Changes LGTM, as does the DCA run. Looks like a valuable extension.

Not sure why three CI checks are failing, it doesn't look like it has anything to do with the changes here. I'll try rerunning them.

@jketema would you might checking this and approving, since I wrote some of the changes so it would be good to have a third opinion here.

Not sure why three CI checks are failing, it doesn't look like it has anything to do with the changes here. I'll try rerunning them.

Looks like this has to do with some internal changes we made. I've merged in the latest main, which hopefully resolves this.

One remaining test failure. This is a genuine one for cpp/ql/test/library-tests/dataflow/external-models/flow.ql Its .expected file will need to be updated.

Oh that's annoying, it's a test that outputs the MaD row IDs (which are not stable when models are added).

@ebickle do you know how to accept the changes to cpp/ql/test/library-tests/dataflow/external-models/flow.expected?

@jketema can we remove the MaD IDs from this test, or pretty print them like we do in query tests so that we get more stable output?

@jketema can we remove the MaD IDs from this test, or pretty print them like we do in query tests so that we get more stable output?

Do you have an example of the pretty printing?

Do you have an example of the pretty printing?

Rust .qlref files that have:

postprocess:
 - utils/test/PrettyPrintModels.ql

I'm not sure if this is available in C++, nor if it would really do the right thing in this case.

Oh that's annoying, it's a test that outputs the MaD row IDs (which are not stable when models are added).

@ebickle do you know how to accept the changes to cpp/ql/test/library-tests/dataflow/external-models/flow.expected?

I should be able to accept the changes (codeql test accept) but I keep running into strange test errors on my end.

With a synced fork and the latest CodeQL binaries I keep getting this on random unit tests, including the flow test but not CWE-089:

Executing tests in C:\Users\eric\Source\Repos\ebickle-codeql\cpp\ql\test\examples\BadLocking.
A fatal error occurred: The CodeQL database is not compatible with a QL library referenced by the query you are trying to run.
CodeQL database location: examples\BadLocking\BadLocking.testproj
Query location: ..\src\jsf\4.13 Functions\AV Rule 107.ql
The database may be too new for the QL libraries the query is using; try upgrading them.
Alternatively, running 'codeql database upgrade examples\BadLocking\BadLocking.testproj' with an appropriate --search-path option might help.

This happened on a machine with a fresh install of CodeQL so the "database is not compatible" message likely isn't something on my end. I've tried updating the CodeQL binaries again and nuking my profile's .codeql directory without success. Probably a setup step I missed - any ideas? 😳

I've also tossed an invite to my fork over to the two of you in case you need it.

I was able to run the test in VS Code - the update for the flow.expected is in.

With a synced fork and the latest CodeQL binaries I keep getting this on random unit tests, including the flow test but not CWE-089:

I think that means it's picking up an old version of the CodeQL C++ library, which doesn't have the necessary downgrade scripts. VSCode apparently picks up the right version automatically.

Do you have an example of the pretty printing?

Rust .qlref files that have:

postprocess:
 - utils/test/PrettyPrintModels.ql

I'm not sure if this is available in C++, nor if it would really do the right thing in this case.

Thanks. That looks doable. I'll have a look once this PR is merged.

Merged. @ebickle thanks for your contribution!