Skip to content

Disable CodeQL in Setup job#15882

Merged
vmoroz merged 1 commit intomicrosoft:mainfrom
vmoroz:PR/disable-codeql-in-setup
Mar 31, 2026
Merged

Disable CodeQL in Setup job#15882
vmoroz merged 1 commit intomicrosoft:mainfrom
vmoroz:PR/disable-codeql-in-setup

Conversation

@vmoroz
Copy link
Copy Markdown
Member

@vmoroz vmoroz commented Mar 31, 2026
edited by microsoft-github-policy-service bot
Loading

Description

Type of Change

  • Automation (AI changes or Github Actions to reduce effort of manual tasks)

Why

The Setup job in build-template.yml does not compile any C++ or C# code — it only detects the build scenario, bumps versions, and publishes version variables. However, it inherits the pipeline-level CodeQL SDL configuration which attempts to scan for cpp and csharp. Since no source code is built, CodeQL's C# pre-finalize.cmd hangs indefinitely, consuming the full job timeout (1h+) before being cancelled.

What

Disable CodeQL in the Setup job by adding templateContext.sdl.codeql.enabled: false to the job definition in .ado/build-template.yml.

CodeQL scanning remains enabled on all Desktop and Universal build jobs where compiled code is actually produced.

Screenshots

N/A

Testing

  • Run the CI pipeline and verify the Setup job completes in ~5 minutes without the CodeQL Finalize timeout.
  • Verify CodeQL Initialize/Finalize steps no longer appear in the Setup job.
  • Verify CodeQL still runs on Desktop and Universal build jobs.

Changelog

Should this change be included in the release notes: no

Microsoft Reviewers: Open in CodeFlow

@vmoroz vmoroz requested review from a team as code owners March 31, 2026 01:18
@vmoroz vmoroz merged commit f078021 into microsoft:main Mar 31, 2026
31 checks passed
@vmoroz vmoroz deleted the PR/disable-codeql-in-setup branch March 31, 2026 03:27
vmoroz added a commit to vmoroz/microsoft-react-native-windows that referenced this pull request Mar 31, 2026
@vmoroz
Disable CodeQL in Setup job (microsoft#15882)
9ed7eac
@vmoroz vmoroz mentioned this pull request Mar 31, 2026
Merged
vmoroz added a commit to vmoroz/microsoft-react-native-windows that referenced this pull request Mar 31, 2026
@vmoroz
Disable CodeQL in Setup job (microsoft#15882)
f5034b2
@vmoroz vmoroz mentioned this pull request Mar 31, 2026
Merged
vmoroz added a commit to vmoroz/microsoft-react-native-windows that referenced this pull request Mar 31, 2026
@vmoroz
Disable CodeQL in Setup job (microsoft#15882)
5bf9be6
@vmoroz vmoroz mentioned this pull request Mar 31, 2026
Merged
vmoroz added a commit to vmoroz/microsoft-react-native-windows that referenced this pull request Mar 31, 2026
@vmoroz
Disable CodeQL in Setup job (microsoft#15882)
e3740d3
@vmoroz vmoroz mentioned this pull request Mar 31, 2026
Open
vmoroz added a commit that referenced this pull request Mar 31, 2026
@vmoroz
[0.83] New release pipeline file (#15886)
95b4f8b 
* New release-pipeline.yml file (#15881)

* Disable CodeQL in Setup job (#15882)
vmoroz added a commit that referenced this pull request Mar 31, 2026
@vmoroz
[0.82] New release pipeline file (#15887)
9d7aeb0 
* New release-pipeline.yml file (#15881)

* Disable CodeQL in Setup job (#15882)
vmoroz added a commit that referenced this pull request Mar 31, 2026
@vmoroz
[0.81] New release pipeline file (#15888)
a964ab5 
* New release-pipeline.yml file (#15881)

* Disable CodeQL in Setup job (#15882)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vineethkuttan vineethkuttan vineethkuttan approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@vmoroz @vineethkuttan