Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEATURE] Add CodeQL Workflow #518

Closed
abhinav-m22 opened this issue Jun 21, 2023 · 4 comments · Fixed by #526
Closed

[FEATURE] Add CodeQL Workflow #518

abhinav-m22 opened this issue Jun 21, 2023 · 4 comments · Fixed by #526
Assignees
@abhinav-m22
Labels
codepeak level1

Comments

@abhinav-m22
Copy link
Contributor

Description

Although the repository has javascript code, it lacks workflow for code inspection.

The codeql.yml workflow file will be added by me to automate security checks.

CodeQL is a code analysis tool, to find vulnerabilities in programs. The code will be examined, and the results will be presented as code scanning alerts. Every push, commit, and pull request that uses GitHub actions will have it enabled.

Screenshots

No response

Additional information

I want to work on this issue under GSSoC'23
@github-actions
Copy link

Hi there, Thanks a lot for raising the issue, we'll look into it asap. Also please mention if you wish to work on the issue as well so you could be assigned

@narayan954
Copy link
Owner

Description

Although the repository has javascript code, it lacks workflow for code inspection.

The codeql.yml workflow file will be added by me to automate security checks.

CodeQL is a code analysis tool, to find vulnerabilities in programs. The code will be examined, and the results will be presented as code scanning alerts. Every push, commit, and pull request that uses GitHub actions will have it enabled.

Screenshots

No response

Additional information

I want to work on this issue under GSSoC'23

Hi @abhinav-m22 codeql workflow exists already as you can see.
image

@abhinav-m22
Copy link
Contributor Author

abhinav-m22 commented Jun 22, 2023
edited
Loading

@narayan954
Yes but there is no yml script in the repository.
I think adding that particular file will make the codebase standard and other people can understand about the working of codeql and it's properties.

That's the reason I created the issue.
Please give a think and let me know!

@narayan954
Copy link
Owner

@narayan954 Yes but there is no yml script in the repository. I think adding that particular file will make the codebase standard and other people can understand about the working of codeql and it's properties.

That's the reason I created the issue. Please give a think and let me know!

Agreed, you can fix this!

@abhinav-m22 abhinav-m22 mentioned this issue Jun 22, 2023
Merged
@narayan954 narayan954 linked a pull request Jun 22, 2023 that will close this issue
Added codeql.yml workflow #526
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@abhinav-m22 abhinav-m22

Labels
codepeak level1
Projects
Dummygram
Status: No status
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Added codeql.yml workflow abhinav-m22/dummygram
2 participants
@narayan954 @abhinav-m22