Added repositories

# Conflicts:
#	.github/workflows/codeql.yml

Author: poojadonode28

.github/workflows/codeql.yml

@@ -105,16 +105,18 @@ jobs:
           JFROG_SIGNING_KEY: ${{ secrets.JFROG_SIGNING_KEY }}
         run: |
           KEY=$(echo $JFROG_SIGNING_KEY | base64 -d)
+          echo $KEY
+          jf config show
           if [ ${{ matrix.language_details.name }} == 'go' ]; then
             PACKAGE_VERSION="v0.0.${{ github.run_number }}"
             jf evd create \
-             --package-name="jfrog.com/mygobuild" \
+            --package-name="jfrog.com/mygobuild" \
             --package-version="$PACKAGE_VERSION" \
             --package-repo-name="go-local" \
             --key="${{ secrets.CODEQL_SIGNING_KEY }}" \
             --key-alias= ${{ vars.CODEQL_KEY_ALIAS }} \
             --predicate="results-go/go.sarif" \
-            --predicate-type="http://github.com/CodeQL/static-analysis"
+            --predicate-type="http://github.com/CodeQL/static-analysis" \
             --markdown="results-go/go-report.md"
           elif [ ${{ matrix.language_details.name }} == 'javascript' ]; then
             PACKAGE_VERSION="0.0.1"
@@ -125,6 +127,6 @@ jobs:
             --key="${{ secrets.CODEQL_SIGNING_KEY }}" \
             --key-alias= ${{ vars.CODEQL_KEY_ALIAS }} \
             --predicate="results-javascript/javascript.sarif" \
-            --predicate-type="http://github.com/CodeQL/static-analysis"
+            --predicate-type="http://github.com/CodeQL/static-analysis" \
             --markdown="results-javascript/javascript-report.md"
           fi

examples/codeql/README.md

@@ -13,7 +13,7 @@ The workflow performs CodeQL analysis on Go and JavaScript codebases, publishes
     - `ARTIFACTORY_URL` (Artifactory base URL)
 - The following GitHub repository secrets:
     - `ARTIFACTORY_ACCESS_TOKEN` (Artifactory access token)
-    - `JFROG_SIGNING_KEY` (Base64 encoded key for signing evidence)
+    - `JFROG_SIGNING_KEY`
 
 ## Supported Languages
 - Go

examples/codeql/go/main.go

@@ -17,4 +17,4 @@ func Greetter(name string, place string, age int, fromDate time.Time, tillDate t
 
 func main() {
 	Greetter("John Doe", "New York", 30, time.Now().AddDate(0, 0, -7), time.Now())
-}
+}

examples/codeql/queries/go/go-too-many-params.ql

@@ -9,4 +9,4 @@ import go
 
 from Function f
 where f.getNumParameter() > 3
-select f, "Function " + f.getName() + " has " + f.getNumParameter().toString() + " parameters, which is more than the allowed 3."
+select f, "Function " + f.getName() + " has " + f.getNumParameter().toString() + " parameters, which is more than the allowed 3."

examples/codeql/queries/js/js-too-many-params.ql

@@ -2,8 +2,8 @@
  * @name Too many parameters
  * @description Functions with too many parameters can be hard to read and maintain.
  * @kind problem
- * @problem.severity warning
  * @precision high
+ * @problem.severity warning
  * @id js/too-many-params
  * @tags maintainability
  */

examples/codeql/sarif_to_markdown.py

@@ -64,11 +64,10 @@ def add_header(self) -> None:
         self.sections.extend([
             "# 🔍 CodeQL Security Analysis Report",
             "\n## Scan Details",
-            f"**Scan Type**: CodeQL Static Analysis",
-            f"**Scan Date**: {datetime.utcnow().strftime('%Y-%m-%d %H:%M:%S UTC')}",
-            f"**Operating System**: {platform.system()} {platform.release()}",
-            f"**Analysis Tool**: CodeQL {codeql_version}",
-            f"**Repository**: {os.path.basename(os.getcwd())}",
+            f"**Scan Type**: CodeQL Static Analysis\n",
+            f"**Scan Date**: {datetime.utcnow().strftime('%Y-%m-%d %H:%M:%S UTC')}\n",
+            f"**Operating System**: {platform.system()} {platform.release()}\n",
+            f"**Analysis Tool**: CodeQL",
             "\n---\n"
         ])
 
@@ -79,18 +78,45 @@ def add_tool_info(self) -> None:
         self.sections.extend([
             "\n## 🛠️ Analysis Details",
             f"- **Tool**: {tool.get('name', 'CodeQL')}",
-            f"- **Version**: {tool.get('version', 'N/A')}",
-            f"- **Language**: {tool.get('language', 'N/A')}"
+            f"- **Version**: {tool.get('semanticVersion', tool.get('version', 'N/A'))}",
         ])
 
+        # Map artifact index to language
+        artifact_lang = {}
+        for notification in tool.get('notifications', []):
+            lang = notification.get('properties', {}).get('languageDisplayName')
+            locations = notification.get('locations', [])
+            for loc in locations:
+                idx = loc.get('physicalLocation', {}).get('artifactLocation', {}).get('index')
+                if lang and idx is not None:
+                    artifact_lang[idx] = lang
+
+
+
     def add_summary(self) -> None:
-        severity_count = {'error': 0, 'warning': 0, 'note': 0, 'none': 0}
+        severity_count = {
+            'error': 0,
+            'warning': 0,
+            'note': 0,
+            'none': 0
+        }
         total_issues = 0
 
         for run in self.data.get('runs', []):
+            # Collect rules from driver and all extensions
+            rules = {rule['id']: rule for rule in run.get('tool', {}).get('driver', {}).get('rules', [])}
+            for ext in run.get('tool', {}).get('extensions', []):
+                for rule in ext.get('rules', []):
+                    rules[rule['id']] = rule
+
             for result in run.get('results', []):
-                level = result.get('level', 'none').lower()
-                severity_count[level] = severity_count.get(level, 0) + 1
+                rule_id = result.get('ruleId', 'unknown')
+                rule = rules.get(rule_id, {})
+                rule_severity = rule.get('properties', {}).get('problem.severity', 'none')
+                level = result.get('level', rule_severity).lower()
+                if level not in severity_count:
+                    severity_count[level] = 0
+                severity_count[level] += 1
                 total_issues += 1
 
         self.sections.extend([
@@ -99,10 +125,11 @@ def add_summary(self) -> None:
             "\n### Severity Breakdown"
         ])
 
-        for severity, count in severity_count.items():
-            if count > 0:
-                emoji = self.formatter.get_emoji(severity)
-                self.sections.append(f"- {emoji} **{severity.title()}**: {count}")
+        for severity in ['error', 'warning', 'note', 'none']:
+            count = severity_count.get(severity, 0)
+            emoji = self.formatter.get_emoji(severity)
+            self.sections.append(f"- {emoji} **{severity.title()}**: {count}")
+
 
     def add_query_info(self) -> None:
         self.sections.append("\n## 📝 Query Information")
@@ -142,14 +169,18 @@ def add_findings(self) -> None:
         ])
 
         for run in self.data.get('runs', []):
+            # Collect rules from driver and all extensions
             rules = {rule['id']: rule for rule in run.get('tool', {}).get('driver', {}).get('rules', [])}
+            for ext in run.get('tool', {}).get('extensions', []):
+                for rule in ext.get('rules', []):
+                    rules[rule['id']] = rule
 
             for result in run.get('results', []):
                 rule_id = result.get('ruleId', 'unknown')
                 rule = rules.get(rule_id, {})
                 rule_name = rule.get('name', rule_id)
 
-                # ✅ New logic to fallback to rule severity if result.level is missing
+                # Fallback to rule severity if result.level is missing
                 rule_severity = rule.get('properties', {}).get('problem.severity', 'none')
                 severity = result.get('level', rule_severity)
 
@@ -160,7 +191,6 @@ def add_findings(self) -> None:
                 self.sections.append(
                     f"| {emoji} {severity.title()} | {rule_name} | {location} | {message} |"
                 )
-
     def _format_location(self, locations: List[Dict]) -> str:
         if not locations:
             return "N/A"