[UHxIZ8JO] Add CodeQL (#186) #3212
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* [UHxIZ8JO] Ignore PRs from JLLeitschuh/security-research We want to ignore PRs from this security researcher because they do not follow our private disclosure process. These PRs highlight that our code is exploitable before we've had the opportunity to fix it. However, we will take JLLeitschuh up on his suggestion to add https://github.com/github/codeql-action to run checks in the background. * [UHxIZ8JO] Install CodeQL * [UHxIZ8JO] Remove unused file The file was removed because it contained some vulnerabilities, and also because it was not used. It's also not used in APOC Extended. (cherry picked from commit 6bb8434) (cherry picked from commit 1d174dd)
AzuObs
added
cherry-picked
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
We want to ignore PRs from this security researcher because they do not follow our private disclosure process. These PRs highlight that our code is exploitable before we've had the opportunity to fix it.
However, we will take JLLeitschuh up on his suggestion to add https://github.com/github/codeql-action to run checks in the background.
[UHxIZ8JO] Install CodeQL
[UHxIZ8JO] Remove unused file
The file was removed because it contained some vulnerabilities, and also because it was not used. It's also not used in APOC Extended.
(cherry picked from commit 6bb8434) (cherry picked from commit 1d174dd)