From dd6c1c76def2c300fef99aa1d17bd365795f1588 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Wed, 9 Jul 2025 22:44:09 +0000 Subject: [PATCH 1/4] Initial plan From 2003668bd7d487e98959d348b1e6810eb109ce75 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Wed, 9 Jul 2025 22:47:16 +0000 Subject: [PATCH 2/4] Fix CodeQL workflow permissions: add security-events: write to Codeql-build job Co-authored-by: trask <218610+trask@users.noreply.github.com> --- .github/workflows/webserver.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/webserver.yml b/.github/workflows/webserver.yml index 46ce27624..bf93d3227 100644 --- a/.github/workflows/webserver.yml +++ b/.github/workflows/webserver.yml @@ -201,6 +201,8 @@ jobs: Codeql-build: name: static-analysis runs-on: ubuntu-20.04 + permissions: + security-events: write steps: - name: checkout otel webserver uses: actions/checkout@v3 From a3032c36abb3a3eab6346dde9aaaf48a201f8ee1 Mon Sep 17 00:00:00 2001 From: Trask Stalnaker Date: Wed, 9 Jul 2025 18:57:34 -0700 Subject: [PATCH 3/4] Update .github/workflows/webserver.yml --- .github/workflows/webserver.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/webserver.yml b/.github/workflows/webserver.yml index bf93d3227..6df4ea553 100644 --- a/.github/workflows/webserver.yml +++ b/.github/workflows/webserver.yml @@ -199,10 +199,10 @@ jobs: Codeql-build: - name: static-analysis - runs-on: ubuntu-20.04 permissions: security-events: write + name: static-analysis + runs-on: ubuntu-20.04 steps: - name: checkout otel webserver uses: actions/checkout@v3 From 1e9e828655fc04192b16252494816e95436df80e Mon Sep 17 00:00:00 2001 From: Trask Stalnaker Date: Wed, 9 Jul 2025 19:13:07 -0700 Subject: [PATCH 4/4] Update .github/workflows/webserver.yml --- .github/workflows/webserver.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/webserver.yml b/.github/workflows/webserver.yml index 6df4ea553..9bebbd5ee 100644 --- a/.github/workflows/webserver.yml +++ b/.github/workflows/webserver.yml @@ -200,7 +200,7 @@ jobs: Codeql-build: permissions: - security-events: write + security-events: write # for github/codeql-action/analyze to upload SARIF results name: static-analysis runs-on: ubuntu-20.04 steps: