codeql-action
codeql-action copied to clipboard
github
Actions for running CodeQL analysis
Hi, We're still experiencing an issue with code signing when building the .app with the initialized CodeQL setup: ``` ** ARCHIVE FAILED ** The following build commands failed: CodeSign /Users/test/Library/Developer/Xcode/DerivedData/test-bjpcnarfduumrnaetkciiatxsspz/Build/Intermediates.noindex/ArchiveIntermediates/Test/IntermediateBuildFilesPath/UninstalledProducts/macosx/TestApplication.app...
- Usage: ```yaml uses: github/codeql-action/upload-sarif@v3 with: sarif_file: sarif-results/fix-paths-cpp.sarif ref: refs/heads/main sha: a8e616ed369f7f74173a13c5489dbae89c3b12 checkout_path: /runner/_work/parent-repo/build ``` - Output from action: ```bash request: { method: 'PUT', url: 'https://github.com/api/v3/repos/PFO/OpenSIL/code-scanning/analysis', headers: { accept: 'application/vnd.github.v3+json',...
Every now and then, we see this error in our CodeQL scans. Both default and "advanced" ones: ``` Written by John Gilmore and Jay Fenlason. Found gnu tar version 1.34....
Hi, We have observed that the JavaScript scanner in CodeQL runs extremely slowly. Below is a snippet from the logs: ``` [90/90 eval 156m41s] Evaluation done; writing results to codeql/javascript-queries/Security/CWE-730/RegExpInjection.bqrs....
I've been trying to use codeql to check my GitHub Actions workflows. I've got it kinda working here: https://github.com/billnapier/github-actions-check-workflow/pulls I can test things, and when I run codeql standalone, stuff...
I updated my GitHub Action workflow from Github hosted Linux x64 to Linux Arm, but now the codeql workflow fails: ``` Exit code was 126 and last log line was:...
We have a step that uses upload-sarif. It ran on `merge_group:` but failed because the merge queue item was removed from the queue. This resulted in the following error message...
Below workflow code having issue even after completing the CodeQL stage ``` name: "CodeQL Advanced" on: push: branches: [main] pull_request: branches: [main] jobs: analyze: name: Analyze (${{ matrix.language }}) runs-on:...
``` [2024-11-13 08:18:41] [autobuild] e: java.lang.OutOfMemoryError: GC overhead limit exceeded [2024-11-13 08:18:41] [autobuild] at java.base/jdk.internal.org.objectweb.asm.SymbolTable.(SymbolTable.java:156) [2024-11-13 08:18:41] [autobuild] at java.base/jdk.internal.org.objectweb.asm.ClassWriter.(ClassWriter.java:297) [2024-11-13 08:18:41] [autobuild] at java.base/jdk.internal.org.objectweb.asm.ClassWriter.(ClassWriter.java:267) [2024-11-13 08:18:41] [autobuild] at java.base/java.lang.invoke.InnerClassLambdaMetafactory.(InnerClassLambdaMetafactory.java:185)...
Hi, I'm trying out codeql, after running codeql init for go language and with the debug flag I build my app with `go build -x` and it just hangs, no...
