Skip to content

Add CodeQL analysis workflow configuration#252

Open
nstarman wants to merge 3 commits intomasterfrom
codeql
Open

Add CodeQL analysis workflow configuration#252
nstarman wants to merge 3 commits intomasterfrom
codeql

Conversation

@nstarman
Copy link
Collaborator

@nstarman nstarman commented Feb 19, 2026

No description provided.

Copilot AI review requested due to automatic review settings February 19, 2026 16:34
@github-advanced-security
Copy link

github-advanced-security bot commented Feb 19, 2026

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@coveralls
Copy link

coveralls commented Feb 19, 2026
edited
Loading

Pull Request Test Coverage Report for Build 22191076500

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 99.591%
Totals Coverage Status
Change from base Build 22190629474: 0.0%
Covered Lines: 973
Relevant Lines: 977
💛 - Coveralls

@nstarman nstarman requested a review from wesselb February 19, 2026 16:36
Copilot AI reviewed Feb 19, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This pull request adds a CodeQL Advanced workflow configuration to enable automated security scanning of the repository. CodeQL is GitHub's semantic code analysis engine that helps identify vulnerabilities and coding errors.

Changes:

  • Adds a new GitHub Actions workflow file .github/workflows/codeql.yml that configures CodeQL analysis for both Python and GitHub Actions languages
  • Configures the workflow to run on pushes and pull requests to the master branch, plus a weekly scheduled scan
  • Sets up appropriate permissions for security scanning and uses CodeQL action version 4
Comments suppressed due to low confidence (1)

.github/workflows/codeql.yml:47

  • The 'actions' language is configured for CodeQL analysis, but this repository primarily contains Python code with GitHub Actions workflow files. The 'actions' language in CodeQL is intended for analyzing GitHub Actions workflows themselves for security issues, which may be excessive for this project. Consider whether analyzing GitHub Actions workflows is necessary for this repository's security posture, or if Python analysis alone is sufficient.
        - language: actions
          build-mode: none

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

nstarman and others added 2 commits February 19, 2026 11:44
@nstarman
Apply suggestions from code review
1203144 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@nstarman
Clean up comments in codeql.yml
0c50798 
Removed comments explaining the CodeQL workflow file.
@nstarman
Copy link
Collaborator Author

nstarman commented Feb 19, 2026

Squash merge plz.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@wesselb wesselb Awaiting requested review from wesselb

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nstarman @coveralls

Comments