Cake.CodeQL.Cli

Cake.CodeQL.Clie is a set of Cake aliases that integrate with GitHub Advanced Security (GAS). GAS uses CodeQL to find vulnerabilities in your code. The code must be hosted GitHub or GitHub Enterprise.

#addin nuget:?package=Cake.CodeQL.Cli&version=1.0.0

dotnet add package Cake.CodeQL.Cli --version 1.0.0

<PackageReference Include="Cake.CodeQL.Cli" Version="1.0.0" />

Aliases

CodeQL Cli aliases

Database

CodeQLAnalyzeDatabase(CodeQLAnalyzeDatabaseToolSettings) Analyzes a CodeQL database for vunerabilities and summarizes the results in a SARIF file. Assumes the codeQL cli is installed on the host and available in the terminal path.
CodeQLCreateDatabase(CodeQLCreateDatabaseToolSettings) Creates a CodeQL Databases that can be use for vunerability scanning. Assumes the codeQL cli is installed on the host and available in the terminal path.

Install

CodeQLInstall(CodeQLInstallToolSettings) Installs CodeQL on the host agent.

Upload

CodeQLUploadResults(CodeQLUploadResultsToolSettings) Uploads the results of a CodeQL analysis in SARIF file format to GitHub or GitHub Enterprise Server. Assumes the codeQL cli is installed on the host and available in the terminal path.