CodeQL is a static analysis tool that is able to scan source code to help detect security vulnerabilities. In dotnet/linker, there already exists auto-injection of CodeQL's init and finalize tasks within the official default pipeline.
This PR does the following:
Enables CodeQL
Enable TSA with CodeQL
CodeQL is a static analysis tool that is able to scan source code to help detect security vulnerabilities. In dotnet/linker, there already exists auto-injection of CodeQL's init and finalize tasks within the official default pipeline.
This PR does the following: Enables CodeQL Enable TSA with CodeQL