Skip to content

fix(ci): improve CodeQL analysis workflow#1335

Merged
sserrata merged 1 commit intomainfrom
fix/codeql-analysis-improvements
Mar 26, 2026
Merged

fix(ci): improve CodeQL analysis workflow#1335
sserrata merged 1 commit intomainfrom
fix/codeql-analysis-improvements

Conversation

@sserrata
Copy link
Copy Markdown
Member

@sserrata sserrata commented Mar 26, 2026

Summary

  • Update actions/checkout to v4 — was pinned to a v3 commit hash, now consistent with the rest of the workflows
  • Update codeql-action/init and analyze to latest v3 — bumped both to ebcb5b36 (current HEAD of the v3 tag)
  • Add weekly scheduled scan — runs every Monday at 6am UTC so vulnerabilities introduced between pushes are caught
  • Enable security-extended query suite — broader coverage beyond the default query pack
  • Remove dead branch triggersv3.0.0 and v2.0.0 are inactive branches
  • Remove redundant fail-fast — has no effect on a single-language matrix

Test plan

  • Verify CodeQL analysis runs and completes on this PR's push to the branch
  • Confirm no regressions in security findings vs. previous runs

🤖 Generated with Claude Code

@sserrata @claude
fix(ci): improve CodeQL analysis workflow
b8122a8 
- Update checkout to actions/checkout v4
- Update codeql-action/init and analyze to latest v3 commit (ebcb5b36)
- Add weekly scheduled scan (Monday 6am UTC)
- Enable security-extended query suite for broader coverage
- Remove dead branch triggers (v3.0.0, v2.0.0)
- Remove redundant fail-fast on single-language matrix

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 26, 2026

Size Change: 0 B

Total Size: 2.2 MB

ℹ️ View Unchanged
Filename Size
demo/.docusaurus/codeTranslations.json 2 B
demo/.docusaurus/docusaurus.config.mjs 14.7 kB
demo/.docusaurus/globalData.json 65.4 kB
demo/.docusaurus/i18n.json 372 B
demo/.docusaurus/registry.js 94.7 kB
demo/.docusaurus/routes.js 89.6 kB
demo/.docusaurus/routesChunkNames.json 37.1 kB
demo/.docusaurus/site-metadata.json 1.51 kB
demo/build/assets/css/styles.********.css 163 kB
demo/build/assets/js/main.********.js 656 kB
demo/build/assets/js/runtime~main.********.js 22.3 kB
demo/build/index.html 97.6 kB
demo/build/petstore/add-pet/index.html 29.3 kB
demo/build/petstore/create-user/index.html 24 kB
demo/build/petstore/create-users-with-array-input/index.html 24.1 kB
demo/build/petstore/create-users-with-list-input/index.html 24.1 kB
demo/build/petstore/delete-order/index.html 23.8 kB
demo/build/petstore/delete-pet/index.html 24.1 kB
demo/build/petstore/delete-user/index.html 24.3 kB
demo/build/petstore/find-pets-by-status/index.html 24.8 kB
demo/build/petstore/find-pets-by-tags/index.html 25.4 kB
demo/build/petstore/get-inventory/index.html 23.1 kB
demo/build/petstore/get-order-by-id/index.html 24.1 kB
demo/build/petstore/get-pet-by-id/index.html 24.9 kB
demo/build/petstore/get-user-by-name/index.html 24.4 kB
demo/build/petstore/login-user/index.html 24.9 kB
demo/build/petstore/logout-user/index.html 23.7 kB
demo/build/petstore/new-pet/index.html 24.3 kB
demo/build/petstore/pet/index.html 22.5 kB
demo/build/petstore/place-order/index.html 23.3 kB
demo/build/petstore/schemas/apiresponse/index.html 24.6 kB
demo/build/petstore/schemas/cat/index.html 38.8 kB
demo/build/petstore/schemas/category/index.html 25.7 kB
demo/build/petstore/schemas/dog/index.html 39 kB
demo/build/petstore/schemas/honeybee/index.html 39.1 kB
demo/build/petstore/schemas/id/index.html 22.7 kB
demo/build/petstore/schemas/order/index.html 26.8 kB
demo/build/petstore/schemas/pet/index.html 38.6 kB
demo/build/petstore/schemas/tag/index.html 24.1 kB
demo/build/petstore/schemas/user/index.html 40.7 kB
demo/build/petstore/store/index.html 21.5 kB
demo/build/petstore/subscribe-to-the-store-events/index.html 30.2 kB
demo/build/petstore/swagger-petstore-yaml/index.html 30.2 kB
demo/build/petstore/update-pet-with-form/index.html 24.3 kB
demo/build/petstore/update-pet/index.html 24.7 kB
demo/build/petstore/update-user/index.html 24.3 kB
demo/build/petstore/upload-file/index.html 24.1 kB
demo/build/petstore/user/index.html 22.2 kB

compressed-size-action

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 26, 2026

Visit the preview URL for this PR (updated for commit b8122a8):

https://docusaurus-openapi-36b86--pr1335-g0jwna0q.web.app

(expires Sat, 25 Apr 2026 15:10:49 GMT)

🔥 via Firebase Hosting GitHub Action 🌎

Sign: bf293780ee827f578864d92193b8c2866acd459f

@sserrata sserrata merged commit e87a82b into main Mar 26, 2026
11 checks passed
@sserrata sserrata deleted the fix/codeql-analysis-improvements branch March 30, 2026 17:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sserrata