codeql-action
codeql-action copied to clipboard
github
Actions for running CodeQL analysis
This pull request updates the default CodeQL bundle, as used with `tools: linked` and on GHES, to 2.18.3.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "github-actions[bot] avatar"){kind=avatar}
I have this step in a workflow and it works: ```yaml - name: "Upload Trivy scan results to GitHub Security tab" uses: github/codeql-action/upload-sarif@v3 with: sarif_file: '${{ env.trivy_output_file }}' category: 'trivy-image-${{...
TODO ### Merge / deployment checklist - [ ] Confirm this change is backwards compatible with existing workflows. - [ ] Confirm the [readme](https://github.com/github/codeql-action/blob/main/README.md) has been updated if necessary. -...
Update `README.md` to include detailed information about inputs, workflow permissions, build modes, and actions. * **Inputs**: Add a section on inputs, including the `config` option, `languages`, `queries`, `packs`, `db-location`, `ram`,...
When enabling `debug` in the codeql init@v3 action, I get a deprecation notice for `actions/upload-artifact` that I do not get otherwise 
I propose a .zstd download option alongside the existing .gz one for Linux releases. For the latest 2.18.1 linux64 bundle, using zstd instead of gzip can cut off 33% of...
We're trying to reference a private CodeQL pack when running `init`. When this runs in Github actions, we get `HttpError: Not Found`. ``` name: "SAST Scans" on: push: branches: ["master",...
Work-in-progress to add support for dependency caching to the `init` Action. ### Merge / deployment checklist - [ ] Confirm this change is backwards compatible with existing workflows. - [...
Hi! We've recently adopted CodeQL into our system and noticed very slow analysis for one of our codebases, which consists of java + kotlin. For comparison: * regular build takes...
When using the [maven wrapper `distributionType` `only-script`](https://maven.apache.org/wrapper/maven-wrapper-plugin/wrapper-mojo.html#distributionType) autobuild will override the wrapper: ``` [2024-07-13 09:29:53] [autobuild] > mvn -N org.apache.maven.plugins:maven-wrapper-plugin:3.3.0:wrapper -Dtype=bin ``` See https://github.com/ArloL/chorito/actions/runs/9918944552/job/27404224920 for a full log. My guess...
