C#: Set proxy environment variables, if Dependabot proxy is detected #18029

mbg · 2024-11-19T13:29:27Z

This PR is part of work to enable private package registries to be used in default setup.

The existing default setup workflow will initialise the Dependabot package proxy if a private package registry configuration is configured. The host, port, and certificate used by the proxy are then passed to CodeQL in the analyze step.

The changes in this PR modify the C# extractor to recognise when the corresponding environment variables are set. If so, we use the data from those environment variables to:

Construct the proxy address from the host and port and pass it to dotnet via the HTTP_PROXY and HTTPS_PROXY environment variables.
Store the certificate on disk, and pass the path to dotnet via SSL_CERT_FILE.

In testing so far, this works fine on Linux with fairly arbitrary versions of dotnet. It does not seem to work on macOS and likely also does not work on Windows.

mbg added 3 commits November 19, 2024 13:23

C#: Add CODEQL_PROXY_* environment variable names

b407a5a

C#: Add DependabotProxy class

f346e38

C#: Initialise DependabotProxy in DotNetCliInvoker

b1828a8

mbg self-assigned this Nov 19, 2024

github-actions bot added the C# label Nov 19, 2024

C#: Set environment variables for proxy for calls to dotnet

9731006

mbg force-pushed the mbg/csharp/set-proxy-cert-file branch from c5c1260 to 9731006 Compare November 19, 2024 13:45

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

C#: Set proxy environment variables, if Dependabot proxy is detected #18029

C#: Set proxy environment variables, if Dependabot proxy is detected #18029

mbg commented Nov 19, 2024

C#: Set proxy environment variables, if Dependabot proxy is detected #18029

Are you sure you want to change the base?

C#: Set proxy environment variables, if Dependabot proxy is detected #18029

Conversation

mbg commented Nov 19, 2024