feat(CI): Added more queries to CodeQL and a step to upload SARIF file

SaptarshiSarkar12 · Feb 17, 2024 · 3288f12 · 3288f12
1 parent 264a809
commit 3288f12
Showing 1 changed file with 7 additions and 6 deletions.
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -55,12 +55,7 @@ jobs:
       uses: github/codeql-action/init@v3
       with:
         languages: ${{ matrix.language }}
-        # If you wish to specify custom queries, you can do so here or in a config file.
-        # By default, queries listed here will override any specified in a config file.
-        # Prefix the list here with "+" to use these queries and those in the config file.
-
-        # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
-        # queries: security-extended,security-and-quality
+        queries: security-extended,security-and-quality
     - name: Setup JDK 21
       if: ${{ matrix.language == 'java-kotlin' }}
       uses: actions/setup-java@v4
@@ -76,3 +71,9 @@ jobs:
       uses: github/codeql-action/analyze@v3
       with:
         category: "/language:${{matrix.language}}"
+    - name: Upload SARIF result
+      uses: github/codeql-action/upload-sarif@v3
+      with:
+         # Optional category for the results
+         # Used to differentiate multiple results for one commit
+         category: "/language:${{matrix.language}}"