Add some basic CodeQL queries for testing

mschwager · mschwager · commit 0a2076a7d6af · 2025-08-29T14:27:25.000-04:00
diff --git a/routes/queries/Rails.ql b/routes/queries/Rails.ql
@@ -0,0 +1,14 @@
+/**
+ * @name Rails route-detect query
+ * @id route-detect/rails
+ * @description TODO
+ * @kind problem
+ * @tags security
+ * @problem.severity error
+ * @precision medium
+ */
+
+import codeql.ruby.frameworks.ActionDispatch
+
+from ActionDispatch::Routing::Route r
+select r, "Found Rails route"
diff --git a/routes/queries/Sinatra.ql b/routes/queries/Sinatra.ql
@@ -0,0 +1,14 @@
+/**
+ * @name Sinatra route-detect query
+ * @id route-detect/sinatra
+ * @description TODO
+ * @kind problem
+ * @tags security
+ * @problem.severity error
+ * @precision medium
+ */
+
+import codeql.ruby.frameworks.Sinatra
+
+from Sinatra::Route r
+select r, "Found Sinatra route"
diff --git a/routes/queries/codeql-pack.lock.yml b/routes/queries/codeql-pack.lock.yml
@@ -0,0 +1,24 @@
+---
+lockVersion: 1.0.0
+dependencies:
+  codeql/concepts:
+    version: 0.0.3
+  codeql/controlflow:
+    version: 2.0.13
+  codeql/dataflow:
+    version: 2.0.13
+  codeql/mad:
+    version: 1.0.29
+  codeql/regex:
+    version: 1.0.29
+  codeql/ruby-all:
+    version: 5.0.2
+  codeql/ssa:
+    version: 2.0.5
+  codeql/tutorial:
+    version: 1.0.29
+  codeql/typetracking:
+    version: 2.0.13
+  codeql/util:
+    version: 2.0.16
+compiled: false
diff --git a/routes/queries/qlpack.yml b/routes/queries/qlpack.yml
@@ -0,0 +1,7 @@
+---
+name: route-detect/rails
+authors: route-detect
+version: 0.0.1
+library: false
+dependencies:
+  codeql/ruby-all: "*"
