- Notifications
You must be signed in to change notification settings - Fork7.7k
[release/v7.4] Add CodeQL scanning to APIScan build#24800
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.
Already on GitHub?Sign in to your account
Uh oh!
There was an error while loading.Please reload this page.
Conversation
* Enable CodeQL in the APIScan build* fix indentation* fix build name* Manually add CodeQL* enable TSA directly in codeql* update codeql source code directory* go back to version 0* switch to variable to configure source code root* Update .pipelines/apiscan-gen-notice.yml
/azp run PowerShell-CI-macos, PowerShell-CI-Linux, PowerShell-CI-Windows, PowerShell-CI-static-analysis, PSResourceGet ACR, PowerShell-Windows-Packaging-CI |
| Azure Pipelines could not run because the pipeline triggers exclude this branch/path. |
79e4cba intorelease/v7.4Uh oh!
There was an error while loading.Please reload this page.
microsoft-github-policy-servicebot commentedJan 16, 2025 • edited by unfurl-linksbot
Loading Uh oh!
There was an error while loading.Please reload this page.
edited by unfurl-linksbot
Uh oh!
There was an error while loading.Please reload this page.
📣 Hey@TravisEz13, how did we do? We would love to hear your feedback with the link below! 🗣️ 🔗https://aka.ms/PSRepoFeedback |
Backport#24303
This pull request introduces several changes to the pipeline configuration files to enable and configure CodeQL scanning based on certain conditions. The main updates include adding parameters and variables to control CodeQL settings and integrating CodeQL tasks into the pipeline jobs.
Key changes include:
Enhancements to pipeline configuration:
.pipelines/apiscan-gen-notice.yml: Added aFORCE_CODEQLparameter and associated variables to control CodeQL scanning and its cadence. Updated theextends:section to conditionally enable CodeQL based on the new variables.[1][2][3]Integration of CodeQL tasks:
.pipelines/templates/compliance/apiscan.yml: AddedCodeql.SourceRootvariable and integratedCodeQL3000InitandCodeQL3000Finalizetasks to the job steps, conditioned on theCODEQL_ENABLEDvariable.[1][2][3]