upd `codeql-action` from `v1` to `v2`

kaikramer / keystore-explorer

KeyStore Explorer is a free GUI replacement for the Java command-line utilities keytool and jarsigner.

https://keystore-explorer.org/

GNU General Public License v3.0

1.7k stars 275 forks source link

Closed The-Lum closed 2 years ago

The-Lum commented 2 years ago

Change codeql-action: v1 to v2 Due to:

kaikramer commented 2 years ago

Thank you!

The-Lum commented 2 years ago

Thanks, We already no longer have the warnings: :+1:

Then the main question will be:

Perhaps with adding some artefact or checkout on the CodeQL script...

kaikramer commented 2 years ago

There is a tab "Security" in my GitHub interface that shows the results:

grafik

You can't see this?

The-Lum commented 2 years ago

@kaikramer: Thanks a lot.

I can't see on your repository (certainly because your are the owner):

2022-07-06 14_51_26-KSE-CodeScanning1

But on the fork repo., I can see them:

2022-07-06 14_51_26-KSE-CodeScanning2

Regards.

kaikramer commented 2 years ago

Looks like there is now an automatic code scanning done for PRs, so I don't need the codeql-analysis.yml anymore.

The first 2 checks are from the codeql-analysis.yml, whereas the 3. one seems to some new standard mechanism in GitHub:

grafik