Skip to content

Commit eb0b92f

Browse files
authored
PYTHON-5877 Consolidate CodeQL config into drivers-github-tools (#2883)
1 parent d150c68 commit eb0b92f

1 file changed

Lines changed: 5 additions & 23 deletions

File tree

.github/workflows/codeql.yml

Lines changed: 5 additions & 23 deletions
Original file line numberDiff line numberDiff line change
@@ -23,7 +23,6 @@ jobs:
2323
runs-on: "ubuntu-latest"
2424
timeout-minutes: 360
2525
permissions:
26-
# required for all workflows
2726
security-events: write
2827

2928
strategy:
@@ -32,37 +31,20 @@ jobs:
3231
include:
3332
- language: c-cpp
3433
build-mode: manual
34+
manual-build-command: pip install -e .
3535
- language: python
3636
build-mode: none
3737
- language: actions
3838
build-mode: none
3939
steps:
40-
- name: Checkout repository
41-
uses: actions/checkout@v7.0.0
40+
- uses: mongodb-labs/drivers-github-tools/codeql@95f9ce909bf0e44707fffdb92c18ed86e74aa2fd # v3
4241
with:
43-
ref: ${{ inputs.ref }}
44-
persist-credentials: false
45-
- uses: actions/setup-python@v6
46-
47-
# Initializes the CodeQL tools for scanning.
48-
- name: Initialize CodeQL
49-
uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4
50-
with:
51-
languages: ${{ matrix.language }}
42+
language: ${{ matrix.language }}
5243
build-mode: ${{ matrix.build-mode }}
53-
# For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
54-
queries: security-extended
44+
manual-build-command: ${{ matrix.manual-build-command }}
45+
ref: ${{ inputs.ref }}
5546
config: |
5647
paths-ignore:
5748
- 'doc/**'
5849
- 'tools/**'
5950
- 'test/**'
60-
61-
- if: matrix.build-mode == 'manual'
62-
run: |
63-
pip install -e .
64-
65-
- name: Perform CodeQL Analysis
66-
uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4
67-
with:
68-
category: "/language:${{matrix.language}}"

0 commit comments

Comments
 (0)