Merge remote-tracking branch 'origin/main' into koesie10/data-extension-editor-yaml-load

Author: koesie10

.github/workflows/main.yml

@@ -100,6 +100,11 @@ jobs:
         run: |
           npm run lint
 
+      - name: Lint Markdown
+        working-directory: extensions/ql-vscode
+        run: |
+          npm run lint:markdown
+
       - name: Lint scenarios
         working-directory: extensions/ql-vscode
         run: |

extensions/ql-vscode/package-lock.json

@@ -90,7 +90,7 @@ export class DataExtensionsEditorView extends AbstractWebview<
   }
 
   protected async saveYaml(yaml: string): Promise<void> {
-    const modelFilename = this.modelFileName;
+    const modelFilename = this.calculateModelFilename();
     if (!modelFilename) {
       return;
     }
@@ -101,7 +101,7 @@ export class DataExtensionsEditorView extends AbstractWebview<
   }
 
   protected async loadExistingModeledMethods(): Promise<void> {
-    const modelFilename = this.modelFileName;
+    const modelFilename = this.calculateModelFilename();
     if (!modelFilename) {
       return;
     }
@@ -269,7 +269,7 @@ export class DataExtensionsEditorView extends AbstractWebview<
     });
   }
 
-  private get modelFileName(): string | undefined {
+  private calculateModelFilename(): string | undefined {
     const workspaceFolder = workspace.workspaceFolders?.find(
       (folder) => folder.name === "ql",
     );

extensions/ql-vscode/src/data-extensions-editor/data-extensions-editor-view.ts

@@ -112,7 +112,7 @@ export function generateVariantAnalysisMarkdownSummary(
   lines.push(`### Results for "${query.name}"`, "");
 
   // Expandable section containing query text
-  const queryCodeBlock = ["```ql", ...query.text.split("\n"), "```"];
+  const queryCodeBlock = ["```ql", ...query.text.split("\n"), "```", ""];
   lines.push(...buildExpandableMarkdownSection("Query", queryCodeBlock));
 
   // Padding between sections
@@ -128,6 +128,9 @@ export function generateVariantAnalysisMarkdownSummary(
     lines.push(`| ${fullName} | [${summary.resultCount} result(s)](${link}) |`);
   }
 
+  // Add a trailing newline
+  lines.push("");
+
   return {
     fileName: "_summary",
     content: lines,
@@ -279,8 +282,8 @@ function generateMarkdownForPathResults(
       );
       // Indent the snippet to fit with the numbered list.
       // The indentation is "n + 2" where the list number is an n-digit number.
-      const codeSnippetIndented = codeSnippet.map(
-        (line) => " ".repeat(listNumber.toString().length + 2) + line,
+      const codeSnippetIndented = codeSnippet.map((line) =>
+        (" ".repeat(listNumber.toString().length + 2) + line).trimEnd(),
       );
       pathLines.push(`${listNumber}. ${link}`, ...codeSnippetIndented);
     }
@@ -382,7 +385,6 @@ function buildExpandableMarkdownSection(
     `<summary>${title}</summary>`,
     "",
     ...contents,
-    "",
     "</details>",
     "",
   );

extensions/ql-vscode/src/variant-analysis/markdown-generation.ts

@@ -0,0 +1,7 @@
+{
+  "extends": "../../../../../../.markdownlint.json",
+  "MD010": false, // Hard tabs are from the original snippet in the SARIF file
+  "MD024": false, // Duplicate headings
+  "MD033": false, // Inline HTML for <details> and <summary>
+  "MD051": false // Link fragments are used in Gist to link to other files
+}

extensions/ql-vscode/test/unit-tests/data/markdown-generation/.markdownlint.jsonc

@@ -22,38 +22,37 @@
      cp.execSync(cmd); // BAD
    }
    </code></pre>
-   
+
 2. [javascript/ql/src/Security/CWE-078/examples/shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/src/Security/CWE-078/examples/shell-command-injection-from-environment.js#L4-L4)
    <pre><code class="javascript">  path = require("path");
    function cleanupTemp() {
      let cmd = "rm -rf " + <strong>path.join(__dirname, "temp")</strong>;
      cp.execSync(cmd); // BAD
    }
    </code></pre>
-   
+
 3. [javascript/ql/src/Security/CWE-078/examples/shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/src/Security/CWE-078/examples/shell-command-injection-from-environment.js#L4-L4)
    <pre><code class="javascript">  path = require("path");
    function cleanupTemp() {
      let cmd = <strong>"rm -rf " + path.join(__dirname, "temp")</strong>;
      cp.execSync(cmd); // BAD
    }
    </code></pre>
-   
+
 4. [javascript/ql/src/Security/CWE-078/examples/shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/src/Security/CWE-078/examples/shell-command-injection-from-environment.js#L4-L4)
    <pre><code class="javascript">  path = require("path");
    function cleanupTemp() {
      let <strong>cmd = "rm -rf " + path.join(__dirname, "temp")</strong>;
      cp.execSync(cmd); // BAD
    }
    </code></pre>
-   
+
 5. [javascript/ql/src/Security/CWE-078/examples/shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/src/Security/CWE-078/examples/shell-command-injection-from-environment.js#L5-L5)
    <pre><code class="javascript">function cleanupTemp() {
      let cmd = "rm -rf " + path.join(__dirname, "temp");
      cp.execSync(<strong>cmd</strong>); // BAD
    }
    </code></pre>
-   
 
 </details>
 
@@ -79,26 +78,25 @@
    <pre><code class="javascript">(function() {
    	cp.execFileSync('rm',  ['-rf', path.join(__dirname, "temp")]); // GOOD
    	cp.execSync('rm -rf ' + path.join(<strong>__dirname</strong>, "temp")); // BAD
-   
+
    	execa.shell('rm -rf ' + path.join(__dirname, "temp")); // NOT OK
    </code></pre>
-   
+
 2. [javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js#L6-L6)
    <pre><code class="javascript">(function() {
    	cp.execFileSync('rm',  ['-rf', path.join(__dirname, "temp")]); // GOOD
    	cp.execSync('rm -rf ' + <strong>path.join(__dirname, "temp")</strong>); // BAD
-   
+
    	execa.shell('rm -rf ' + path.join(__dirname, "temp")); // NOT OK
    </code></pre>
-   
+
 3. [javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js#L6-L6)
    <pre><code class="javascript">(function() {
    	cp.execFileSync('rm',  ['-rf', path.join(__dirname, "temp")]); // GOOD
    	cp.execSync(<strong>'rm -rf ' + path.join(__dirname, "temp")</strong>); // BAD
-   
+
    	execa.shell('rm -rf ' + path.join(__dirname, "temp")); // NOT OK
    </code></pre>
-   
 
 </details>
 
@@ -122,28 +120,27 @@
 
 1. [javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js#L8-L8)
    <pre><code class="javascript">	cp.execSync('rm -rf ' + path.join(__dirname, "temp")); // BAD
-   
+
    	execa.shell('rm -rf ' + path.join(<strong>__dirname</strong>, "temp")); // NOT OK
    	execa.shellSync('rm -rf ' + path.join(__dirname, "temp")); // NOT OK
-   
+
    </code></pre>
-   
+
 2. [javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js#L8-L8)
    <pre><code class="javascript">	cp.execSync('rm -rf ' + path.join(__dirname, "temp")); // BAD
-   
+
    	execa.shell('rm -rf ' + <strong>path.join(__dirname, "temp")</strong>); // NOT OK
    	execa.shellSync('rm -rf ' + path.join(__dirname, "temp")); // NOT OK
-   
+
    </code></pre>
-   
+
 3. [javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js#L8-L8)
    <pre><code class="javascript">	cp.execSync('rm -rf ' + path.join(__dirname, "temp")); // BAD
-   
+
    	execa.shell(<strong>'rm -rf ' + path.join(__dirname, "temp")</strong>); // NOT OK
    	execa.shellSync('rm -rf ' + path.join(__dirname, "temp")); // NOT OK
-   
+
    </code></pre>
-   
 
 </details>
 
@@ -169,26 +166,25 @@
    <pre><code class="javascript">
    	execa.shell('rm -rf ' + path.join(__dirname, "temp")); // NOT OK
    	execa.shellSync('rm -rf ' + path.join(<strong>__dirname</strong>, "temp")); // NOT OK
-   
+
    	const safe = "\"" + path.join(__dirname, "temp") + "\"";
    </code></pre>
-   
+
 2. [javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js#L9-L9)
    <pre><code class="javascript">
    	execa.shell('rm -rf ' + path.join(__dirname, "temp")); // NOT OK
    	execa.shellSync('rm -rf ' + <strong>path.join(__dirname, "temp")</strong>); // NOT OK
-   
+
    	const safe = "\"" + path.join(__dirname, "temp") + "\"";
    </code></pre>
-   
+
 3. [javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js](https://github.com/github/codeql/blob/48015e5a2e6202131f2d1062cc066dc33ed69a9b/javascript/ql/test/query-tests/Security/CWE-078/tst_shell-command-injection-from-environment.js#L9-L9)
    <pre><code class="javascript">
    	execa.shell('rm -rf ' + path.join(__dirname, "temp")); // NOT OK
    	execa.shellSync(<strong>'rm -rf ' + path.join(__dirname, "temp")</strong>); // NOT OK
-   
+
    	const safe = "\"" + path.join(__dirname, "temp") + "\"";
    </code></pre>
-   
 
 </details>