Skip to content

fix code scanning#1319

Open
eschultink wants to merge 1 commit into
rc-v0.6.7from
s227-code-scanning
Open

fix code scanning#1319
eschultink wants to merge 1 commit into
rc-v0.6.7from
s227-code-scanning

Conversation

@eschultink

@eschultink eschultink commented Jun 22, 2026

Copy link
Copy Markdown
Member

Fixes

  • updates the CodeQL scanning categories for improved accuracy and upgrades the GitHub codeql-action to version 4 to enhance security scanning capabilities.

Change implications

  • dependencies added/changed? yes (codeql-action upgraded to v4)
  • something important to note in future release notes?
    • NOTE in CHANGELOG.md anything that will show up in terraform plan/apply that isn't
      obviously a no-op?
    • breaking changes? if in module/example that is NOT marked alpha, requires major version
      change

@eschultink @cursoragent
Fix CodeQL scanning categories and upgrade to codeql-action v4.
18f94b9 
Upload results to legacy /language:java and /language:javascript categories so Security settings stay current after replacing Default setup.

Co-authored-by: Cursor <cursoragent@cursor.com>
@eschultink eschultink self-assigned this Jun 22, 2026
@eschultink eschultink changed the title S227 : code scanning fix code scanning Jun 22, 2026
Copilot AI reviewed Jun 22, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the repository’s CodeQL workflow to improve how scan results are categorized and to upgrade the CodeQL GitHub Action to v4.

Changes:

  • Add explicit CodeQL analysis categories for each language in the matrix.
  • Upgrade github/codeql-action from v3 to v4 for both init and analyze.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread .github/workflows/codeql.yml
Comment on lines 66 to +67
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
uses: github/codeql-action/init@v4
Comment thread .github/workflows/codeql.yml
uses: github/codeql-action/analyze@v4
with:
category: "/language:${{matrix.language}}"
category: "/language:${{ matrix.category }}"
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@jlorper jlorper Awaiting requested review from jlorper

@aperez-worklytics aperez-worklytics Awaiting requested review from aperez-worklytics

At least 1 approving review is required to merge this pull request.

Assignees

@eschultink eschultink

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@eschultink