Skip to content

ci: add CodeQL workflow for code scanning#316

Merged
notgitika merged 1 commit intomainfrom
ci/add-codeql-workflow
Feb 17, 2026
Merged

ci: add CodeQL workflow for code scanning#316
notgitika merged 1 commit intomainfrom
ci/add-codeql-workflow

Conversation

@notgitika
Copy link
Contributor

@notgitika notgitika commented Feb 14, 2026
edited
Loading

The main branch ruleset requires CodeQL results but no workflow existed to produce them, blocking all PR merges.

Description

  • Adds a .github/workflows/codeql.yml workflow that runs CodeQL analysis on pushes to main and PRs targeting main
  • The main-protection-rule ruleset requires CodeQL results, but no workflow existed to produce them, blocking all PR merges (including chore: update supported frameworks to Strands Agents from Strands #314)
  • Uses github/codeql-action/init@v3 and github/codeql-action/analyze@v3 for JavaScript/TypeScript analysis

Related Issue

Closes #315

Documentation PR

Type of Change

  • Bug fix
  • New feature
  • Breaking change
  • Documentation update
  • Other (please describe):

Testing

How have you tested the change?

  • I ran npm run test:all
  • I ran npm run typecheck
  • I ran npm run lint
  • If I modified src/assets/, I ran npm run test:update-snapshots and committed the updated snapshots

Checklist

  • I have read the CONTRIBUTING document
  • I have added any necessary tests that prove my fix is effective or my feature works
  • I have updated the documentation accordingly
  • I have added an appropriate example to the documentation to outline the feature, or no new docs are needed
  • My changes generate no new warnings
  • Any dependent changes have been merged and published

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the
terms of your choice.

@notgitika
ci: add CodeQL workflow for code scanning
0045b2c 
The main branch ruleset requires CodeQL results but no workflow existed
to produce them, blocking all PR merges.
@notgitika notgitika requested a review from a team February 14, 2026 02:55
@github-actions
Copy link
Contributor

github-actions bot commented Feb 14, 2026
edited
Loading

Coverage Report

Status Category Percentage Covered / Total
🔵 Lines 28.26% 1807 / 6393
🔵 Statements 27.59% 1875 / 6794
🔵 Functions 27.36% 356 / 1301
🔵 Branches 24.52% 918 / 3743
Generated in workflow #384 for commit 0045b2c by the Vitest Coverage Report Action

@notgitika notgitika closed this Feb 15, 2026
@notgitika notgitika reopened this Feb 17, 2026
@github-advanced-security
Copy link

github-advanced-security bot commented Feb 17, 2026

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@notgitika notgitika merged commit ccad289 into main Feb 17, 2026
27 of 30 checks passed
@notgitika notgitika deleted the ci/add-codeql-workflow branch February 17, 2026 22:00
@notgitika notgitika mentioned this pull request Feb 17, 2026
Merged
11 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tejaskash tejaskash tejaskash approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

ci: CodeQL workflow missing, blocking all PR merges

2 participants

@notgitika @tejaskash

Comments