Skip to content

GitHub Actions: Implement CodeQL #2400

New issue
New issue
Closed
#4886
Closed
GitHub Actions: Implement CodeQL#2400
#4886
Assignees
SAUMILDHANKAR
Labels
Complexity: LargeFeature: Board/GitHub MaintenanceProject board maintenance that we have to do repeatedlyrole: back end/devOpsTasks for back-end developerssize: 2ptCan be done in 7-12 hours
Milestone
02. Security
@macho-catt

Description

@macho-catt
macho-catt
opened on Oct 26, 2021

Overview

As a developer, we need to ensure that we write secure code and defend against vulnerabilities. To do so, we need to configure code scanning using CodeQL.

Action Items

  • Research and investigate how we can use CodeQL
    • Any notes should be documented in this ticket or should be stored on the website team's Google Drive
  • We want CodeQL to scan the vulnerabilities for the following:
    • JS code
    • GitHub Actions
    • Liquid
  • Create a prototype on your own fork of the repository
  • Schedule a time with the dev team and the lead to demo your findings and implementation
  • Once approved, write a pull request to implement CodeQL

Resources/Instructions

Code Scanning in GitHub
About CodeQL
Events that trigger workflows
Workflow syntax for GitHub Actions
actions/github-script
GitHub RESTAPI

Metadata

Metadata

Assignees

Labels

Complexity: LargeFeature: Board/GitHub MaintenanceProject board maintenance that we have to do repeatedlyrole: back end/devOpsTasks for back-end developerssize: 2ptCan be done in 7-12 hours

Type

No type

Projects

P: HfLA Website: Project Board

Status

Done

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions