{"id":5575,"date":"2025-07-24T15:36:36","date_gmt":"2025-07-24T15:36:36","guid":{"rendered":"https:\/\/techhub.saworks.io\/docs\/tutoriel-github\/securite-avancee-sur-github-partie-2-sur-2\/resolution-des-problemes-lies-aux-resultats-codeql\/"},"modified":"2025-07-31T14:06:06","modified_gmt":"2025-07-31T14:06:06","slug":"resolution-des-problemes-lies-aux-resultats-codeql","status":"publish","type":"docs","link":"https:\/\/techhub.saworks.io\/fr\/docs\/tutoriel-github\/securite-avancee-sur-github-partie-2-sur-2\/resolution-des-problemes-lies-aux-resultats-codeql\/","title":{"rendered":"R\u00e9solution des probl\u00e8mes li\u00e9s aux r\u00e9sultats CodeQL"},"content":{"rendered":"\n<div class=\"wp-block-group is-layout-constrained wp-block-group-is-layout-constrained\">\n<p>Cette unit\u00e9 fournit des conseils pour&nbsp;<strong>optimiser<\/strong>&nbsp;et&nbsp;<strong>r\u00e9soudre les probl\u00e8mes<\/strong>&nbsp;lorsque vous travaillez avec CodeQL et l\u2019analyse de code.<\/p>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Optimiser les temps d\u2019analyse CodeQL<\/h3>\n\n\n\n<p>Plusieurs raisons peuvent expliquer pourquoi votre analyse CodeQL prend trop de temps :<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Si vous utilisez des&nbsp;<strong>runners auto-h\u00e9berg\u00e9s<\/strong>, vous pouvez&nbsp;<strong>augmenter la m\u00e9moire<\/strong>&nbsp;ou le&nbsp;<strong>nombre de c\u0153urs<\/strong>.<\/li>\n\n\n\n<li>Des probl\u00e8mes peuvent survenir si le d\u00e9p\u00f4t contient&nbsp;<strong>plusieurs langages<\/strong>. Vous pouvez modifier votre workflow pour utiliser une&nbsp;<strong>matrice<\/strong>&nbsp;qui acc\u00e9l\u00e8re l\u2019analyse multilingue. L\u2019analyse de chaque langage s\u2019ex\u00e9cute en&nbsp;<strong>parall\u00e8le<\/strong>&nbsp;avec le workflow CodeQL par d\u00e9faut. Les workflows avanc\u00e9s doivent \u00eatre configur\u00e9s de mani\u00e8re similaire s\u2019ils ex\u00e9cutent l\u2019initialisation et l\u2019analyse des langages de fa\u00e7on&nbsp;<strong>s\u00e9quentielle<\/strong>.<\/li>\n\n\n\n<li>La&nbsp;<strong>quantit\u00e9 de code<\/strong>&nbsp;analys\u00e9e peut allonger les temps d\u2019ex\u00e9cution. Le temps d\u2019analyse est g\u00e9n\u00e9ralement&nbsp;<strong>proportionnel<\/strong>&nbsp;\u00e0 la taille du code. Vous pouvez r\u00e9duire cette taille en&nbsp;<strong>excluant le code de test<\/strong>&nbsp;ou en&nbsp;<strong>divisant le code<\/strong>&nbsp;en plusieurs workflows pour analyser un&nbsp;<strong>sous-ensemble<\/strong>&nbsp;\u00e0 chaque scan.<\/li>\n\n\n\n<li>Si l\u2019analyse est trop lente lors des \u00e9v\u00e9nements&nbsp;<code>push<\/code>&nbsp;ou&nbsp;<code>pull_request<\/code>, vous pouvez la d\u00e9clencher uniquement lors de l\u2019\u00e9v\u00e9nement&nbsp;<code>schedule<\/code>.<\/li>\n<\/ul>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Optimiser les requ\u00eates CodeQL<\/h3>\n\n\n\n<p>Certains probl\u00e8mes de performance peuvent venir de&nbsp;<strong>requ\u00eates personnalis\u00e9es<\/strong>. Vous trouverez les probl\u00e8mes courants et comment les r\u00e9soudre dans la documentation CodeQL sur le&nbsp;<a href=\"https:\/\/codeql.github.com\/docs\/writing-codeql-queries\/troubleshooting-query-performance\/\"><strong>d\u00e9pannage des performances de requ\u00eates<\/strong>.<\/a><\/p>\n\n\n\n<p>Points importants \u00e0 retenir :<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Les&nbsp;<strong>pr\u00e9dicats et classes CodeQL<\/strong>&nbsp;sont \u00e9valu\u00e9s en tant que&nbsp;<strong>tables de base de donn\u00e9es<\/strong>. Les grands pr\u00e9dicats g\u00e9n\u00e8rent de grandes tables, co\u00fbteuses \u00e0 calculer.<\/li>\n\n\n\n<li>Le langage QL est bas\u00e9 sur des op\u00e9rations de base de donn\u00e9es standards et l\u2019<strong>alg\u00e8bre relationnelle<\/strong>&nbsp;: jointure, projection, union, etc.<\/li>\n\n\n\n<li>Les requ\u00eates sont \u00e9valu\u00e9es&nbsp;<strong>de bas en haut<\/strong>&nbsp;: un pr\u00e9dicat n\u2019est \u00e9valu\u00e9 que lorsque tous les pr\u00e9dicats dont il d\u00e9pend ont \u00e9t\u00e9 \u00e9valu\u00e9s.<\/li>\n<\/ul>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Artefacts de d\u00e9bogage<\/h3>\n\n\n\n<p>Vous pouvez obtenir des artefacts pour vous aider \u00e0&nbsp;<strong>d\u00e9boguer<\/strong>&nbsp;les probl\u00e8mes li\u00e9s \u00e0 l\u2019analyse CodeQL.<br>Modifiez l\u2019\u00e9tape&nbsp;<code>init<\/code>&nbsp;de votre fichier de workflow CodeQL et d\u00e9finissez : debug:&nbsp;true<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1008\" height=\"431\" data-src=\"https:\/\/techhub.saworks.io\/wp-content\/uploads\/2025\/07\/log-files.png\" alt=\"\" class=\"wp-image-5578 lazyload\" data-srcset=\"https:\/\/techhub.saworks.io\/wp-content\/uploads\/2025\/07\/log-files.png 1008w, https:\/\/techhub.saworks.io\/wp-content\/uploads\/2025\/07\/log-files-300x128.png 300w, https:\/\/techhub.saworks.io\/wp-content\/uploads\/2025\/07\/log-files-768x328.png 768w\" data-sizes=\"(max-width: 1008px) 100vw, 1008px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 1008px; --smush-placeholder-aspect-ratio: 1008\/431;\" \/><\/figure>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Messages d\u2019erreur courants<\/h3>\n\n\n\n<p>Pour r\u00e9soudre les probl\u00e8mes li\u00e9s \u00e0 votre workflow CodeQL, il est utile de conna\u00eetre les messages d\u2019erreur les plus fr\u00e9quents.<\/p>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h4 class=\"wp-block-heading\">Erreur :&nbsp;<strong>\u00ab\u00a0Server error\u00a0\u00bb<\/strong> ( \u00ab Erreur de serveur \u00bb )<\/h4>\n\n\n\n<p>Si une ex\u00e9cution de workflow \u00e9choue \u00e0 cause d\u2019une erreur serveur, il peut s\u2019agir d\u2019un&nbsp;<strong>probl\u00e8me de communication temporaire<\/strong>.<br>Essayez de relancer le workflow. Si le probl\u00e8me persiste, contactez le&nbsp;<strong>support GitHub<\/strong>.<\/p>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h4 class=\"wp-block-heading\">Erreur :&nbsp;<strong>\u00ab\u00a0Out of disk\u00a0\u00bb<\/strong>&nbsp;ou&nbsp;<strong>\u00ab\u00a0Out of memory\u00a0\u00bb<\/strong> (\u00ab Hors disque \u00bb ou \u00ab M\u00e9moire insuffisante \u00bb)<\/h4>\n\n\n\n<p>CodeQL peut manquer d\u2019espace disque ou de m\u00e9moire sur le runner si le projet est trop volumineux.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Si vous utilisez un&nbsp;<strong>runner GitHub Actions h\u00e9berg\u00e9<\/strong>, contactez le&nbsp;<strong>support GitHub<\/strong>.<\/li>\n\n\n\n<li>Si vous utilisez un&nbsp;<strong>runner auto-h\u00e9berg\u00e9<\/strong>, vous devrez peut-\u00eatre&nbsp;<strong>augmenter les ressources mat\u00e9rielles<\/strong>&nbsp;du serveur.<br>Consultez la documentation CodeQL sur les&nbsp;<strong><a href=\"https:\/\/docs.github.com\/en\/code-security\/code-scanning\/creating-an-advanced-setup-for-code-scanning\/recommended-hardware-resources-for-running-codeql\">sp\u00e9cifications mat\u00e9rielles recommand\u00e9es<\/a><\/strong>.<\/li>\n<\/ul>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h4 class=\"wp-block-heading\">Erreur :&nbsp;<strong>403 \u00ab\u00a0<\/strong> Ressource non accessible par int\u00e9gration\u00a0\u00bb &nbsp;lors de l\u2019utilisation de&nbsp;<strong>Dependabot<\/strong><\/h4>\n\n\n\n<p>Dependabot est consid\u00e9r\u00e9 comme&nbsp;<strong>non fiable<\/strong>&nbsp;lorsqu\u2019il d\u00e9clenche un workflow. Le workflow s\u2019ex\u00e9cute avec des&nbsp;<strong>autorisations en lecture seule<\/strong>.<br>Le t\u00e9l\u00e9versement des r\u00e9sultats d\u2019analyse de code pour une branche n\u00e9cessite g\u00e9n\u00e9ralement la permission&nbsp;<code>security_events: write<\/code>.<\/p>\n\n\n\n<p>Cependant, l\u2019analyse de code autorise toujours le t\u00e9l\u00e9versement des r\u00e9sultats lorsque l\u2019\u00e9v\u00e9nement&nbsp;<code>pull_request<\/code>&nbsp;d\u00e9clenche l\u2019action.<br>Pour les branches Dependabot, il est donc recommand\u00e9 d\u2019utiliser l\u2019\u00e9v\u00e9nement&nbsp;<strong><code>pull_request<\/code><\/strong>&nbsp;au lieu de&nbsp;<strong><code>push<\/code><\/strong>.<\/p>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div class=\"wp-block-group has-background is-layout-constrained wp-block-group-is-layout-constrained\" style=\"background-color:#fcb90054\">\n<h3 class=\"wp-block-heading\">\ud83d\udca1&nbsp;<strong>Astuce<\/strong><\/h3>\n\n\n\n<p>Une approche simple consiste \u00e0 ex\u00e9cuter l\u2019analyse lors des&nbsp;<strong>push<\/strong>&nbsp;vers la&nbsp;<strong>branche par d\u00e9faut<\/strong>&nbsp;et les&nbsp;<strong>branches importantes \u00e0 long terme<\/strong>, ainsi que lors des&nbsp;<strong>pull requests<\/strong>&nbsp;ouvertes vers ces branches.<\/p>\n<\/div>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>Voici un exemple de configuration : <\/p>\n\n\n\n<div class=\"wp-block-kevinbatdorf-code-block-pro cbp-has-line-numbers\" data-code-block-pro-font-family=\"Code-Pro-JetBrains-Mono\" style=\"font-size:.75rem;font-family:Code-Pro-JetBrains-Mono,ui-monospace,SFMono-Regular,Menlo,Monaco,Consolas,monospace;--cbp-line-number-color:#EEFFFF;--cbp-line-number-width:calc(1 * 0.6 * .75rem);line-height:1rem;--cbp-tab-width:2;tab-size:var(--cbp-tab-width, 2)\"><span style=\"display:block;padding:16px 0 0 16px;margin-bottom:-1px;width:100%;text-align:left;background-color:#212121\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"54\" height=\"14\" viewBox=\"0 0 54 14\"><g fill=\"none\" fill-rule=\"evenodd\" transform=\"translate(1 1)\"><circle cx=\"6\" cy=\"6\" r=\"6\" fill=\"#FF5F56\" stroke=\"#E0443E\" stroke-width=\".5\"><\/circle><circle cx=\"26\" cy=\"6\" r=\"6\" fill=\"#FFBD2E\" stroke=\"#DEA123\" stroke-width=\".5\"><\/circle><circle cx=\"46\" cy=\"6\" r=\"6\" fill=\"#27C93F\" stroke=\"#1AAB29\" stroke-width=\".5\"><\/circle><\/g><\/svg><\/span><span role=\"button\" tabindex=\"0\" style=\"color:#EEFFFF;display:none\" aria-label=\"Copy\" class=\"code-block-pro-copy-button\"><pre class=\"code-block-pro-copy-button-pre\" aria-hidden=\"true\"><textarea class=\"code-block-pro-copy-button-textarea\" tabindex=\"-1\" aria-hidden=\"true\" readonly>on:\n  push:\n    branches:\n      - main\n  pull_request:\n    branches:\n      - main<\/textarea><\/pre><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" style=\"width:24px;height:24px\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path class=\"with-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2m-6 9l2 2 4-4\"><\/path><path class=\"without-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2\"><\/path><\/svg><\/span><pre class=\"shiki material-theme-darker\" style=\"background-color: #212121\" tabindex=\"0\"><code><span class=\"line\"><span style=\"color: #FFCB6B\">on:<\/span><\/span>\n<span class=\"line\"><span style=\"color: #EEFFFF\">  <\/span><span style=\"color: #FFCB6B\">push:<\/span><\/span>\n<span class=\"line\"><span style=\"color: #EEFFFF\">    <\/span><span style=\"color: #FFCB6B\">branches:<\/span><\/span>\n<span class=\"line\"><span style=\"color: #EEFFFF\">      <\/span><span style=\"color: #FFCB6B\">-<\/span><span style=\"color: #EEFFFF\"> <\/span><span style=\"color: #C3E88D\">main<\/span><\/span>\n<span class=\"line\"><span style=\"color: #EEFFFF\">  <\/span><span style=\"color: #FFCB6B\">pull_request:<\/span><\/span>\n<span class=\"line\"><span style=\"color: #EEFFFF\">    <\/span><span style=\"color: #FFCB6B\">branches:<\/span><\/span>\n<span class=\"line\"><span style=\"color: #EEFFFF\">      <\/span><span style=\"color: #FFCB6B\">-<\/span><span style=\"color: #EEFFFF\"> <\/span><span style=\"color: #C3E88D\">main<\/span><\/span><\/code><\/pre><\/div>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Erreur :&nbsp;<strong>\u00ab\u00a0<\/strong> Chargement SARIF rejet\u00e9 en raison de l\u2019installation par d\u00e9faut\u00a0\u00bb <\/h3>\n\n\n\n<p>Le&nbsp;<strong>t\u00e9l\u00e9versement de fichiers SARIF est bloqu\u00e9<\/strong>&nbsp;lorsque la configuration par d\u00e9faut de CodeQL est activ\u00e9e.<\/p>\n\n\n\n<p>Cette erreur se produit lorsqu\u2019un processus tente de t\u00e9l\u00e9verser un fichier SARIF contenant des r\u00e9sultats d\u2019analyse CodeQL dans un d\u00e9p\u00f4t o\u00f9 la configuration par d\u00e9faut est activ\u00e9e.<br>Elle peut \u00e9galement se produire si le t\u00e9l\u00e9versement est effectu\u00e9 via l\u2019<strong>API REST<\/strong>&nbsp;ou le&nbsp;<strong>CLI CodeQL<\/strong>.<\/p>\n\n\n\n<p>Ce blocage est mis en place pour&nbsp;<strong>\u00e9viter toute confusion<\/strong>&nbsp;lorsque plusieurs syst\u00e8mes g\u00e9n\u00e8rent des alertes similaires d\u2019analyse de code.<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>Cette erreur ne concerne que les fichiers SARIF contenant des r\u00e9sultats g\u00e9n\u00e9r\u00e9s avec CodeQL.<\/p>\n<\/blockquote>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Comment corriger cette erreur :<\/h3>\n\n\n\n<p><strong>D\u00e9sactivez CodeQL<\/strong>&nbsp;dans le d\u00e9p\u00f4t, puis r\u00e9essayez de t\u00e9l\u00e9verser le fichier SARIF.<\/p>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Pour aller plus loin :<\/h3>\n\n\n\n<p>Consultez la documentation CodeQL sur <a href=\"https:\/\/docs.github.com\/en\/code-security\/code-scanning\/troubleshooting-code-scanning\">le d\u00e9pannage de l\u2019analyse de code pour plus d\u2019informations.<\/a><\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Cette unit\u00e9 fournit des conseils pour&nbsp;optimiser&nbsp;et&nbsp;r\u00e9soudre les probl\u00e8mes&nbsp;lorsque vous travaillez avec CodeQL et l\u2019analyse de code. Optimiser les temps d\u2019analyse CodeQL Plusieurs raisons [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":5546,"menu_order":6,"comment_status":"closed","ping_status":"closed","template":"","doc_tag":[],"doc_badge":[],"class_list":["post-5575","docs","type-docs","status-publish","hentry"],"author_avatar":"https:\/\/secure.gravatar.com\/avatar\/6a70e7c73db9f245e650948d09d74f61?s=96&d=mm&r=g","author_name":"Annick N'dri","_links":{"self":[{"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/docs\/5575"}],"collection":[{"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/docs"}],"about":[{"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/types\/docs"}],"author":[{"embeddable":true,"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/comments?post=5575"}],"version-history":[{"count":0,"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/docs\/5575\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/docs\/5546"}],"wp:attachment":[{"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/media?parent=5575"}],"wp:term":[{"taxonomy":"doc_tag","embeddable":true,"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/doc_tag?post=5575"},{"taxonomy":"doc_badge","embeddable":true,"href":"https:\/\/techhub.saworks.io\/fr\/wp-json\/wp\/v2\/doc_badge?post=5575"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}