AlexAltea
diff --git a/‎README.md‎
Lines changed: 20 additions & 0 deletions b/‎README.md‎
Lines changed: 20 additions & 0 deletions
diff --git a/‎codeql/__init__.py‎
Lines changed: 3 additions & 4 deletions b/‎codeql/__init__.py‎
Lines changed: 3 additions & 4 deletions
diff --git a/‎codeql/bqrs.py‎
Lines changed: 67 additions & 0 deletions b/‎codeql/bqrs.py‎
Lines changed: 67 additions & 0 deletions
diff --git a/‎codeql/codeql.py‎
Lines changed: 0 additions & 8 deletions b/‎codeql/codeql.py‎
Lines changed: 0 additions & 8 deletions
diff --git a/‎codeql/common.py‎
Lines changed: 57 additions & 0 deletions b/‎codeql/common.py‎
Lines changed: 57 additions & 0 deletions
diff --git a/‎codeql/database.py‎
Lines changed: 170 additions & 0 deletions b/‎codeql/database.py‎
Lines changed: 170 additions & 0 deletions
@@ -10,3 +10,23 @@ Install the package via:
 ```bash
 pip install codeql-python
 ````
+
+## Usage
+
+```python
+import codeql
+
+db = codeql.Database('path/to/db.zip')
+
+# Queries return a CSV-like array of arrays
+results = db.query('select "Hello"')
+assert(results[0][1] == 'Hello')
+
+# Queries with external libraries are supported as well
+codeql.set_search_path('path/to/codeql')
+results = db.query('''
+    import cpp
+    from BlockStmt block    
+    select block
+''')
+```
@@ -5,7 +5,6 @@
 """
 
 # Imports
-from .codeql import *
-
-# Prevent polluting namespace
-del codeql
+from .bqrs import *
+from .database import *
+from .query import *
@@ -0,0 +1,67 @@
+#!/usr/bin/env python3
+# -*- coding: utf-8 -*-
+"""
+CodeQL for Python.
+"""
+
+import csv
+import io
+import os
+import shutil
+import tempfile
+
+from .common import *
+
+class BQRS(object):
+    def __init__(self, path):
+        """
+        Arguments:
+        path -- Location of the query results file
+        """
+        # Temporaries will be cleaned up on destructor
+        self.path = path
+
+    # Helpers
+    def run_command(self, command, options=[], post=[]):
+        return run(['bqrs', command] + options + [self.path])
+
+    def parse(self):
+        path = temporary_file(suffix='.csv')
+        self.decode(format='csv', output=path)
+        with open(path, 'r') as f:
+            return list(csv.reader(f, delimiter=','))
+
+    # Interface
+    def info(self, format):
+        """
+        Display metadata for a BQRS file.
+
+        This command displays an overview of the data contained in the compact binary BQRS file that is the result of executing a
+        query. It shows the names and sizes of each result set (table) in the BQRS file, and the column types of each result set.
+
+        It can also optionally precompute offsets for using the pagination options of codeql bqrs decode. This is mainly useful
+        for IDE plugins.
+        """
+        options = ['-v']
+        self.run_command('info', options)
+
+    def decode(self, format=None, output=None):
+        """
+        Convert result data from BQRS into other forms.
+
+        The decoded output will be written to standard output, unless the --output option is specified.
+        """
+        options = []
+        if format:
+            options += [f'--format={format:s}']
+        if output:
+            options += ['-o', output]
+        self.run_command('decode', options)
+
+    def diff(self, other):
+        """
+        Compute the difference between two result sets.
+        """
+        if type(other) == BQRS:
+            other = other.path
+        self.run_command('diff', post=[other])
@@ -0,0 +1,57 @@
+#!/usr/bin/env python3
+# -*- coding: utf-8 -*-
+"""
+CodeQL for Python.
+"""
+
+import os
+import subprocess
+import tempfile
+import uuid
+
+# Configuration
+codeql_path = 'codeql'
+search_path = None
+library_path = None
+
+# Temporaries
+temp_path = None
+
+def temporary_root():
+    global temp_path
+    if temp_path is None:
+        temp_path = tempfile.TemporaryDirectory(prefix="codeql-python_")
+    return temp_path.name
+
+def temporary_path(prefix, suffix):
+    name = ''
+    if prefix:
+        name += prefix
+    name += uuid.uuid4().hex
+    if suffix:
+        name += suffix
+    return os.path.join(temporary_root(), name)
+
+def temporary_dir(create=True, prefix=None, suffix=None):
+    path = temporary_path(prefix, suffix)
+    if create:
+        os.mkdir(path)
+    return path
+
+def temporary_file(create=True, prefix=None, suffix=None):
+    path = temporary_path(prefix, suffix)
+    if create:
+        open(path, 'a').close()
+    return path
+
+# Environment
+def set_search_path(path):
+    global search_path
+    if type(path) == list:
+        separator = ';' if os.name == 'nt' else ':'
+        path = separator.join(path)
+    search_path = path
+
+def run(args):
+    command = [codeql_path] + list(map(str, args))
+    return subprocess.run(command, stdout=subprocess.DEVNULL)
@@ -0,0 +1,170 @@
+#!/usr/bin/env python3
+# -*- coding: utf-8 -*-
+"""
+CodeQL for Python.
+"""
+
+import os
+import shutil
+import tempfile
+
+import codeql
+from .common import *
+
+# Constants
+CODEQL_QLPACK = '''
+name: codeql-python
+version: 0.0.0
+libraryPathDependencies: {}
+'''
+
+class Database(object):
+    def __init__(self, path, temp=False):
+        """
+        Arguments:
+        path -- Path of the database
+        temp -- Remove database path in destructor
+        """
+        self.path = path
+        self.temp = temp
+
+    def __del__(self):
+        if self.temp:
+            shutil.rmtree(self.path)
+
+    # Helpers
+    def run_command(self, command, options=[], post=[]):
+        run(['database', command] + options + [self.path] + post)
+
+    @staticmethod
+    def create_from_cpp(code, command=None):
+        # Get default compiler
+        compilers = ['cxx', 'clang++', 'g++', 'cc', 'clang', 'gcc']
+        if command is None:
+            for compiler in compilers:
+                if shutil.which(compiler) is not None:
+                    command = [compiler, '-c']
+                    break
+        # Create database
+        directory = temporary_dir()
+        fpath = os.path.join(directory, 'source.cpp')
+        with open(fpath, 'w') as f:
+            f.write(code)
+        command.append(fpath)
+        return Database.create('cpp', directory, command)
+
+    def query(self, ql):
+        """
+        Syntactic sugar to execute a CodeQL snippet and parse the results.
+        """
+        # Prepare query directory
+        if not hasattr(self, 'qldir'):
+            self.qldir = temporary_dir()
+            qlpack_path = os.path.join(self.qldir, 'qlpack.yml')
+            with open(qlpack_path, mode='w') as f:
+                qlpack_text = CODEQL_QLPACK.format('codeql-cpp')
+                f.write(qlpack_text)
+        # Perform query
+        query_path = os.path.join(self.qldir, 'query.ql')
+        reply_path = os.path.join(self.qldir, 'reply.csv')
+        with open(query_path, mode='w') as f:
+            f.write(ql)
+        query = codeql.Query(query_path)
+        bqrs = query.run(database=self)
+        return bqrs.parse()
+
+    # Interface
+    @staticmethod
+    def create(language, source, command=None, location=None):
+        """
+        Create a CodeQL database instance for a source tree that can be analyzed
+        using one of the CodeQL products.
+
+        Arguments:
+        language -- The language that the new database will be used to analyze.
+        source -- The root source code directory.
+            In many cases, this will be the checkout root. Files within it are
+            considered to be the primary source files for this database.
+            In some output formats, files will be referred to by their relative path
+            from this directory.
+        command -- For compiled languages, build commands that will cause the
+            compiler to be invoked on the source code to analyze. These commands
+            will be executed under an instrumentation environment that allows
+            analysis of generated code and (in some cases) standard libraries.
+        database -- Path to generated database
+        """
+        # Syntactic sugar: Default location to temporary directory
+        if location is None:
+            location = temporary_dir()
+
+        # Create and submit command
+        args = ['database', 'create', '-l', language, '-s', source]
+        if command is not None:
+            if type(command) == list:
+                command = ' '.join(map(lambda x: f'"{x}"' if ' ' in x else x, command))
+            args += ['-c', command]
+        args.append(location)
+        run(args)
+
+        # Return database instance
+        return Database(location)
+
+
+    def analyze(self, queries, format, output):
+        """
+        Analyze a database, producing meaningful results in the context of the
+        source code.
+
+        Run a query suite (or some individual queries) against a CodeQL
+        database, producing results, styled as alerts or paths, in SARIF or
+        another interpreted format.
+
+        This command combines the effect of the codeql database run-queries
+        and codeql database interpret-results commands. If you want to run
+        queries whose results don't meet the requirements for being interpreted
+        as source-code alerts, use codeql database run-queries or codeql query
+        run instead, and then codeql bqrs decode to convert the raw results to a
+        readable notation.
+        """
+        # Support single query or list of queries
+        if type(queries) is not list:
+            queries = [queries]
+        # Prepare options
+        options = [f'--format={format}', '-o', output]
+        if search_path is not None:
+            options += ['--search-path', search_path]
+        # Dispatch command
+        self.run_command('analyze', options, post=queries)
+    
+    def upgrade(self):
+        """
+        Upgrade a database so it is usable by the current tools.
+
+        This rewrites a CodeQL database to be compatible with the QL libraries
+        that are found on the QL pack search path, if necessary.
+
+        If an upgrade is necessary, it is irreversible. The database will
+        subsequently be unusable with the libraries that were current when it
+        was created.
+        """
+        self.run_command('upgrade')
+
+    def cleanup(self):
+        """
+        Compact a CodeQL database on disk.
+
+        Delete temporary data, and generally make a database as small as
+        possible on disk without degrading its future usefulness.
+        """
+        self.run_command('cleanup')
+
+    def bundle(self, output):
+        """
+        Create a relocatable archive of a CodeQL database.
+
+        A command that zips up the useful parts of the database. This will only
+        include the mandatory components, unless the user specifically requests
+        that results, logs, TRAP, or similar should be included.
+        """
+        options = ['-o', output]
+        self.run_command('bundle', options)