Skip to content
CodeQL

feat: log last verified batch number (same PR as #324) #2349

Sign in to view logs

feat: log last verified batch number (same PR as #324)

feat: log last verified batch number (same PR as #324) #2349

Workflow file for this run

.github/workflows/codeql.yml at 1e0866f
name: "CodeQL"
on:
push:
branches:
- develop
- main
pull_request:
jobs:
analyze:
name: Analyze
runs-on: ${{ matrix.language == 'swift' && 'macos-latest' || 'ubuntu-latest' }}
timeout-minutes: ${{ matrix.language == 'swift' && 120 || 360 }}
permissions:
actions: read
contents: read
security-events: write
strategy:
fail-fast: false
matrix:
language:
- go
steps:
- name: Checkout repository
uses: actions/checkout@v4
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
# Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift).
# If this step fails, then you should remove it and run the build manually (see below)
- name: Autobuild
uses: github/codeql-action/autobuild@v3
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{ matrix.language }}"
# NEW: Step to debug SARIF validation
- name: Debug SARIF Validation
run: |
echo "Validating SARIF file..."
if [ -f "codeql-results.sarif" ]; then
echo "SARIF file found. Listing details:"
cat codeql-results.sarif | head -n 100
else
echo "SARIF file not found. Ensure the CodeQL analysis step produces the file."
fi
shell: bash
- name: Debug SARIF Validation2
run: |
echo "Validating SARIF file..."
if [ -f "/home/runner/work/cdk/results/go.sarif" ]; then
echo "SARIF file found. /home/runner/work/cdk/results/go.sarif Listing details:"
cat /home/runner/work/cdk/results/go.sarif | head -n 100
else
echo "SARIF file not found. Ensure the CodeQL analysis step produces the file."
fi
shell: bash