Add CodeQL analysis workflow configuration#17
Conversation
There was a problem hiding this comment.
Pull Request Overview
This PR adds a GitHub Actions workflow for CodeQL security analysis to automatically scan the codebase for vulnerabilities and coding errors. The workflow is configured to analyze both Actions YAML files and Go code.
- Adds CodeQL analysis workflow with scheduled and event-driven scanning
- Configures analysis for Actions and Go languages with appropriate build modes
- Includes proper permissions and runner configurations for security scanning
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
Codecov Report✅ All modified and coverable lines are covered by tests. 📢 Thoughts on this report? Let us know! |
No description provided.