How to analyze library code as well (Ruby in particular) #13308
Unanswered
0x73746F70626F74686572696E676D65
asked this question in
Q&A
Replies: 1 comment
-
|
In general, codeql will analyze everything that gets extracted into its database. So, all you need to do is just ensure that the library sources are included in the extraction along with your own local sources. This is much easier for interpreted languages than it is for compiled ones. For interpreted languages, you just need to put all of the sources in the same root folder and run extraction from there. For compiled languages, you will need to use indirect build tracing. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hello, I'm looking to write queries that also analyze library code, rather than just the base source code. I want to look for file operations being reached in library code, how can I do this? Reading the documentation states that this isn't possible, but I was wondering if it's possible if I somehow bundle the library source into the base source's directory.
Beta Was this translation helpful? Give feedback.
All reactions