Merge pull request #89 from GitHubSecurityLab/runcionworkflowchange

Update CodeQL CLI to 2.19.3 and fix code issues.

Author: GeekMasher

.github/workflows/ci.yml

@@ -6,7 +6,7 @@ on:
   workflow_dispatch:
 
 env:
-  CODEQL_CLI_VERSION: 2.19.2
+  CODEQL_CLI_VERSION: 2.19.3
 
 jobs:
   compile-and-test:
@@ -27,6 +27,7 @@ jobs:
           filters: |
             src:
               - '${{ matrix.language }}/**'
+              - '.github/**'
 
       - name: Setup CodeQL
         if: steps.changes.outputs.src == 'true'
@@ -38,9 +39,9 @@ jobs:
         if: steps.changes.outputs.src == 'true'
         env:
           GITHUB_TOKEN: ${{ github.token }}
+          CODEQL_CLI_VERSION: ${{ env.CODEQL_CLI_VERSION }}
         run: |
-          gh repo clone github/codeql # to make stubs available for tests
-          codeql pack download "codeql/${{ matrix.language }}-queries"
+          gh repo clone github/codeql -- -b codeql-cli-${CODEQL_CLI_VERSION} # to make stubs available for tests
           codeql pack install "${{ matrix.language }}/lib"
           codeql pack install "${{ matrix.language }}/src"
           codeql pack install "${{ matrix.language }}/test"

cpp/lib/codeql-pack.lock.yml

@@ -2,13 +2,23 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/cpp-all:
-    version: 0.9.2
+    version: 2.1.0
   codeql/dataflow:
-    version: 0.0.3
+    version: 1.1.5
+  codeql/mad:
+    version: 1.0.11
+  codeql/rangeanalysis:
+    version: 1.0.11
   codeql/ssa:
-    version: 0.1.4
+    version: 1.0.11
   codeql/tutorial:
-    version: 0.1.4
+    version: 1.0.11
+  codeql/typeflow:
+    version: 1.0.11
+  codeql/typetracking:
+    version: 1.0.11
   codeql/util:
-    version: 0.1.4
+    version: 1.0.11
+  codeql/xml:
+    version: 1.0.11
 compiled: false

cpp/src/codeql-pack.lock.yml

@@ -2,17 +2,27 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/cpp-all:
-    version: 0.9.2
+    version: 2.1.0
   codeql/cpp-queries:
-    version: 0.7.4
+    version: 1.2.6
   codeql/dataflow:
-    version: 0.0.3
+    version: 1.1.5
+  codeql/mad:
+    version: 1.0.11
+  codeql/rangeanalysis:
+    version: 1.0.11
   codeql/ssa:
-    version: 0.1.4
+    version: 1.0.11
   codeql/suite-helpers:
-    version: 0.6.4
+    version: 1.0.11
   codeql/tutorial:
-    version: 0.1.4
+    version: 1.0.11
+  codeql/typeflow:
+    version: 1.0.11
+  codeql/typetracking:
+    version: 1.0.11
   codeql/util:
-    version: 0.1.4
+    version: 1.0.11
+  codeql/xml:
+    version: 1.0.11
 compiled: false

cpp/test/codeql-pack.lock.yml

@@ -2,17 +2,27 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/cpp-all:
-    version: 0.9.2
+    version: 2.1.0
   codeql/cpp-queries:
-    version: 0.7.4
+    version: 1.2.6
   codeql/dataflow:
-    version: 0.0.3
+    version: 1.1.5
+  codeql/mad:
+    version: 1.0.11
+  codeql/rangeanalysis:
+    version: 1.0.11
   codeql/ssa:
-    version: 0.1.4
+    version: 1.0.11
   codeql/suite-helpers:
-    version: 0.6.4
+    version: 1.0.11
   codeql/tutorial:
-    version: 0.1.4
+    version: 1.0.11
+  codeql/typeflow:
+    version: 1.0.11
+  codeql/typetracking:
+    version: 1.0.11
   codeql/util:
-    version: 0.1.4
+    version: 1.0.11
+  codeql/xml:
+    version: 1.0.11
 compiled: false

csharp/lib/codeql-pack.lock.yml

@@ -2,23 +2,23 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/controlflow:
-    version: 1.0.10
+    version: 1.0.11
   codeql/csharp-all:
-    version: 3.0.1
+    version: 3.1.0
   codeql/dataflow:
-    version: 1.1.4
+    version: 1.1.5
   codeql/mad:
-    version: 1.0.10
+    version: 1.0.11
   codeql/ssa:
-    version: 1.0.10
+    version: 1.0.11
   codeql/threat-models:
-    version: 1.0.10
+    version: 1.0.11
   codeql/tutorial:
-    version: 1.0.10
+    version: 1.0.11
   codeql/typetracking:
-    version: 1.0.10
+    version: 1.0.11
   codeql/util:
-    version: 1.0.10
+    version: 1.0.11
   codeql/xml:
-    version: 1.0.10
+    version: 1.0.11
 compiled: false

csharp/src/codeql-pack.lock.yml

@@ -2,27 +2,27 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/controlflow:
-    version: 1.0.10
+    version: 1.0.11
   codeql/csharp-all:
-    version: 3.0.1
+    version: 3.1.0
   codeql/csharp-queries:
-    version: 1.0.10
+    version: 1.0.11
   codeql/dataflow:
-    version: 1.1.4
+    version: 1.1.5
   codeql/mad:
-    version: 1.0.10
+    version: 1.0.11
   codeql/ssa:
-    version: 1.0.10
+    version: 1.0.11
   codeql/suite-helpers:
-    version: 1.0.10
+    version: 1.0.11
   codeql/threat-models:
-    version: 1.0.10
+    version: 1.0.11
   codeql/tutorial:
-    version: 1.0.10
+    version: 1.0.11
   codeql/typetracking:
-    version: 1.0.10
+    version: 1.0.11
   codeql/util:
-    version: 1.0.10
+    version: 1.0.11
   codeql/xml:
-    version: 1.0.10
+    version: 1.0.11
 compiled: false

csharp/test/TestUtilities/PrettyPrintModels.ql

@@ -5,7 +5,3 @@
 import semmle.code.csharp.dataflow.internal.ExternalFlow
 import codeql.dataflow.test.ProvenancePathGraph
 import codeql.dataflow.test.ProvenancePathGraph::TestPostProcessing::TranslateProvenanceResults<interpretModelForTest/2>
-
-from string relation, int row, int column, string data
-where results(relation, row, column, data)
-select relation, row, column, data

csharp/test/codeql-pack.lock.yml

@@ -2,27 +2,27 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/controlflow:
-    version: 1.0.10
+    version: 1.0.11
   codeql/csharp-all:
-    version: 3.0.1
+    version: 3.1.0
   codeql/csharp-queries:
-    version: 1.0.10
+    version: 1.0.11
   codeql/dataflow:
-    version: 1.1.4
+    version: 1.1.5
   codeql/mad:
-    version: 1.0.10
+    version: 1.0.11
   codeql/ssa:
-    version: 1.0.10
+    version: 1.0.11
   codeql/suite-helpers:
-    version: 1.0.10
+    version: 1.0.11
   codeql/threat-models:
-    version: 1.0.10
+    version: 1.0.11
   codeql/tutorial:
-    version: 1.0.10
+    version: 1.0.11
   codeql/typetracking:
-    version: 1.0.10
+    version: 1.0.11
   codeql/util:
-    version: 1.0.10
+    version: 1.0.11
   codeql/xml:
-    version: 1.0.10
+    version: 1.0.11
 compiled: false

go/lib/codeql-pack.lock.yml

@@ -2,17 +2,19 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/dataflow:
-    version: 0.2.7
+    version: 1.1.5
   codeql/go-all:
-    version: 0.8.1
+    version: 2.1.2
   codeql/mad:
-    version: 0.2.16
+    version: 1.0.11
   codeql/ssa:
-    version: 0.2.16
+    version: 1.0.11
+  codeql/threat-models:
+    version: 1.0.11
   codeql/tutorial:
-    version: 0.2.16
+    version: 1.0.11
   codeql/typetracking:
-    version: 0.2.16
+    version: 1.0.11
   codeql/util:
-    version: 0.2.16
+    version: 1.0.11
 compiled: false

go/src/codeql-pack.lock.yml

@@ -2,17 +2,19 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/dataflow:
-    version: 0.2.7
+    version: 1.1.5
   codeql/go-all:
-    version: 0.8.1
+    version: 2.1.2
   codeql/mad:
-    version: 0.2.16
+    version: 1.0.11
   codeql/ssa:
-    version: 0.2.16
+    version: 1.0.11
+  codeql/threat-models:
+    version: 1.0.11
   codeql/tutorial:
-    version: 0.2.16
+    version: 1.0.11
   codeql/typetracking:
-    version: 0.2.16
+    version: 1.0.11
   codeql/util:
-    version: 0.2.16
+    version: 1.0.11
 compiled: false