chore: Add SAST to repo with codeql action #146

cpswan · 2023-11-02T13:39:58Z

We're presently getting a scorecard ding for the lack of SAST https://github.com/atsign-foundation/at_java/security/code-scanning/4

- What I did

Added the codeql workflow to implement SAST

- How I did it

cp ../at_python/.github/workflows/codeql.yml .github/workflows/

Then changed language: ["java"]

- How to verify it

Future commits should be tested by the workflow and drive up the scorecard score.

- Description for the changelog

chore: Add SAST to repo with codeql action

github-advanced-security · 2023-11-02T13:43:00Z

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

chore: Add SAST to repo with codeql action

d396b7c

cpswan requested review from gkc, cconstab and XavierChanth November 2, 2023 13:39

cpswan self-assigned this Nov 2, 2023

XavierChanth approved these changes Nov 2, 2023

View reviewed changes

cpswan merged commit 97aaa09 into trunk Nov 2, 2023
4 checks passed

cpswan deleted the cpswan-codeql branch November 2, 2023 17:32

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore: Add SAST to repo with codeql action #146

chore: Add SAST to repo with codeql action #146

cpswan commented Nov 2, 2023

github-advanced-security bot commented Nov 2, 2023

chore: Add SAST to repo with codeql action #146

chore: Add SAST to repo with codeql action #146

Conversation

cpswan commented Nov 2, 2023

github-advanced-security bot commented Nov 2, 2023