Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Codeql on github actions error #1423

Open
TheMeera-comp opened this issue Aug 6, 2023 · 1 comment
Open

Codeql on github actions error #1423

TheMeera-comp opened this issue Aug 6, 2023 · 1 comment

Comments

@TheMeera-comp
Copy link

I'm currently getting this error,
Analyze (javascript)
Error: Unable to locate executable file: tar. Please verify either the file path exists or the file can be found within a directory specified by the PATH environment variable. Also verify the file has a valid extension for an executable file.

While i'm using github actions for self hosted runners. This is occuring while I'm trying to run codeql for security scans.
image
@TheMeera-comp
Copy link
Author

TheMeera-comp commented Aug 6, 2023
edited
Loading

Attached the workflow yaml file for further details.

For most projects, this workflow file will not need changing; you simply need

to commit it to your repository.

You may wish to alter this file to override the set of languages analyzed,

or to provide custom queries or build logic.

******** NOTE ********

We have attempted to detect the languages in your repository. Please check

the language matrix defined below to confirm you have the correct set of

supported CodeQL languages.

name: "CodeQL"

on:
push:
branches: [ "main" ]
pull_request:
# The branches below must be a subset of the branches above
branches: [ "main" ]
schedule:
- cron: '32 18 * * 6'

jobs:
analyze:
name: Analyze
runs-on: [ self-hosted ]
permissions:
actions: read
contents: read
security-events: write

strategy:
  fail-fast: false
  matrix:
    language: [ 'csharp', 'javascript' ]
    # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ]
    # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support

steps:
- name: Checkout repository
  uses: actions/checkout@v3

# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
  uses: github/codeql-action/init@v2
  with:
    languages: ${{ matrix.language }}
    # If you wish to specify custom queries, you can do so here or in a config file.
    # By default, queries listed here will override any specified in a config file.
    # Prefix the list here with "+" to use these queries and those in the config file.
    
    # Details on CodeQL's query packs refer to : https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
    # queries: security-extended,security-and-quality

    
# Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually (see below)
- name: Autobuild
  uses: github/codeql-action/autobuild@v2

# ℹ️ Command-line programs to run using the OS shell.
# 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun

#   If the Autobuild fails above, remove it and uncomment the following three lines. 
#   modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance.

# - run: |
#   echo "Run, Build Application using script"
#   ./location_of_script_within_repo/buildscript.sh

- name: Perform CodeQL Analysis
  uses: github/codeql-action/analyze@v2
  with:
    category: "/language:${{matrix.language}}"

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@TheMeera-comp