Skip to content

Integrate CodeQL into CI #42

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
DraTeots wants to merge 1 commit into from
Closed

Integrate CodeQL into CI #42

DraTeots wants to merge 1 commit into from

Conversation

@DraTeots
Copy link
Contributor

@DraTeots DraTeots commented Mar 21, 2025

This PR integrates CodeQL into the CI pipeline to enhance code quality and security across the monorepo. It enables static code analysis for C++, TypeScript/Angular, and Python/Click, identifying potential vulnerabilities and bugs early in the development process.

What kind of change does this PR introduce?

  • New feature

Does this PR introduce breaking changes? What changes might users need to make to their code?

  • No, this PR does not introduce breaking changes. Developers may need to address CodeQL findings, but no code modifications are required unless vulnerabilities or issues are identified.

Does this PR change default behavior?

  • Yes, CodeQL analysis will now run automatically on every PR, providing actionable insights into code quality and security.

@DraTeots DraTeots self-assigned this Mar 21, 2025
@DraTeots DraTeots requested a review from kkauder March 21, 2025 02:26
@github-advanced-security
Copy link
Contributor

github-advanced-security bot commented Mar 21, 2025

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@DraTeots
Copy link
Contributor Author

DraTeots commented May 3, 2025

Good thing but not at this moment. The checks are done on npm level and development.

@DraTeots DraTeots closed this May 3, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kkauder kkauder Awaiting requested review from kkauder

Assignees

@DraTeots DraTeots

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@DraTeots