feat(model-generator): New qls for modelling composite actions

Alvaro Muñoz · Alvaro Muñoz · commit 43a55e80a999 · 2024-02-16T16:02:10.000+01:00
diff --git a/action.yml b/action.yml
@@ -8,16 +8,12 @@ inputs:
 
   source-root:
     description: "Path of the root source code directory, relative to $GITHUB_WORKSPACE."
-    default: "./"
+    default: ${{ github.workspace }}
 
-  sarif:
+  sarif-output:
     description: "SARIF File Output"
     default: "codeql-actions.sarif"
 
-# runs:
-#   using: "node16"
-#   main: ".github/action/dist/index.js"
-
 runs:
   using: 'composite'
   steps:
diff --git a/ql/src/Security/CWE-020/CompositeActionSummaries.ql b/ql/src/Security/CWE-020/CompositeActionSummaries.ql
@@ -7,6 +7,7 @@
  * @precision high
  * @id actions/composite-action-summaries
  * @tags actions
+ *       model-generator
  *       external/cwe/cwe-020
  */
 
diff --git a/ql/src/Security/CWE-020/CompositeActionsSources.ql b/ql/src/Security/CWE-020/CompositeActionsSources.ql
@@ -7,6 +7,7 @@
  * @precision high
  * @id actions/composite-action-sources
  * @tags actions
+ *       model-generator
  *       external/cwe/cwe-020
  */
 
diff --git a/ql/src/codeql-suites/actions-summaries-queries.qls b/ql/src/codeql-suites/actions-summaries-queries.qls
@@ -0,0 +1,8 @@
+- description: Queries to model composite actions
+- queries: .
+
+- include:
+    kind:
+      - path-problem
+    tags contain:
+      - model-generator 
