Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[improve] Added CodeQL static scanner #22037

Merged
merged 1 commit into from
Feb 7, 2024
Merged

[improve] Added CodeQL static scanner #22037

merged 1 commit into from
Feb 7, 2024

Conversation

merlimat
Copy link
Contributor

@merlimat merlimat commented Feb 6, 2024

Motivation

Enable GitHub CodeQL static code scanner to detect potentially vulnerable code in PRs and master branch.

Modifications

Verifying this change

  • Make sure that the change passes the CI checks.

(Please pick either of the following options)

This change is a trivial rework / code cleanup without any test coverage.

(or)

This change is already covered by existing tests, such as (please describe tests).

(or)

This change added tests and can be verified as follows:

(example:)

  • Added integration tests for end-to-end deployment with large payloads (10MB)
  • Extended integration test for recovery after broker failure

Does this pull request potentially affect one of the following parts:

If the box was checked, please highlight the changes

  • Dependencies (add or upgrade a dependency)
  • The public API
  • The schema
  • The default values of configurations
  • The threading model
  • The binary protocol
  • The REST endpoints
  • The admin CLI options
  • The metrics
  • Anything that affects deployment

Documentation

  • doc
  • doc-required
  • doc-not-needed
  • doc-complete

Matching PR in forked repository

PR in forked repository: merlimat#10

@merlimat merlimat self-assigned this Feb 6, 2024
@github-actions github-actions bot added the doc-not-needed Your PR changes do not impact docs label Feb 6, 2024
@merlimat merlimat changed the title Added CodeQL static scanner [improve] Added CodeQL static scanner Feb 6, 2024
@github-advanced-security
Copy link

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

lhotari
lhotari approved these changes Feb 7, 2024
View reviewed changes
Copy link
Member

@lhotari lhotari left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice!

@merlimat merlimat merged commit a77fb6e into apache:master Feb 7, 2024
57 of 59 checks passed
@Technoboy- Technoboy- added this to the 3.3.0 milestone Feb 9, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mattisonchao mattisonchao mattisonchao approved these changes

@RobertIndie RobertIndie RobertIndie approved these changes

@lhotari lhotari lhotari approved these changes

@hangc0276 hangc0276 Awaiting requested review from hangc0276

@Technoboy- Technoboy- Awaiting requested review from Technoboy-

@eolivelli eolivelli Awaiting requested review from eolivelli

@codelipenghui codelipenghui Awaiting requested review from codelipenghui

Assignees

@merlimat merlimat

Labels
area/ci area/security doc-not-needed Your PR changes do not impact docs ready-to-test
Projects
None yet
Milestone
3.3.0
Development

Successfully merging this pull request may close these issues.
5 participants
@merlimat @lhotari @RobertIndie @mattisonchao @Technoboy-