Skip to content

security test#115

Open
Noa-trny wants to merge 5 commits into
simonpotel:masterfrom
Noa-trny:master
Open

security test#115
Noa-trny wants to merge 5 commits into
simonpotel:masterfrom
Noa-trny:master

Conversation

@Noa-trny

Copy link
Copy Markdown
Collaborator

This pull request introduces improvements to GitHub Actions workflows, focusing on adding a new CodeQL analysis workflow and enhancing permissions in the test workflow. These changes aim to improve code security and streamline testing processes.

Enhancements to GitHub Actions workflows:

CodeQL Analysis Workflow:

  • Added a new CodeQL Advanced workflow in .github/workflows/codeql.yml to perform advanced code scanning for security and quality analysis across multiple languages, including Python and Actions. This workflow supports scheduled scans, matrix builds, and manual build modes for compiled languages.

Test Workflow Permissions:

  • Updated .github/workflows/run-tests.yml to include explicit permissions for contents: read and actions: write, ensuring proper access control for the test workflow.

Noa-trny and others added 5 commits June 19, 2025 13:25
…n permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Potential fix for code scanning alert no. 1: Workflow does not contain permissions
@Noa-trny Noa-trny self-assigned this Jun 19, 2025
@github-advanced-security

Copy link
Copy Markdown

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@Noa-trny Noa-trny requested a review from simonpotel June 19, 2025 12:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants