Add CodeQL workflow for GitHub code scanning

[lgtm-com]

Hi mdx-js/eslint-mdx!

This is a one-off automatically generated pull request from LGTM.com 🤖. You might have heard that we’ve integrated LGTM’s underlying CodeQL analysis engine natively into GitHub. The result is GitHub code scanning!

With LGTM fully integrated into code scanning, we are focused on improving CodeQL within the native GitHub code scanning experience. In order to take advantage of current and future improvements to our analysis capabilities, we suggest you enable code scanning on your repository. Please take a look at our blog post for more information.

This pull request enables code scanning by adding an auto-generated codeql.yml workflow file for GitHub Actions to your repository — take a look! We tested it before opening this pull request, so all should be working ✔️. In fact, you might already have seen some alerts appear on this pull request!

Where needed and if possible, we’ve adjusted the configuration to the needs of your particular repository. But of course, you should feel free to tweak it further! Check this page for detailed documentation.

Questions? Check out the FAQ below!

FAQ

Click here to expand the FAQ section

How often will the code scanning analysis run?

By default, code scanning will trigger a scan with the CodeQL engine on the following events:

• On every pull request — to flag up potential security problems for you to investigate before merging a PR.
• On every push to your default branch and other protected branches — this keeps the analysis results on your repository’s Security tab up to date.
• Once a week at a fixed time — to make sure you benefit from the latest updated security analysis even when no code was committed or PRs were opened.

What will this cost?

Nothing! The CodeQL engine will run inside GitHub Actions, making use of your unlimited free compute minutes for public repositories.

What types of problems does CodeQL find?

The CodeQL engine that powers GitHub code scanning is the exact same engine that powers LGTM.com. The exact set of rules has been tweaked slightly, but you should see almost exactly the same types of alerts as you were used to on LGTM.com: we’ve enabled the security-and-quality query suite for you.

How do I upgrade my CodeQL engine?

No need! New versions of the CodeQL analysis are constantly deployed on GitHub.com; your repository will automatically benefit from the most recently released version.

The analysis doesn’t seem to be working

If you get an error in GitHub Actions that indicates that CodeQL wasn’t able to analyze your code, please follow the instructions here to debug the analysis.

How do I disable LGTM.com?

If you have LGTM’s automatic pull request analysis enabled, then you can follow these steps to disable the LGTM pull request analysis. You don’t actually need to remove your repository from LGTM.com; it will automatically be removed in the next few months as part of the deprecation of LGTM.com (more info here).

Which source code hosting platforms does code scanning support?

GitHub code scanning is deeply integrated within GitHub itself. If you’d like to scan source code that is hosted elsewhere, we suggest that you create a mirror of that code on GitHub.

How do I know this PR is legitimate?

This PR is filed by the official LGTM.com GitHub App, in line with the deprecation timeline that was announced on the official GitHub Blog. The proposed GitHub Action workflow uses the official open source GitHub CodeQL Action. If you have any other questions or concerns, please join the discussion here in the official GitHub community!

I have another question / how do I get in touch?

Please join the discussion here to ask further questions and send us suggestions!

[changeset-bot]

⚠️ No Changeset found

Latest commit: a79c0bb

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[codesandbox-ci]

This pull request is automatically built and testable in CodeSandbox.

To see build info of the built libraries, click here or the icon next to each commit SHA.

[github-actions]

📊 Package size report   No changes

File	Before	After
Total (Includes all files)	1.2 MB	1.2 MB
Tarball size	115.9 kB	115.9 kB

Unchanged files

File	Size
.babelrc	35 B
.changeset/config.json	372 B
.changeset/README.md	510 B
.codesandbox/ci.json	76 B
.editorconfig	161 B
.eslintrc.js	591 B
.gitattributes	35 B
.github/FUNDING.yml	204 B
.github/workflows/ci.yml	941 B
.github/workflows/pkg-size.yml	496 B
.github/workflows/release.yml	914 B
.lintstagedrc.js	50 B
.simple-git-hooks.js	51 B
CHANGELOG.md	283 B
CONTRIBUTING.md	931 B
LICENSE	1.1 kB
package.json	2.5 kB
packages/eslint-mdx/CHANGELOG.md	21.8 kB
packages/eslint-mdx/package.json	1.2 kB
packages/eslint-mdx/README.md	9.8 kB
packages/eslint-mdx/shim.d.ts	1.4 kB
packages/eslint-mdx/src/helpers.ts	6.7 kB
packages/eslint-mdx/src/index.ts	98 B
packages/eslint-mdx/src/parser.ts	2.3 kB
packages/eslint-mdx/src/sync.ts	384 B
packages/eslint-mdx/src/tokens.ts	6.6 kB
packages/eslint-mdx/src/types.ts	1.2 kB
packages/eslint-mdx/src/worker.ts	19.5 kB
packages/eslint-mdx/tsconfig.json	131 B
packages/eslint-plugin-mdx/CHANGELOG.md	23.4 kB
packages/eslint-plugin-mdx/package.json	1.0 kB
packages/eslint-plugin-mdx/README.md	9.8 kB
packages/eslint-plugin-mdx/src/configs/base.ts	305 B
packages/eslint-plugin-mdx/src/configs/code-blocks.ts	1.0 kB
packages/eslint-plugin-mdx/src/configs/index.ts	345 B
packages/eslint-plugin-mdx/src/configs/overrides.ts	725 B
packages/eslint-plugin-mdx/src/configs/recommended.ts	806 B
packages/eslint-plugin-mdx/src/helpers.ts	620 B
packages/eslint-plugin-mdx/src/index.ts	105 B
packages/eslint-plugin-mdx/src/processors/helpers.ts	633 B
packages/eslint-plugin-mdx/src/processors/index.ts	244 B
packages/eslint-plugin-mdx/src/processors/options.ts	1.7 kB
packages/eslint-plugin-mdx/src/processors/remark.ts	1.5 kB
packages/eslint-plugin-mdx/src/processors/types.ts	241 B
packages/eslint-plugin-mdx/src/rules/.eslintrc	124 B
packages/eslint-plugin-mdx/src/rules/index.ts	138 B
packages/eslint-plugin-mdx/src/rules/remark.ts	3.3 kB
packages/eslint-plugin-mdx/src/rules/types.ts	415 B
packages/eslint-plugin-mdx/tsconfig.json	131 B
README.md	9.8 kB
test/__snapshots__/fixtures.test.ts.snap	22.1 kB
test/__snapshots__/parser.test.ts.snap	989.8 kB
test/fixtures.test.ts	1.6 kB
test/fixtures/287.mdx	204 B
test/fixtures/292.mdx	191 B
test/fixtures/334.mdx	70 B
test/fixtures/336.mdx	178 B
test/fixtures/367.mdx	87 B
test/fixtures/371.mdx	75 B
test/fixtures/380.mdx	11.0 kB
test/fixtures/391.mdx	62 B
test/fixtures/429.mdx	52 B
test/fixtures/acorn.mdx	860 B
test/fixtures/adjacent.mdx	50 B
test/fixtures/async/.remarkrc	67 B
test/fixtures/basic.mdx	405 B
test/fixtures/basic.tsx	77 B
test/fixtures/blank-lines.mdx	768 B
test/fixtures/code-blocks.md	511 B
test/fixtures/comments.mdx	162 B
test/fixtures/details.mdx	881 B
test/fixtures/dir.mdx/.gitkeep	0 B
test/fixtures/jsx-in-list.mdx	810 B
test/fixtures/leading-spaces.mdx	42 B
test/fixtures/markdown.md	5 B
test/fixtures/no-unescaped-entities.mdx	99 B
test/fixtures/no-unused-expressions.mdx	90 B
test/fixtures/processor.mdx	13 B
test/fixtures/remark.md	171 B
test/fixtures/remark.mdx	169 B
test/fixtures/style/.remarkrc	228 B
test/fixtures/style/nested.md	10 B
test/fixtures/style/plugin1.cjs	26 B
test/fixtures/style/plugin2.mjs	24 B
test/fixtures/unicorn.jsx	119 B
test/fixtures/unicorn.mdx	118 B
test/helpers.test.ts	1.5 kB
test/helpers.ts	548 B
test/parser.test.ts	4.0 kB
test/remark.test.ts	2.8 kB
tsconfig.base.json	235 B
tsconfig.json	309 B
tsconfig.lib.json	180 B

_{🤖 This report was automatically generated by pkg-size-action}

[codecov-commenter]

Codecov Report

Base: 100.00% // Head: 100.00% // No change to project coverage 👍

Coverage data is based on head (a79c0bb) compared to base (250b257).
Patch has no changes to coverable lines.

Additional details and impacted files

@@            Coverage Diff            @@
##            master      #440   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           17        17           
  Lines          199       199           
  Branches        42        42           
=========================================
  Hits           199       199           

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.