C#: Include metrics in the database quality diagnostics.

michaelnebel · michaelnebel · commit 99e16d2eb633 · 2025-09-04T13:56:53.000+02:00
diff --git a/csharp/ql/src/Telemetry/DatabaseQualityDiagnostics.ql b/csharp/ql/src/Telemetry/DatabaseQualityDiagnostics.ql
@@ -9,26 +9,30 @@ import csharp
 import DatabaseQuality
 
 private newtype TDbQualityDiagnostic =
-  TTheDbQualityDiagnostic() {
-    exists(float percentageGood |
-      CallTargetStatsReport::percentageOfOk(_, percentageGood)
-      or
-      ExprTypeStatsReport::percentageOfOk(_, percentageGood)
-    |
-      percentageGood < 95
-    )
+  TTheDbQualityDiagnostic(string callMsg, float callTargetOk, string exprMsg, float exprTypeOk) {
+      CallTargetStatsReport::percentageOfOk(callMsg, callTargetOk) and
+      ExprTypeStatsReport::percentageOfOk(exprMsg, exprTypeOk) and
+      [callTargetOk, exprTypeOk] < 95
   }
 
 class DbQualityDiagnostic extends TDbQualityDiagnostic {
+  private string callMsg;
+  private float callTargetOk;
+  private float exprTypeOk;
+  private string exprMsg;
+
+  DbQualityDiagnostic() { this = TTheDbQualityDiagnostic(callMsg, callTargetOk, exprMsg, exprTypeOk) }
+
+  private string getDbHealth() {
+    result = callMsg + ": " + callTargetOk.floor() + ". " + exprMsg + ": " + exprTypeOk.floor() + ". "
+  }
   string toString() {
     result =
       "Scanning C# code completed successfully, but the scan encountered issues. " +
-        "This may be caused by problems identifying dependencies or use of generated source code, among other reasons -- "
-        +
-        "see other CodeQL diagnostics reported on the CodeQL status page for more details of possible causes. "
-        +
-        "Addressing these warnings is advisable to avoid false-positive or missing results. If they cannot be addressed, consider scanning C# "
-        +
+        "This may be caused by problems identifying dependencies or use of generated source code. " +
+        "Some metrics of the database quality are: " + this.getDbHealth() +
+        "Both of these metrics should ideally be above 95%. " +
+        "Addressing these issues are advisable to avoid false-positives or missing results. If they cannot be addressed, consider scanning C# "+
         "using either the `autobuild` or `manual` [build modes](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages#comparison-of-the-build-modes)."
   }
 }
