Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ci: exclude codeql on yaml #1008

Merged
merged 12 commits into from
Oct 18, 2022
Merged

ci: exclude codeql on yaml #1008

merged 12 commits into from
Oct 18, 2022

Conversation

asraa
Copy link
Collaborator

@asraa asraa commented Oct 13, 2022
edited
Loading

@asraa asraa marked this pull request as ready for review October 13, 2022 20:40
@asraa
ci: exclude codeql on yaml
1e1e740 
Signed-off-by: Asra Ali <asraa@google.com>
@asraa asraa force-pushed the exclude-docs-codeql branch from 74c7e00 to 1e1e740 Compare October 13, 2022 20:41
@asraa
ignore paths separator
442bbd3 
Signed-off-by: Asra Ali <asraa@google.com>
ianlewis
ianlewis approved these changes Oct 13, 2022
View reviewed changes
.github/workflows/codeql-analysis.yml Outdated Show resolved Hide resolved
@asraa
use **/*.yml
66af980 
Signed-off-by: Asra Ali <asraa@google.com>
@asraa
Copy link
Collaborator Author

asraa commented Oct 13, 2022
edited
Loading

CodeQL Expected — Waiting for status to be reported

TBD I'll make a skipping job or figure out something else.

asraa added 5 commits October 14, 2022 11:20
@asraa
use noop job
5e42187 
Signed-off-by: Asra Ali <asraa@google.com>
@asraa
Merge remote-tracking branch 'upstream/main' into exclude-docs-codeql
db6d13c
@asraa
fix lint
93068c0 
Signed-off-by: Asra Ali <asraa@google.com>
@asraa
use job name id
22ffb63 
Signed-off-by: Asra Ali <asraa@google.com>
@asraa
Merge branch 'main' into exclude-docs-codeql
719c891
@asraa
Copy link
Collaborator Author

asraa commented Oct 14, 2022

Updated because GitHub recommends creating a duplicate workflow with the same name and job that runs on the ignored paths and performs a successful noop

ianlewis
ianlewis approved these changes Oct 18, 2022
View reviewed changes
.github/workflows/codeql-analysis-noop.yml Outdated Show resolved Hide resolved
.github/workflows/codeql-analysis-noop.yml Show resolved Hide resolved
@ianlewis
Copy link
Member

ianlewis commented Oct 18, 2022
edited
Loading

@asraa I removed CodeQL as a required check. After this is merged we can hopefully add "CodeQL / Analyze" to the required checks on the protected branch rules.

#1047 (comment)

@asraa asraa merged commit 1f9352c into slsa-framework:main Oct 18, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ianlewis ianlewis ianlewis approved these changes

@laurentsimon laurentsimon Awaiting requested review from laurentsimon laurentsimon is a code owner

@joshuagl joshuagl Awaiting requested review from joshuagl joshuagl is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[CI] Disable CodeQL for changes only on YAML
2 participants
@asraa @ianlewis