fix(codeql): forward-sync AceHack PR #96 — exclude obj/ and bin/ build artifacts (B-0073) — #97 already-covered

[AceHack]

Summary

Forward-sync of AceHack PR #96 (codeql obj/bin excludes) per the authority rule's classification rubric. PR #97 (csharp test cast cleanup) is ALREADY-COVERED on LFG main — cast removals at tests/Tests.CSharp/CircuitTests.cs and tests/Tests.CSharp/ZSetTests.cs already present, no action needed.

Cherry-picked verbatim:

• 0919f25 — fix(codeql): exclude obj/ and bin/ build artifacts from CodeQL analysis (B-0073) (research: bootstrap-precursor drift-taxonomy absorb (idea-scope, 4 hallucinations flagged) #96)

What this adds

.github/codeql/codeql-config.yml paths-ignore: adds **/obj/** and **/bin/** patterns to skip .NET build artifacts (xunit auto-generated test entry points like XunitAutoGeneratedEntry*.cs + compiler intermediates) from CodeQL scanning. Empirically discovered 2026-04-28 (B-0073): two open csharp alerts on obj/Release/net10.0/XunitAutoGenerated*.cs were gating the LFG code_quality:severity=all ruleset on every PR.

#97 ALREADY-COVERED — verification

Verified via git cherry-pick 0f5812d resulting in "nothing to commit, working tree clean" — the 10 ((int, long)) casts on tuple literals at tests/Tests.CSharp/CircuitTests.cs and tests/Tests.CSharp/ZSetTests.cs already exist on LFG in the cleaned-up state. Per Amara's classification rubric: ALREADY-COVERED → no action.

Composes with

• PR ci: forward-sync AceHack PRs #80 + #81 — comprehensive install cache + retry 3→5 (Aaron 2026-04-28) #700 (cache + retry) — already merged; this PR builds on the same B-0073 substrate
• PR memory: Authority rule (default to reversible preservation) + Goodhart catch #3 + Stop Mythology directive + B-0089 #699 (memory rules) — pending; encodes the authority rule that authorized opening this PR autonomously
• B-0073 backlog row (P0 csharp Code Scanning cleanup) — this PR's substantive contribution to that work-stream

Acceptance

• CI green (mostly cache-warmed from PR ci: forward-sync AceHack PRs #80 + #81 — comprehensive install cache + retry 3→5 (Aaron 2026-04-28) #700 — should be fast)
• CodeQL csharp alerts on obj/Release/**/XunitAutoGenerated*.cs clear after merge

Next forward-sync targets (per Amara's rubric)

• AceHack PR auto-loop-9 tick-history row — three non-fork PR refreshes after PR #98 merged; pure-refresh tick #100 (6755081) — codeql umbrella NEUTRAL detection memory
• AceHack PR Round 33 — VISION v7: DX north star (ASP.NET DI → distributed DB → Kind) #19 (a2d2c5b) — research(ferry-4-7): AgencySignature Convention v1
• AceHack PR Round 33 — VISION v11: HTAP/multi-model not OLAP; NoSQL speed; VoltDB-class #23 (75464e3) — research(ferry-12): Trailer Contiguity Survival Failure
• AceHack PR Round 35: chain-rule proof + expert-skill wave + BP-24 consent gate + factory hygiene #28 (e9d52af) — peer-call sibling scripts
• AceHack PR <P1> Roslyn/F# analyzer banning blocking-wait patterns #72 (16eb468) — research: EAT packet + wallet v0
• AceHack PR Round 44: CLAUDE.md tick-must-never-stop + AGENTS.md pointer (batch 6d) #90 (c91fcff) — docs(glossary): Beacon/Mirror governance
• AceHack PR Round 44 tick-history: auto-loop-2 PR refresh row #92 (0d129a4) — research: Zeta=heaven-on-earth writeup
• AceHack PR Round 44: absorb Copilot-products-split arc into ROUND-HISTORY #93 (5630da1) — substrate: workflow_dispatch lesson

🤖 Generated with Claude Code

[Copilot]

Pull request overview

Updates the repo’s CodeQL configuration to stop analyzing .NET build output directories that produce generated C# sources and false-positive alerts, unblocking CodeQL gating for PRs.

Changes:

• Extend .github/codeql/codeql-config.yml paths-ignore to exclude **/obj/** and **/bin/**.
• Document the rationale for excluding these build artifact directories (generated xUnit scaffolding and compiler intermediates).