Skip to content

Remove csharp from CodeQL analysis — only scan C/C++ #564

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
Copilot wants to merge 2 commits into from
Closed

Remove csharp from CodeQL analysis — only scan C/C++ #564

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
2507f46
Initial plan
Copilot Mar 10, 2026
ea069c7
feat: add CodeQL workflow with c-cpp only, removing csharp
Copilot Mar 10, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
45 changes: 45 additions & 0 deletions .github/workflows/codeql.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,45 @@
name: "CodeQL"

on:
push:
branches: [ "staging", "main" ]
pull_request:
branches: [ "staging", "main" ]
schedule:
- cron: '0 0 * * 1'

jobs:
analyze:
name: Analyze (${{ matrix.language }})
runs-on: ubuntu-latest
permissions:
security-events: write
packages: read
actions: read
contents: read

strategy:
fail-fast: false
matrix:
include:
- language: c-cpp
build-mode: autobuild
Comment on lines +25 to +26
Copy link

Copilot AI Mar 10, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This workflow is configured to analyze only c-cpp, but the repo appears to contain no C/C++ source files (no .c/.cc/.cpp/.h/.hpp found). That means CodeQL will either produce no useful results or the autobuild step may fail due to no detectable build. If the goal is to avoid failing on C# fixtures while still scanning this repo’s code, consider switching matrix.language to the actual implementation languages here (e.g., python and javascript-typescript) rather than c-cpp.

Suggested change
- language: c-cpp
build-mode: autobuild
- language: python
build-mode: autobuild
- language: javascript-typescript
build-mode: autobuild

Copilot uses AI. Check for mistakes.

steps:
- name: Checkout repository
uses: actions/checkout@v4

- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
build-mode: ${{ matrix.build-mode }}

- if: matrix.build-mode == 'autobuild'
name: Autobuild
uses: github/codeql-action/autobuild@v3

- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{matrix.language}}"
Comment on lines +29 to +45
Copy link

Copilot AI Mar 10, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

steps: list items are not indented under the steps: key (e.g., - name: Checkout repository is aligned with steps:). This is invalid YAML and will cause the workflow to fail to load. Indent all step entries (and their nested keys) so the - name lines are children of steps:.

Suggested change
- name: Checkout repository
uses: actions/checkout@v4
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
build-mode: ${{ matrix.build-mode }}
- if: matrix.build-mode == 'autobuild'
name: Autobuild
uses: github/codeql-action/autobuild@v3
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{matrix.language}}"
- name: Checkout repository
uses: actions/checkout@v4
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
build-mode: ${{ matrix.build-mode }}
- if: matrix.build-mode == 'autobuild'
name: Autobuild
uses: github/codeql-action/autobuild@v3
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{matrix.language}}"

Copilot uses AI. Check for mistakes.
Loading