actions/runner-images
1
0
Fork 0
mirror of https://github.com/actions/runner-images.git synced 2025-12-12 20:26:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
60599408e44b8b49421b7c60c1f8bb4e1abedbd0
runner-images/images/windows/scripts/build/Install-CodeQLBundle.ps1
Arthur Baars 60599408e4 CodeQL: install platform specific CodeQL bundle 
This should reduce the size of the CodeQL bundle by only including the
platform specific CodeQL CLI and libraries, rather than the full set
of CodeQL CLI and libraries for all platforms.
2025-06-23 08:06:10 +00:00

57 lines
2.9 KiB
PowerShell
Raw Blame History

################################################################################
## File: Install-CodeQLBundle.ps1
## Desc: Install the CodeQL CLI Bundle to the toolcache.
################################################################################
# Retrieve the latest major version of the CodeQL Action to use in the base URL for downloading the bundle.
$releases = Invoke-RestMethod -Uri "https://api.github.com/repos/github/codeql-action/releases"
# Get the release tags starting with v[0-9] and sort them in descending order, then parse the first one to get the major version.
$latestTag = $releases.tag_name |
Where-Object { $_ -match '^v[0-9]' } |
Sort-Object { [version]($_ -replace '^v','') } -Descending |
Select-Object -First 1
if ([string]::IsNullOrEmpty($latestTag)) {
Write-Error "Error: Unable to find the latest major version of the CodeQL Action."
exit 1
}
if ($latestTag -match '^v([0-9]+)') {
$codeqlActionLatestMajorVersion = $matches[1]
} else {
Write-Error "Error: Unable to parse the major version from the latest tag."
exit 1
}
# Retrieve the CLI version of the latest CodeQL bundle.
$defaults = (Invoke-RestMethod "https://raw.githubusercontent.com/github/codeql-action/v$($codeqlActionLatestMajorVersion)/src/defaults.json")
$cliVersion = $defaults.cliVersion
$tagName = "codeql-bundle-v" + $cliVersion
Write-Host "Downloading CodeQL bundle $($cliVersion)..."
# Note that this is the all-platforms CodeQL bundle, to support scenarios where customers run
# different operating systems within containers.
$codeQLBundlePath = Invoke-DownloadWithRetry "https://github.com/github/codeql-action/releases/download/$($tagName)/codeql-bundle-win64.tar.gz"
$downloadDirectoryPath = (Get-Item $codeQLBundlePath).Directory.FullName
$codeQLToolcachePath = Join-Path $env:AGENT_TOOLSDIRECTORY -ChildPath "CodeQL" | Join-Path -ChildPath $cliVersion | Join-Path -ChildPath "x64"
New-Item -Path $codeQLToolcachePath -ItemType Directory -Force | Out-Null
Write-Host "Unpacking the downloaded CodeQL bundle archive..."
Expand-7ZipArchive -Path $codeQLBundlePath -DestinationPath $downloadDirectoryPath
$unGzipedCodeQLBundlePath = Join-Path $downloadDirectoryPath "codeql-bundle-win64.tar"
Expand-7ZipArchive -Path $unGzipedCodeQLBundlePath -DestinationPath $codeQLToolcachePath
Write-Host "CodeQL bundle at $($codeQLToolcachePath) contains the following directories:"
Get-ChildItem -Path $codeQLToolcachePath -Depth 2
# Touch a file to indicate to the CodeQL Action that this bundle shipped with the toolcache. This is
# to support overriding the CodeQL version specified in defaults.json on GitHub Enterprise.
New-Item -ItemType file (Join-Path $codeQLToolcachePath -ChildPath "pinned-version")
# Touch a file to indicate to the toolcache that setting up CodeQL is complete.
New-Item -ItemType file "$codeQLToolcachePath.complete"
# Test that the tools have been extracted successfully.
Invoke-PesterTests -TestFile "Tools" -TestName "CodeQL Bundle"
Reference in New Issue View Git Blame Copy Permalink