codeql-development-mcp-server 2.25.0 → 2.25.1-next.2

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "codeql-development-mcp-server",
-  "version": "2.25.0",
+  "version": "2.25.1-next.2",
   "description": "An MCP server supporting LLM requests for CodeQL development tools and resources.",
   "main": "dist/codeql-development-mcp-server.js",
   "type": "module",
@@ -18,6 +18,7 @@
     "ql/javascript/tools/src/",
     "ql/python/tools/src/",
     "ql/ruby/tools/src/",
+    "ql/rust/tools/src/",
     "ql/swift/tools/src/",
     "scripts/setup-packs.sh",
     "package.json",
@@ -40,7 +41,7 @@
     "typescript"
   ],
   "author": "@github/ps-codeql",
-  "license": "SEE LICENSE IN LICENSE",
+  "license": "LicenseRef-CodeQL-Terms",
   "repository": {
     "type": "git",
     "url": "git+https://github.com/advanced-security/codeql-development-mcp-server.git",
@@ -61,7 +62,7 @@
     "dotenv": "^17.3.1",
     "express": "^5.2.1",
     "js-yaml": "^4.1.1",
-    "lowdb": "^7.0.1",
+    "sql.js": "^1.14.1",
     "zod": "^3.25.76"
   },
   "devDependencies": {

package/ql/README.md

@@ -35,6 +35,7 @@ Currently supported languages:
 - `javascript/` - JavaScript/TypeScript
 - `python/` - Python
 - `ruby/` - Ruby
+- `rust/` - Rust
 - `swift/` - Swift
 
 ## Testing

package/ql/actions/tools/src/codeql-pack.lock.yml

@@ -2,31 +2,31 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/actions-all:
-    version: 0.4.30
+    version: 0.4.32
   codeql/concepts:
-    version: 0.0.18
+    version: 0.0.20
   codeql/controlflow:
-    version: 2.0.28
+    version: 2.0.30
   codeql/dataflow:
-    version: 2.1.0
+    version: 2.1.2
   codeql/javascript-all:
-    version: 2.6.24
+    version: 2.6.26
   codeql/mad:
-    version: 1.0.44
+    version: 1.0.46
   codeql/regex:
-    version: 1.0.44
+    version: 1.0.46
   codeql/ssa:
-    version: 2.0.20
+    version: 2.0.22
   codeql/threat-models:
-    version: 1.0.44
+    version: 1.0.46
   codeql/tutorial:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typetracking:
-    version: 2.0.28
+    version: 2.0.30
   codeql/util:
-    version: 2.0.31
+    version: 2.0.33
   codeql/xml:
-    version: 1.0.44
+    version: 1.0.46
   codeql/yaml:
-    version: 1.0.44
+    version: 1.0.46
 compiled: false

package/ql/actions/tools/src/codeql-pack.yml

@@ -1,6 +1,6 @@
 name: advanced-security/ql-mcp-actions-tools-src
-version: 2.25.0
+version: 2.25.1-next.2
 description: 'Queries for codeql-development-mcp-server tools for actions language'
 library: false
 dependencies:
-  codeql/actions-all: 0.4.30
+  codeql/actions-all: 0.4.32

package/ql/cpp/tools/src/codeql-pack.lock.yml

@@ -2,27 +2,27 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/controlflow:
-    version: 2.0.28
+    version: 2.0.30
   codeql/cpp-all:
-    version: 8.0.1
+    version: 8.0.3
   codeql/dataflow:
-    version: 2.1.0
+    version: 2.1.2
   codeql/mad:
-    version: 1.0.44
+    version: 1.0.46
   codeql/quantum:
-    version: 0.0.22
+    version: 0.0.24
   codeql/rangeanalysis:
-    version: 1.0.44
+    version: 1.0.46
   codeql/ssa:
-    version: 2.0.20
+    version: 2.0.22
   codeql/tutorial:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typeflow:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typetracking:
-    version: 2.0.28
+    version: 2.0.30
   codeql/util:
-    version: 2.0.31
+    version: 2.0.33
   codeql/xml:
-    version: 1.0.44
+    version: 1.0.46
 compiled: false

package/ql/cpp/tools/src/codeql-pack.yml

@@ -1,6 +1,6 @@
 name: advanced-security/ql-mcp-cpp-tools-src
-version: 2.25.0
+version: 2.25.1-next.2
 description: 'Queries for codeql-development-mcp-server tools for cpp language'
 library: false
 dependencies:
-  codeql/cpp-all: 8.0.1
+  codeql/cpp-all: 8.0.3

package/ql/csharp/tools/src/codeql-pack.lock.yml

@@ -2,23 +2,23 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/controlflow:
-    version: 2.0.28
+    version: 2.0.30
   codeql/csharp-all:
-    version: 5.4.9
+    version: 5.4.11
   codeql/dataflow:
-    version: 2.1.0
+    version: 2.1.2
   codeql/mad:
-    version: 1.0.44
+    version: 1.0.46
   codeql/ssa:
-    version: 2.0.20
+    version: 2.0.22
   codeql/threat-models:
-    version: 1.0.44
+    version: 1.0.46
   codeql/tutorial:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typetracking:
-    version: 2.0.28
+    version: 2.0.30
   codeql/util:
-    version: 2.0.31
+    version: 2.0.33
   codeql/xml:
-    version: 1.0.44
+    version: 1.0.46
 compiled: false

package/ql/csharp/tools/src/codeql-pack.yml

@@ -1,6 +1,6 @@
 name: advanced-security/ql-mcp-csharp-tools-src
-version: 2.25.0
+version: 2.25.1-next.2
 description: 'Queries for codeql-development-mcp-server tools for csharp language'
 library: false
 dependencies:
-  codeql/csharp-all: 5.4.9
+  codeql/csharp-all: 5.4.11

package/ql/go/tools/src/codeql-pack.lock.yml

@@ -2,23 +2,23 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/concepts:
-    version: 0.0.18
+    version: 0.0.20
   codeql/controlflow:
-    version: 2.0.28
+    version: 2.0.30
   codeql/dataflow:
-    version: 2.1.0
+    version: 2.1.2
   codeql/go-all:
-    version: 7.0.2
+    version: 7.0.4
   codeql/mad:
-    version: 1.0.44
+    version: 1.0.46
   codeql/ssa:
-    version: 2.0.20
+    version: 2.0.22
   codeql/threat-models:
-    version: 1.0.44
+    version: 1.0.46
   codeql/tutorial:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typetracking:
-    version: 2.0.28
+    version: 2.0.30
   codeql/util:
-    version: 2.0.31
+    version: 2.0.33
 compiled: false

package/ql/go/tools/src/codeql-pack.yml

@@ -1,6 +1,6 @@
 name: advanced-security/ql-mcp-go-tools-src
-version: 2.25.0
+version: 2.25.1-next.2
 description: 'Queries for codeql-development-mcp-server tools for go language'
 library: false
 dependencies:
-  codeql/go-all: 7.0.2
+  codeql/go-all: 7.0.4

package/ql/java/tools/src/codeql-pack.lock.yml

@@ -2,31 +2,31 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/controlflow:
-    version: 2.0.28
+    version: 2.0.30
   codeql/dataflow:
-    version: 2.1.0
+    version: 2.1.2
   codeql/java-all:
-    version: 9.0.0
+    version: 9.0.2
   codeql/mad:
-    version: 1.0.44
+    version: 1.0.46
   codeql/quantum:
-    version: 0.0.22
+    version: 0.0.24
   codeql/rangeanalysis:
-    version: 1.0.44
+    version: 1.0.46
   codeql/regex:
-    version: 1.0.44
+    version: 1.0.46
   codeql/ssa:
-    version: 2.0.20
+    version: 2.0.22
   codeql/threat-models:
-    version: 1.0.44
+    version: 1.0.46
   codeql/tutorial:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typeflow:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typetracking:
-    version: 2.0.28
+    version: 2.0.30
   codeql/util:
-    version: 2.0.31
+    version: 2.0.33
   codeql/xml:
-    version: 1.0.44
+    version: 1.0.46
 compiled: false

package/ql/java/tools/src/codeql-pack.yml

@@ -1,6 +1,6 @@
 name: advanced-security/ql-mcp-java-tools-src
-version: 2.25.0
+version: 2.25.1-next.2
 description: 'Queries for codeql-development-mcp-server tools for java language'
 library: false
 dependencies:
-  codeql/java-all: 9.0.0
+  codeql/java-all: 9.0.2

package/ql/javascript/tools/src/codeql-pack.lock.yml

@@ -2,29 +2,29 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/concepts:
-    version: 0.0.18
+    version: 0.0.20
   codeql/controlflow:
-    version: 2.0.28
+    version: 2.0.30
   codeql/dataflow:
-    version: 2.1.0
+    version: 2.1.2
   codeql/javascript-all:
-    version: 2.6.24
+    version: 2.6.26
   codeql/mad:
-    version: 1.0.44
+    version: 1.0.46
   codeql/regex:
-    version: 1.0.44
+    version: 1.0.46
   codeql/ssa:
-    version: 2.0.20
+    version: 2.0.22
   codeql/threat-models:
-    version: 1.0.44
+    version: 1.0.46
   codeql/tutorial:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typetracking:
-    version: 2.0.28
+    version: 2.0.30
   codeql/util:
-    version: 2.0.31
+    version: 2.0.33
   codeql/xml:
-    version: 1.0.44
+    version: 1.0.46
   codeql/yaml:
-    version: 1.0.44
+    version: 1.0.46
 compiled: false

package/ql/javascript/tools/src/codeql-pack.yml

@@ -1,6 +1,6 @@
 name: advanced-security/ql-mcp-javascript-tools-src
-version: 2.25.0
+version: 2.25.1-next.2
 description: 'Queries for codeql-development-mcp-server tools for javascript language'
 library: false
 dependencies:
-  codeql/javascript-all: 2.6.24
+  codeql/javascript-all: 2.6.26

package/ql/python/tools/src/codeql-pack.lock.yml

@@ -2,29 +2,29 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/concepts:
-    version: 0.0.18
+    version: 0.0.20
   codeql/controlflow:
-    version: 2.0.28
+    version: 2.0.30
   codeql/dataflow:
-    version: 2.1.0
+    version: 2.1.2
   codeql/mad:
-    version: 1.0.44
+    version: 1.0.46
   codeql/python-all:
-    version: 7.0.1
+    version: 7.0.3
   codeql/regex:
-    version: 1.0.44
+    version: 1.0.46
   codeql/ssa:
-    version: 2.0.20
+    version: 2.0.22
   codeql/threat-models:
-    version: 1.0.44
+    version: 1.0.46
   codeql/tutorial:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typetracking:
-    version: 2.0.28
+    version: 2.0.30
   codeql/util:
-    version: 2.0.31
+    version: 2.0.33
   codeql/xml:
-    version: 1.0.44
+    version: 1.0.46
   codeql/yaml:
-    version: 1.0.44
+    version: 1.0.46
 compiled: false

package/ql/python/tools/src/codeql-pack.yml

@@ -1,6 +1,6 @@
 name: advanced-security/ql-mcp-python-tools-src
-version: 2.25.0
+version: 2.25.1-next.2
 description: 'Queries for codeql-development-mcp-server tools for python language'
 library: false
 dependencies:
-  codeql/python-all: 7.0.1
+  codeql/python-all: 7.0.3

package/ql/ruby/tools/src/codeql-pack.lock.yml

@@ -2,23 +2,23 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/concepts:
-    version: 0.0.18
+    version: 0.0.20
   codeql/controlflow:
-    version: 2.0.28
+    version: 2.0.30
   codeql/dataflow:
-    version: 2.1.0
+    version: 2.1.2
   codeql/mad:
-    version: 1.0.44
+    version: 1.0.46
   codeql/regex:
-    version: 1.0.44
+    version: 1.0.46
   codeql/ruby-all:
-    version: 5.1.12
+    version: 5.1.14
   codeql/ssa:
-    version: 2.0.20
+    version: 2.0.22
   codeql/tutorial:
-    version: 1.0.44
+    version: 1.0.46
   codeql/typetracking:
-    version: 2.0.28
+    version: 2.0.30
   codeql/util:
-    version: 2.0.31
+    version: 2.0.33
 compiled: false

package/ql/ruby/tools/src/codeql-pack.yml

@@ -1,6 +1,6 @@
 name: advanced-security/ql-mcp-ruby-tools-src
-version: 2.25.0
+version: 2.25.1-next.2
 description: 'Queries for codeql-development-mcp-server tools for ruby language'
 library: false
 dependencies:
-  codeql/ruby-all: 5.1.12
+  codeql/ruby-all: 5.1.14

package/ql/rust/tools/src/CallGraphFrom/CallGraphFrom.md

@@ -0,0 +1,48 @@
+# CallGraphFrom for Rust
+
+Displays calls made from a specified function, showing the call graph outbound from the source function.
+
+## Overview
+
+This query identifies all function calls made within the body of a named function, producing an outbound call graph. Given a source function name, it reports each call site and the callee, which is useful for understanding function dependencies and call chains.
+
+The query accepts function names via an external predicate (`sourceFunction`).
+
+## Use Cases
+
+This query is primarily used for:
+
+- Mapping outbound dependencies of a specific function
+- Understanding what a function calls and in what order
+- Analyzing call chains for refactoring or security review
+
+## Example
+
+The following Rust code demonstrates outbound calls from `source_func`:
+
+```rust
+fn helper1() {}
+
+fn helper2() {
+    helper1();
+}
+
+fn source_func() {  // Source function for analysis
+    helper1();
+    helper2();
+}
+```
+
+Running with `sourceFunction = "source_func"` produces results showing each call site with the message pattern ``Call from `source_func` to `helper1` ``.
+
+## Output Format
+
+The query is a `@kind problem` query producing rows of:
+
+- ``select call, "Call from `source` to `callee`"``
+
+## References
+
+- [Rust Functions](https://doc.rust-lang.org/book/ch03-03-how-functions-work.html)
+- [CodeQL Call Graph Analysis](https://codeql.github.com/docs/writing-codeql-queries/about-data-flow-analysis/)
+- [CodeQL Library for Rust](https://codeql.github.com/docs/codeql-language-guides/codeql-library-for-rust/)

package/ql/rust/tools/src/CallGraphFrom/CallGraphFrom.ql

@@ -0,0 +1,38 @@
+/**
+ * @name Call Graph From for rust
+ * @description Displays calls made from a specified function, showing the call graph outbound from the source function.
+ * @id rust/tools/call-graph-from
+ * @kind problem
+ * @problem.severity recommendation
+ * @tags call-graph
+ */
+
+import rust
+import ExternalPredicates
+
+/**
+ * Gets a single source function name from the comma-separated list.
+ */
+string getSourceFunctionName() {
+  exists(string s | sourceFunction(s) | result = s.splitAt(",").trim())
+}
+
+/**
+ * Gets a function by matching against the selected source function names.
+ */
+Function getSourceFunction() { result.getName().getText() = getSourceFunctionName() }
+
+/**
+ * Gets the name of the called function.
+ */
+string getCalleeName(CallExpr call) {
+  if exists(call.getResolvedTarget().(Function).getName())
+  then result = call.getResolvedTarget().(Function).getName().getText()
+  else result = call.toString()
+}
+
+from CallExpr call, Function source
+where
+  call.getEnclosingCallable() = source and
+  source = getSourceFunction()
+select call, "Call from `" + source.getName().getText() + "` to `" + getCalleeName(call) + "`"

package/ql/rust/tools/src/CallGraphFromTo/CallGraphFromTo.md

@@ -0,0 +1,48 @@
+# CallGraphFromTo for Rust
+
+Displays calls on reachable paths from a source function to a target function, showing transitive call graph connectivity.
+
+## Overview
+
+This query identifies all call sites on paths that transitively connect a source function to a target function. It uses the `calls*` transitive closure to find functions reachable from the source that can also reach the target, then reports calls within those functions.
+
+The query accepts both source and target function names via external predicates (`sourceFunction` and `targetFunction`).
+
+## Use Cases
+
+This query is primarily used for:
+
+- Understanding transitive call chains between two functions
+- Analyzing reachability in the call graph
+- Identifying intermediate functions on critical paths
+- Security analysis of data flow through function boundaries
+
+## Example
+
+The following Rust code demonstrates a transitive call chain:
+
+```rust
+fn target() {}
+
+fn intermediate() {
+    target();
+}
+
+fn source() {
+    intermediate();
+}
+```
+
+Running with `sourceFunction = "source"` and `targetFunction = "target"` produces results showing each call site on the path with the message pattern ``Reachable call from `intermediate` to `target` ``.
+
+## Output Format
+
+The query is a `@kind problem` query producing rows of:
+
+- ``select call, "Reachable call from `caller` to `callee`"``
+
+## References
+
+- [Rust Functions](https://doc.rust-lang.org/book/ch03-03-how-functions-work.html)
+- [CodeQL Call Graph Analysis](https://codeql.github.com/docs/writing-codeql-queries/about-data-flow-analysis/)
+- [CodeQL Library for Rust](https://codeql.github.com/docs/codeql-language-guides/codeql-library-for-rust/)

package/ql/rust/tools/src/CallGraphFromTo/CallGraphFromTo.ql

@@ -0,0 +1,69 @@
+/**
+ * @name Call Graph From To for rust
+ * @description Displays calls on reachable paths from a source function to a target function, showing transitive call graph connectivity.
+ * @id rust/tools/call-graph-from-to
+ * @kind problem
+ * @problem.severity recommendation
+ * @tags call-graph
+ */
+
+import rust
+import ExternalPredicates
+
+/**
+ * Gets a single source function name from the comma-separated list.
+ */
+string getSourceFunctionName() {
+  exists(string s | sourceFunction(s) | result = s.splitAt(",").trim())
+}
+
+/**
+ * Gets a single target function name from the comma-separated list.
+ */
+string getTargetFunctionName() {
+  exists(string s | targetFunction(s) | result = s.splitAt(",").trim())
+}
+
+/**
+ * Gets a function by matching against the selected source function names.
+ */
+Function getSourceFunction() { result.getName().getText() = getSourceFunctionName() }
+
+/**
+ * Gets a function by matching against the selected target function names.
+ */
+Function getTargetFunction() { result.getName().getText() = getTargetFunctionName() }
+
+/**
+ * Holds if function `caller` directly calls function `callee`.
+ */
+predicate calls(Function caller_, Function callee_) {
+  exists(CallExpr c |
+    c.getEnclosingCallable() = caller_ and
+    c.getResolvedTarget().(Function) = callee_
+  )
+}
+
+/**
+ * Gets the name of the called function.
+ */
+string getCalleeName(CallExpr call) {
+  if exists(call.getResolvedTarget().(Function).getName())
+  then result = call.getResolvedTarget().(Function).getName().getText()
+  else result = call.toString()
+}
+
+from CallExpr call, Function caller
+where
+  call.getEnclosingCallable() = caller and
+  exists(Function source, Function target |
+    source = getSourceFunction() and
+    target = getTargetFunction() and
+    calls*(source, caller) and
+    exists(Function callee |
+      call.getResolvedTarget().(Function) = callee and
+      calls*(callee, target)
+    )
+  )
+select call,
+  "Reachable call from `" + caller.getName().getText() + "` to `" + getCalleeName(call) + "`"