-
The CodeQL analysis Github action is outdated.
Created a pull request for updating it, where I also split the code analysis for C++ and Python.
-
Hi,
do you have any plans to add support for custom query suites in default setup?
That is, something similar to the organization-level CodeQL model packs described in [this blog post](https://git…
-
### Prerequisite
1. Be a member of Hack for LA. (There are no fees to join.) If you have not joined yet, please follow the steps on our [Getting Started page](https://www.hackforla.org/getting-starte…
-
Review and add:
- https://github.com/google/security-research/blob/master/analysis/kernel/heap-exploitation/README.md
- https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c…
-
**Describe the bug**
When CodeQL scanning is initiated, it fails on the analyze step where the process attempts to upload a SARIF file to the repository, but it can't because basic setup is configure…
-
Tracking issue for:
- [ ] https://github.com/ISMKim/skills-introduction-to-codeql/security/code-scanning/2
-
Hi,
In perform codeql analysis step getting below error. I am running a typescript&javascript application.
error:
```
Error: 3-30 11:41:29] [ERROR] Spawned process exited abnormally (code 1; trie…
-
Non-exhaustive list of workflows to add:
- [ ] golang-ci-lint
- [ ] Unit tests
- [ ] Integration tests
- [ ] codeql analysis
- [ ] vulnerability scanner (osv-scanner-action)
- [ ] scorecard
-…
-
### Overview
Many of our Javascript and HTML code files cannot be scanned by CodeQL as-is because they contain non-JS Liquid code `{% ... %}` or YAML front matter `--- ... ---`, which cause syntax …
-
### Prerequisite
1. Be a member of Hack for LA. (There are no fees to join.) If you have not joined yet, please follow the steps on our [Getting Started page](https://www.hackforla.org/getting-star…