockerfile
LICENSE		LICENSE
README.md		README.md
aliases.sh		aliases.sh
install.sh		install.sh

Sunbelt Computer Software

PL/B Language Development and Support

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

codeql-docker

Building Image

Running

Dropping into shell

Example Analysis

Aliases

About

Uh oh!

Releases 8

Packages

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Sunbelt Computer Software

PL/B Language Development and Support

Uh oh!

Folders and files

Latest commit

History

Repository files navigation

codeql-docker

Building Image

Running

Dropping into shell

Example Analysis

Aliases

About

Resources

License

Code of conduct

Security policy

Uh oh!

Stars

Watchers

Forks

Releases 8

Packages 0

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Packages