From 3c43cf72b8f89ec4f7a637c30fe34d9dc64ce9e8 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Wed, 9 Jul 2025 23:48:40 +0000 Subject: [PATCH 1/3] Initial plan From 1cafa257e2ff4bd339cbe617d08aa0b3a7a85c77 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Wed, 9 Jul 2025 23:51:47 +0000 Subject: [PATCH 2/3] Move security-events permission to job level in CodeQL workflow Co-authored-by: trask <218610+trask@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 30eae40e89d..71d90b55664 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -7,12 +7,13 @@ on: pull_request: permissions: - security-events: write contents: read jobs: CodeQL-Build: runs-on: ubuntu-latest + permissions: + security-events: write steps: - name: Checkout repository From 4d66ef26dc65442fb574ef37e67821f92b08ebd2 Mon Sep 17 00:00:00 2001 From: Trask Stalnaker Date: Wed, 9 Jul 2025 18:54:36 -0700 Subject: [PATCH 3/3] Update .github/workflows/codeql-analysis.yml --- .github/workflows/codeql-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 71d90b55664..64b9a8bb073 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -11,9 +11,9 @@ permissions: jobs: CodeQL-Build: - runs-on: ubuntu-latest permissions: security-events: write + runs-on: ubuntu-latest steps: - name: Checkout repository