Skip to content

Add CodeQL GHA #356

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
ppinchuk merged 5 commits into from
Dec 4, 2025
Merged

Add CodeQL GHA #356

ppinchuk merged 5 commits into from
Dec 4, 2025

Conversation

@ppinchuk
Copy link
Collaborator

@ppinchuk ppinchuk commented Dec 1, 2025

Add CodeQL scans

@ppinchuk ppinchuk added this to the Finishing touches for OSS milestone Dec 1, 2025
@ppinchuk ppinchuk self-assigned this Dec 1, 2025
Copilot AI review requested due to automatic review settings December 1, 2025 20:12
@ppinchuk ppinchuk requested a review from castelao as a code owner December 1, 2025 20:12
@ppinchuk ppinchuk added chore Maintenance work that does not impact the user p-medium Priority: medium github_actions Pull requests that update GitHub Actions code labels Dec 1, 2025
@github-advanced-security
Copy link

github-advanced-security bot commented Dec 1, 2025

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

Copilot AI reviewed Dec 1, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR adds CodeQL security scanning to the repository through a new GitHub Actions workflow that analyzes code for potential security vulnerabilities and code quality issues.

  • Introduces three parallel analysis jobs for GitHub Actions, Python, and Rust codebases
  • Uses CodeQL v4 actions with appropriate build modes for each language
  • Configures proper permissions for security event reporting

castelao
castelao approved these changes Dec 3, 2025
View reviewed changes
Copy link
Member

@castelao castelao left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice! I haven't used it yet. I'm curious to see how it works.

@ppinchuk ppinchuk merged commit 43ad4b2 into main Dec 4, 2025
4 checks passed
@ppinchuk ppinchuk deleted the pp/codeql branch December 4, 2025 01:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@castelao castelao castelao approved these changes

Assignees

@ppinchuk ppinchuk

Labels

chore Maintenance work that does not impact the user github_actions Pull requests that update GitHub Actions code p-medium Priority: medium

Projects

None yet

Milestone

Finishing touches for OSS

Development

Successfully merging this pull request may close these issues.

3 participants

@ppinchuk @castelao