Add a description of ${workspace} in qlack.yml files (#48890)

Co-authored-by: Sarita Iyer <66540150+saritai@users.noreply.github.com>
github · docs-bot · Feb 6, 2024 · Feb 6, 2024 · Feb 6, 2024 · Feb 6, 2024
commit a86c1eeecd835b02c0a5c19eb120eba367e86192
diff --git a/...i/using-the-advanced-functionality-of-the-codeql-cli/about-codeql-workspaces.md b/...i/using-the-advanced-functionality-of-the-codeql-cli/about-codeql-workspaces.md
@@ -109,3 +109,31 @@ dependencies:
 ```
 
 When you execute `codeql pack publish` from the query pack directory, the `codeql/cpp-all` dependency from the package cache and the `my-company/my-library` from the workspace are bundled with `my-company/my-queries` and published to the {% data variables.product.prodname_dotcom %} container registry.
+
+## Using `${workspace}` as a version range in `qlpack.yml` files
+
+{% data variables.product.prodname_codeql %} packs in a workspace can use the special `${workspace}`, `~${workspace}`, and `^${workspace}` version range placeholders. These placeholders indicate that this pack depends on the version of the specified pack that is currently in the workspace. This placeholder is typically used for dependencies inside of library packs to ensure that when they are published, the dependencies in their `qlpack.yml` file reflect the state of the workspace when they were published.
+
+### Example
+
+Consider the following two library packs in the same workspace:
+
+```yaml
+name: my-company/my-library
+library: true
+version: 1.2.3
+dependencies:
+  my-company/my-library2: ${workspace}
+```
+
+```yaml
+name: my-company/my-library2
+library: true
+version: 4.5.6
+```
+
+When `my-company/my-library` is published to the {% data variables.product.prodname_dotcom %} container registry, the version of the `my-company/my-library2` dependency in the published `qlpack.yml` file will be written as `4.5.6`.
+
+Similarly, if the dependency is `my-company/my-library2: ^${workspace}` in the source pack, and then the pack is published, the version of the `my-company/my-library2` dependency in the published `qlpack.yml` file will be written as `^4.5.6`, indicating that versions `>= 4.5.6` and `< 5.0.0` are all compatible with this library pack.
+
+If the dependency is `my-company/my-library2: ~${workspace}` in the source pack, and then the pack is published, the version of the `my-company/my-library2` dependency in the published `qlpack.yml` file will be written as `~4.5.6`, indicating that versions `>= 4.5.6` and `< 4.6.0` are all compatible with this library pack.
diff --git a/...e-advanced-functionality-of-the-codeql-cli/publishing-and-using-codeql-packs.md b/...e-advanced-functionality-of-the-codeql-cli/publishing-and-using-codeql-packs.md
@@ -238,6 +238,10 @@ The following properties are supported in `qlpack.yml` files.
     codeql/cpp-all: ^0.0.2
   ```
 
+  If you are unsure or it does not matter which version should be used, then you can use `"*"`, which indicates that any version of this dependency is compatible with this pack. In practice, this will usually resolve to the highest published version of the dependency.
+
+  There is a special version placeholder, `${workspace}`, which indicates that this {% data variables.product.prodname_codeql %} pack depends on whatever version of the dependency is in the same workspace. For more information, see "[AUTOTITLE](/code-security/codeql-cli/using-the-advanced-functionality-of-the-codeql-cli/about-codeql-workspaces#using-workspace-as-a-version-range-in-qlpackyml-files)."
+
 #### `defaultSuiteFile`
 
 - Required by packs that export a set of default queries to run.