GHA/codeql: re-enable for C with the default query pack

romenskiy2012/curl

mirror of https://github.com/curl/curl.git synced 2026-04-25 09:42:12 +03:00

Earlier we used `security-extended` and tried `security-and-quality`.
Try the default to see how it works.

CodeQL no longer uses the project's Actions cache, also fixing
the previously seen repeat cache entry issue.

- switch to `manual` build. It's 3x faster than the default `autobuild`.
- enable more dependencies to increase coverage.
- docs/tests/CI.md: re-add CodeQL.

Ref: https://docs.github.com/en/code-security/code-scanning/managing-your-code-scanning-configuration/codeql-query-suites
Ref: https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
Ref: #16263
Ref: 173805b2e7 #15798

Closes #18528

This commit is contained in:

Viktor Szakats

2025-09-11 19:50:40 +02:00

parent bbdb869ec7

commit cc50f05370

No known key found for this signature in database

GPG key ID: B5ABD165E2AEF201

3 changed files with 39 additions and 0 deletions

1

.github/scripts/spellcheck.words vendored

View file

 @ -122,6 +122,7 @@ CMakeLists
 CNA
 CNAME
 CNAMEs
 CodeQL
 CODESET
 codeset
 CodeSonar

Rows
Columns

GHA/codeql: re-enable for C with the default query pack

1 .github/scripts/spellcheck.words vendored Unescape Escape View file

1

.github/scripts/spellcheck.words vendored

View file