Enable codeql #476
Merged
Enable codeql #476
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Alan Jowett <[email protected]>
Alan-Jowett
force-pushed
the
enable_codeql
branch
from
e6f00e8
to
53cf45d
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This pull request introduces changes to the GitHub Actions workflow configuration in the
.github/workflows/main.ymlfile. The changes involve the addition of four new jobs for CodeQL analysis on different build types and configurations.The key changes are:
linux_release_codeql: This job uses theposix.ymlworkflow to run a CodeQL analysis on aRelWithDebInfobuild type onubuntu-latestplatform withx86_64architecture.linux_debug_codeql: Similar to the above job, but runs the CodeQL analysis on aDebugbuild type.linux_release_no_retpolines_codeql: This job is similar to thelinux_release_codeqljob but withdisable_retpolinesset totrue.linux_debug_no_retpolines_codeql: This job is similar to thelinux_debug_codeqljob but withdisable_retpolinesset totrue.These changes enhance the security of the codebase by using CodeQL to automatically detect common vulnerabilities and coding errors.