Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Find strategy for keeping CodeQL packs up-to-date #1833

Open
ericcornelissen opened this issue Dec 29, 2024 · 0 comments
Open

Find strategy for keeping CodeQL packs up-to-date #1833

ericcornelissen opened this issue Dec 29, 2024 · 0 comments
Labels
help wanted Extra attention is needed

Comments

@ericcornelissen
Copy link
Owner

Caused by #1831

Summary

In order to ensure consistent code scanning results - i.e. avoid findings without code changes - the CodeQL packs used by this project are pinned to a specific version:

shescape/.github/codeql.yml

Lines 5 to 7 in c74db24

packs:
- githubsecuritylab/[email protected]
- githubsecuritylab/[email protected]

However, this introduces the problem of keeping these packs12 up-to-date as update are released for them. This issue exists to find an automated solution for this. While it is open, we'll have to depend on polling instead.

If this issue is open and you find that any CodeQL pack used by this project is outdated, feel free to open a Pull Request to upgrade to the most recent (stable) release.

Footnotes

  1. githubsecuritylab/codeql-javascript-queries

  2. githubsecuritylab/codeql-javascript-libs

@ericcornelissen ericcornelissen added the help wanted Extra attention is needed label Dec 29, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
help wanted Extra attention is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ericcornelissen