feat(security): add CodeQL composites and integrate into pr-security-scan #90
bedattyself-pr-validation.yml
on: pull_request
Detect Changed Files
6s
validation
/
Skip if Draft
4s
YAML Lint
6s
Action Lint
12s
Pinned Actions Check
5s
Markdown Link Check
14s
Spelling Check
6s
Shell Check
6s
README Check
5s
Composite Schema Lint
5s
CodeQL Analysis
52s
validation
/
Validate Source Branch
6s
validation
/
Validate PR Title
6s
validation
/
Check PR Size
8s
validation
/
Check PR Description
5s
validation
/
Auto-label PR
7s
validation
/
Check Assignee
5s
validation
/
Check Linked Issues
5s
validation
/
Check Changelog Update
0s
Lint Report
7s
validation
/
...
/
Send Notification
9s
Annotations
2 warnings
|
CodeQL Analysis
Starting April 2026, the CodeQL Action will skip computing file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses.
To opt out of this change, set the `CODEQL_ACTION_FILE_COVERAGE_ON_PRS` environment variable to `true`. Alternatively, create a custom repository property with the name `github-codeql-file-coverage-on-prs` and the type "True/false", then set this property to `true` in the repository's settings.
|
|
CodeQL Analysis
1 issue was detected with this workflow: Please specify an on.push hook to analyze and see code scanning alerts from the default branch on the Security tab.
|