Question about CodeQL Queries

[matteop24]

Hi,
I'm using CodeQL to analyze a set of malicious files, and I'm working with the queries available here (I believe this is the correct location): https://github.com/github/codeql/tree/main/cpp/ql/src/codeql-suites. I want to run as many queries as possible, but there are so many files that include other queries, and I suspect some may be duplicated.
If I want to include all the queries in my analysis, what is the best way to do this in a .qls file? Thank you.

[psupra22]

To run a comprehensive set of CodeQL queries for your C/C++ malicious files, start with cpp-security-and-quality.qls from the CodeQL repository, as it’s a curated suite that balances security and quality checks. If you need broader coverage, create a custom .qls file to include specific suites like cpp-security.qls or cpp-performance.qls, depending on your goals. For example:

include "cpp-security-and-quality.qls"
include "cpp-performance.qls"

Avoid using a glob pattern like ../**/*.ql unless you specifically need experimental or internal queries, as it may include test queries that produce noisy or unreliable results. CodeQL automatically handles duplicate queries, so you don’t need to worry about overlaps in suites.

[matteop24]

Hi, thanks for your reply.
My goal is to use as many security queries as possible. Which .qls files would you recommend including?

[psupra22]

cpp-security-and-quality.qls: broad coverage, includes security and correctness checks.
cpp-security-experimental.qls: additional security queries that are not yet part of the default curated set but still useful.
cpp-security-extended.qls (if available in your CodeQL checkout, it may be newer): includes more specialized or less battle-tested queries.

[matteop24]

Ok, thank you so much!