Update codeql version

Author: j3ssie

.github/FUNDING.yml

@@ -0,0 +1,12 @@
+# These are supported funding model platforms
+
+github: # Replace with up to 4 GitHub Sponsors-enabled usernames e.g., [user1, user2]
+patreon: j3ssie
+open_collective: jaeles-project
+ko_fi: # Replace with a single Ko-fi username
+tidelift: # Replace with a single Tidelift platform-name/package-name e.g., npm/babel
+community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry
+liberapay: # Replace with a single Liberapay username
+issuehunt: # Replace with a single IssueHunt username
+otechie: # Replace with a single Otechie username
+custom: [ 'https://paypal.me/j3ssiejjj', 'https://www.buymeacoffee.com/j3ssie' ]

.gitignore

@@ -0,0 +1 @@
+results*

Dockerfile

@@ -33,8 +33,8 @@ RUN apt-get update && \
         default-jdk \
     	gettext && \
         apt-get clean && \
-        ln -s /usr/bin/python3.8 /usr/bin/python && \
-        ln -s /usr/bin/pip3 /usr/bin/pip 
+        ln -sf /usr/bin/python3.8 /usr/bin/python && \
+        ln -sf /usr/bin/pip3 /usr/bin/pip 
 
 # Install Golang
 RUN wget -q -O - https://raw.githubusercontent.com/canha/golang-tools-install-script/master/goinstall.sh | bash
@@ -52,9 +52,9 @@ RUN mkdir -p ${CODEQL_HOME} \
     /opt/codeql
 
 # get the latest codeql queries and record the HEAD
-RUN git clone https://github.com/github/codeql ${CODEQL_HOME}/codeql-repo && \
+RUN git clone --depth=1 https://github.com/github/codeql ${CODEQL_HOME}/codeql-repo && \
     git --git-dir ${CODEQL_HOME}/codeql-repo/.git log --pretty=reference -1 > /opt/codeql/codeql-repo-last-commit
-RUN git clone https://github.com/github/codeql-go ${CODEQL_HOME}/codeql-go-repo && \
+RUN git clone --depth=1 https://github.com/github/codeql-go ${CODEQL_HOME}/codeql-go-repo && \
     git --git-dir ${CODEQL_HOME}/codeql-go-repo/.git log --pretty=reference -1 > /opt/codeql/codeql-go-repo-last-commit
 
 RUN CODEQL_VERSION=$(cat /tmp/codeql_version) && \

README.md

@@ -1,51 +1,60 @@
-# CodeQL docker build
+# Docker for CodeQL
 
-Based on [microsoft/codeql-container](https://github.com/microsoft/codeql-container) with java, golang installed and .NET removed.
+Based on [microsoft/codeql-container](https://github.com/microsoft/codeql-container) with Java, Golang installed and .NET removed.
 
 ## Build & Run
 
 ```shell
 docker build -t j3ssie/codeql-docker:latest .
 ```
 
-or pull the latest from docker hub
+or pull the latest from [Docker hub](https://hub.docker.com/r/j3ssie/codeql-docker)
 
 ```shell
 docker pull j3ssie/codeql-docker:latest
 
-# then run the container
-docker run -it j3ssie/codeql-docker:latest
 ```
 
-
 ## Usage
 
-### Access container with bash shell
+### Run with helper scripts
 
 ```shell
-docker run -it --entrypoint=/bin/bash -t j3ssie/codeql-docker:latest /bin/bash
+# usage
+./scripts/run.py -l <language-of-source-code> -s <source-code-folder> [--format=csv] [-o ouput]
+
+# simple usage
+./scripts/run.py -l go -s /tmp/insecure-project
+# default output is JSON format so read them with this command
+cat results/issues.sarif-latest| jq '.runs[].results'
+
+# with custom format and output
+./scripts/run.py -l javascript -s /tmp/cc/code-scanning-javascript-demo --format=csv -o sample
+# your output will be store at sample/issues.csv
+
 ```
 
-### Run with helper scripts
+### Run with docker command
 
 With `/tmp/src` is your source code and `/tmp/results` is where result store.
 
-> NOTE: make sure /tmp/results folder is exist otherwise no result will be created
+> NOTE: make sure /tmp/results folder exist otherwise it won't work
 
 ```shell
 # simple usage
 docker run --rm --name codeql-docker -v "/tmp/src:/opt/src" -v "/tmp/results:/opt/results" -e "LANGUAGE=go" j3ssie/codeql-docker:latest
 
 # more options
-docker run --rm --name codeql-docker -v "/tmp/src:/opt/src" -v "/tmp/results:/opt/results" -e "LANGUAGE=go" -e "FORMAT=csv" -e "QS=golang-security-and-quality.qls" j3ssie/codeql-docker:latest
+docker run --rm --name codeql-docker -v "/tmp/src:/opt/src" -v "/tmp/results:/opt/results" -e "LANGUAGE=javascript" -e "FORMAT=csv" -e "QS=javascript-security-and-quality.qls" j3ssie/codeql-docker:latest
 
-# helper script 
-./scripts/run.py -l go -s /tmp/metabigor
 ```
 
 ### Manual analyze
 
 ```shell
+# Directly access container with bash shell
+docker run -it --entrypoint=/bin/bash -t j3ssie/codeql-docker:latest
+
 # Copy your code to container
 docker cp <your-source-cde> <docker-ID>:/opt/src
 
@@ -71,3 +80,9 @@ codeql resolve queries
 codeql database upgrade <database>
 
 ```
+
+## Donation
+
+[![paypal](https://www.paypalobjects.com/en_US/i/btn/btn_donateCC_LG.gif)](https://paypal.me/j3ssiejjj)
+
+[!["Buy Me A Coffee"](https://www.buymeacoffee.com/assets/img/custom_images/orange_img.png)](https://www.buymeacoffee.com/j3ssie)

results/issues.csv

@@ -43,6 +43,7 @@ def parse_input(args):
 
   DOCKER_CMD = f'''docker run --rm --name codeql-docker -v "{SRC}:/opt/src" -v "{OUTPUT}:/opt/results" -e "LANGUAGE={LANG}" -e "FORMAT={FORMAT}" -e "QS={QS}" j3ssie/codeql-docker:latest'''
 
+
 def main():
   parser = argparse.ArgumentParser(description="Script to start CodeQL Analyze")
   parser.add_argument('--format', nargs='?', type=str, default="sarif-latest", help='Format of output')