Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix CodeQL scanning #2215

Merged
merged 1 commit into from
Oct 27, 2023
Merged

Fix CodeQL scanning #2215

merged 1 commit into from
Oct 27, 2023

Conversation

silvestre
Copy link
Member

@silvestre silvestre commented Oct 9, 2023
edited
Loading

This PR will not have a green CodeQL Go run!

It seems that with #2212 subsequent scans broke.
This is due to the fact that all workflows run on the app-autoscaler-release-tools image and it seems that CodeQL still has issues with Go 1.21: github/codeql#13992

This PR reverts to the currently used version in the BOSH release and disables automated updates by Renovate so that we don't get versions skews between the BOSH release and asdf, and with it in the image.

Hopefully by the time the BOSH release updates to a Go 1.21 version CodeQL is fixed.

@silvestre silvestre force-pushed the fix-github-codeql-autobuild branch from 66c11b5 to 65fbf28 Compare October 27, 2023 15:01
@silvestre
Fix CodeQL scanning
4068261 
- Opt-out of `.tool-version` update by renovate
- `make build-all` is required to build all binaries nowadays.
- Also we can remove `javascript` scanning with the removal of the
Node.js test app.
@silvestre silvestre force-pushed the fix-github-codeql-autobuild branch from 65fbf28 to 4068261 Compare October 27, 2023 15:02
@sonarqubecloud
Copy link

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

@silvestre silvestre marked this pull request as ready for review October 27, 2023 15:08
@silvestre silvestre added exclude-from-changelog allow-acceptance-tests This label needs to be added to enable the acceptance tests to run. labels Oct 27, 2023
@silvestre silvestre enabled auto-merge (squash) October 27, 2023 15:08
@silvestre silvestre merged commit 2c16b77 into main Oct 27, 2023
53 of 60 checks passed
@silvestre silvestre deleted the fix-github-codeql-autobuild branch October 27, 2023 15:54
silvestre added a commit that referenced this pull request Dec 7, 2023
@silvestre
fixup! Fix CodeQL scanning (#2215)
627db27
@silvestre silvestre mentioned this pull request Dec 7, 2023
Merged
silvestre added a commit that referenced this pull request Dec 8, 2023
@silvestre
fix(codeql): disable renovate golang updates (#2427)
b655d9d 
* Revert "chore(deps): update dependency golang to v1.21.5 (#2421)"

This reverts commit ca8d8fc.

* fixup! Fix CodeQL scanning (#2215)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@salzmannsusan salzmannsusan salzmannsusan approved these changes

Assignees
No one assigned
Labels
allow-acceptance-tests This label needs to be added to enable the acceptance tests to run. exclude-from-changelog
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@silvestre @salzmannsusan