Skip to content

Actions: Add new query actions/code-injection/low for code injection with step outputs#20974

Open
owen-mc wants to merge 6 commits into
github:mainfrom
owen-mc:actions/code-injection-step-outputs-as-sources
Open

Actions: Add new query actions/code-injection/low for code injection with step outputs#20974
owen-mc wants to merge 6 commits into
github:mainfrom
owen-mc:actions/code-injection-step-outputs-as-sources

Update query suite integration test (not in any query suite)

e59bcb6
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL completed Mar 30, 2026 in 15s

6 configurations not found

Warning: Code scanning may not have found all the alerts introduced by this pull request, because 6 configurations present on refs/heads/main were not found:

Actions workflow (rust-analysis.yml)

  • ❓  .github/workflows/rust-analysis.yml:analyze/language:rust

Actions workflow (csv-coverage-metrics.yml)

  • ❓  .github/workflows/csv-coverage-metrics.yml:publish-csharp
  • ❓  .github/workflows/csv-coverage-metrics.yml:publish-java

Actions workflow (codeql-analysis.yml)

  • ❓  .github/workflows/codeql-analysis.yml:CodeQL-Build/language:actions
  • ❓  .github/workflows/codeql-analysis.yml:CodeQL-Build/language:csharp

Actions workflow (cpp-swift-analysis.yml)

  • ❓  .github/workflows/cpp-swift-analysis.yml:CodeQL-Build

New alerts in code changed by this pull request

  • 1 warning

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 1 in actions/ql/test/query-tests/Security/CWE-094/CodeInjectionLow.qlref

See this annotation in the file changed.

Code scanning / CodeQL

Query test without inline test expectations Warning test

Query test does not use inline test expectations.