Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ci: add codeql workflow #26

Merged
merged 2 commits into from
May 19, 2023
Merged

ci: add codeql workflow #26

merged 2 commits into from
May 19, 2023

Conversation

y-lakhdar
Copy link
Contributor

Setup CodeQL
Source code here

@y-lakhdar y-lakhdar requested a review from a team as a code owner May 5, 2023 15:29
@y-lakhdar y-lakhdar requested review from olamothe, louis-bompart and btaillon-coveo and removed request for a team May 5, 2023 15:29
@github-actions
Copy link

github-actions bot commented May 5, 2023
edited
Loading

Dependency Review

The following issues were found:
  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 1 package(s) with unknown licenses.
See the Details below.

License Issues

.github/workflows/codeql.yml

PackageVersionLicenseIssue Type
coveo/actions/.github/workflows/java-maven-openjdk11-codeql.ymlmainNullUnknown License
Allowed Licenses: 0BSD, Apache-2.0, Apache-2.0 AND BSD-3-Clause AND Python-2.0, Beerware, BlueOak-1.0.0, BSD-1-Clause, BSD-2-Clause, BSD-2-Clause-Patent, BSD-2-Clause-Views, BSD-2-Clause AND MIT, BSD-3-Clause, BSD-3-Clause-Attribution, BSD-3-Clause-Clear, BSL-1.0, CC-BY-3.0, CC-BY-4.0, CC0-1.0, CNRI-Python, curl, HPND, IBM-pibs, ImageMagick, ISC, JSON, MIT, MIT-0, MIT AND Python-2.0, MIT-advertising, mpi-permissive, NCSA, ODC-By-1.0, PDDL-1.0, Plexus, PostgreSQL, PSF-2.0, Python-2.0, Python-2.0.1, SAX-PD, Unlicense, UPL-1.0, W3C, Wsuipa, WTFPL, X11, X11-distribute-modifications-variant, Xerox, Zlib, ZPL-2.1

Scanned Manifest Files

.github/workflows/codeql.yml
  • coveo/actions/.github/workflows/java-maven-openjdk11-codeql.yml@main

btaillon-coveo
btaillon-coveo approved these changes May 8, 2023
View reviewed changes
Copy link
Contributor

@btaillon-coveo btaillon-coveo left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks fine, although I'm not sure why there's blank lines in-between the lines of codeql.yml.

@y-lakhdar y-lakhdar merged commit 4731e1b into main May 19, 2023
2 checks passed
@y-lakhdar y-lakhdar deleted the ci-setup-codeql branch June 15, 2023 18:22
y-lakhdar added a commit that referenced this pull request Jun 20, 2023
@y-lakhdar
ci: add codeql workflow (#26)
25b5d59 
* ci: add codeql workflow

* remove unused option
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@louis-bompart louis-bompart louis-bompart left review comments

@btaillon-coveo btaillon-coveo btaillon-coveo approved these changes

@olamothe olamothe Awaiting requested review from olamothe olamothe is a code owner automatically assigned from coveo/dx

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@y-lakhdar @louis-bompart @btaillon-coveo