Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Create codeql-analysis.yml #1624

Merged
merged 3 commits into from
Sep 1, 2022
Merged

Conversation

thomasferrandiz
Copy link
Contributor

Description

This PR adds a code scanning workflow that is ran once every Sunday.

Todos

  • Tests
  • Documentation
  • Release note

Release Note

None required

@manuelbuil
Copy link
Collaborator

Interesting, what does it scan? Security vulnerabilities? Could you add more information please?

@thomasferrandiz
Copy link
Contributor Author

It scans for more common vulnerabilities in the source code.
The description says:
"Discover vulnerabilities across a codebase with CodeQL, our industry-leading semantic code analysis engine. CodeQL lets you query code as though it were data. Write a query to find all variants of a vulnerability, eradicating it forever. Then share your query to help others do the same."
https://codeql.github.com

It could be interesting for us but it's potentially too restrictive as is.

@thomasferrandiz thomasferrandiz merged commit b331259 into flannel-io:master Sep 1, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants