Skip to content

Add GH Actions as a scanned artifact for CodeQL #354

New issue
New issue
Closed
Task
#357
Closed
Add GH Actions as a scanned artifact for CodeQL#354
Task
#357
Assignees
askpt
Labels
enhancementNew feature or request
@askpt

Description

@askpt
askpt
opened on Apr 21, 2025

Issue Description

Summary

The Codeql in the repository must support scanning GitHub Actions configurations as part of the Codeql analysis.

Details

A recent pull request (#436) introduced a change to the Codeql workflow file by adding "actions" to the language matrix. While this change was merged, it could be extended or reviewed further to ensure comprehensive scanning of all relevant code artefacts.

Steps to Reproduce

  1. Open the .github/workflows/codeql-analysis.yml file.
  2. Check the language matrix configuration.
  3. Note that "actions" has been added for Codeql analysis.

Expected Outcome

The Codeql workflow should robustly analyse GitHub Actions configurations for potential vulnerabilities or issues.

Additional Context

This issue is based on the merged pull request #436, which introduced the initial change.

Metadata

Metadata

Assignees

Labels

enhancementNew feature or request

Type

Task

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions