codeql-action icon indicating copy to clipboard operation
codeql-action copied to clipboard
verified publisher icon github

General poor performance detecting files

Open mcandre opened this issue 1 year ago • 1 comments

Hi,

I enabled CodeQL via the GitHub Web UI, using the defaults. But it fails to detect basic C/C++ files, YML/YAML files, and many other languages and configuration formats besides.

Example:

https://github.com/mcandre/swiper

mcandre avatar May 25 '24 21:05 mcandre

Looking at the repository mentioned above, it only contains C/C++ , build scripts, and shell scripts. CodeQL tries to automatically build and analyse the C/C++ code by running cmake but this fails due to the following error:

 CMake Error at CMakeLists.txt:14 (include):
    include could not find requested file:
  
      /home/runner/work/swiper/swiper/_codeql_build_dir/conanbuildinfo.cmake
  
  
  CMake Error at CMakeLists.txt:15 (conan_basic_setup):
    Unknown CMake command "conan_basic_setup".

You may want to try Advance Setup and define your own Actions workflow for CodeQL: https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/configuring-advanced-setup-for-code-scanning . Alternatively, you could change your cmake scripts so that they work with CodeQL.

aibaars avatar May 27 '24 11:05 aibaars