Skip to content

[WIP - DO NOT MERGE] Add GitHub App Token for CodeQL Ruleset Bypass During Release#1700

Draft
JLESUS wants to merge 3 commits intomainfrom
ghAppReleaseBypass
Draft

[WIP - DO NOT MERGE] Add GitHub App Token for CodeQL Ruleset Bypass During Release#1700
JLESUS wants to merge 3 commits intomainfrom
ghAppReleaseBypass

Conversation

@JLESUS
Copy link
Copy Markdown
Contributor

@JLESUS JLESUS commented Nov 20, 2025

Summary of changes

  • Adds token generation for GH app CodeQL bypass for releases and uses the token during checkout repository. This is needed so CodeQL does not get hung up during commits during a release because CodeQL ruleset is expecting a push event which causes the "waiting for codeql" error.

Checklist

  • Added a changelog entry
  • Tested and confirmed payment flows affected by this change are functioning as expected

Authors

List GitHub usernames for everyone who contributed to this pull request.

@JLESUS JLESUS requested a review from tlobbregt November 20, 2025 20:19
@github-actions
Copy link
Copy Markdown

github-actions bot commented Nov 20, 2025
edited
Loading

Dependency Review

✅ No vulnerabilities found.

Scanned Files

  • .github/workflows/release.yml

@jaxdesmarais
Copy link
Copy Markdown
Contributor

jaxdesmarais commented Apr 10, 2026

Hey @JLESUS - are we still wanting to work on this or should we close this PR?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tlobbregt tlobbregt Awaiting requested review from tlobbregt

Assignees

No one assigned

Labels

do not merge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@JLESUS @jaxdesmarais