Build the database
codeql database create codeql-typescript --language=javascript
Run the query
codeql database analyze codeql-typescript infra/qlpack/ --format=csv --output=js-results.csv
Look at the results
cat js-results.csv
"Wildcard IAM actions","Finds calls to that contain a bare wildcard","warning","addActions called with wildcard","/infra/stacks/empty.ts","23","9","23","60"
It is good that this finds line 23. I want to enhance the query to also find line 22, which has the permissions variable set to '*' instead of passing the string directly.