With this change, the CodeQL tasks capture and upload a snapshot that will be analyzed by CodeQL 3000. Then, the results of the scan will be filed as work items under the areaPath on devdiv.visualstudio.com. Here is an example of the scan [internal Microsoft link]. That scan had the issue-filing turned off before we confirm what area path to use.
I added as much as possible to eng/common for re-use in the other .NET Docker repos.
With this change, the CodeQL tasks capture and upload a snapshot that will be analyzed by CodeQL 3000. Then, the results of the scan will be filed as work items under the
areaPath
on devdiv.visualstudio.com. Here is an example of the scan [internal Microsoft link]. That scan had the issue-filing turned off before we confirm what area path to use.I added as much as possible to
eng/common
for re-use in the other .NET Docker repos.