Skip to content
Open
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/codeql.yml
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@ jobs:
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0

- name: Initialize CodeQL
uses: github/codeql-action/init@458d36d7d4f47d0dd16ca424c1d3cda0060f1360 # v3
uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v3

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Update all CodeQL steps to v4 together

In this workflow, init now runs the v4.36.2 SHA while the analyze step below still uses the v3.35.5 SHA. The CodeQL Action changelog says mixing different CodeQL Action versions in one workflow is unsupported, and v3.30.4+ throws an error when a later step loads configuration generated by a different init version, so the push/PR/scheduled CodeQL job will reach analyze with a mismatched init config and fail instead of uploading results. Please bump github/codeql-action/analyze to the matching v4 SHA in the same change.

Useful? React with 👍 / 👎.

with:
languages: python
# ``security-extended`` widens query coverage to catch deeper
Expand Down
Loading