Compliance: codeql-default-setup-not-configured

[don-petry]

Compliance Finding

Category: ci-workflows
Severity: error
Check: codeql-default-setup-not-configured

Detail

CodeQL default setup is in state {"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"} (expected configured). Run apply-repo-settings.sh .github or gh api -X PATCH repos/petry-projects/.github/code-scanning/default-setup -F state=configured -F query_suite=default.

Standard Reference

standards/ci-standards.md#2-codeql-analysis-github-managed-default-setup

Remediation

Please review the linked standard and bring this repository into compliance.

See the full standards documentation for implementation guidance.

---

This issue was automatically created by the weekly compliance audit.

[don-petry]

Weekly Compliance Audit (2026-04-09)

This finding is still open.

Detail: CodeQL default setup is in state {"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"} (expected configured). Run apply-repo-settings.sh .github or gh api -X PATCH repos/petry-projects/.github/code-scanning/default-setup -F state=configured -F query_suite=default.

Standard: standards/ci-standards.md#2-codeql-analysis-github-managed-default-setup

[don-petry]

Claude encountered an error —— View job

---

Working on compliance fix for CodeQL default setup

• Read CLAUDE.md, AGENTS.md and relevant standards
• Understand the CodeQL default setup requirement
• Determine the correct fix approach
• Implement the fix
• Create PR and self-review

[don-petry]

Weekly Compliance Audit (2026-04-10)

This finding is still open.

Detail: CodeQL default setup is in state {"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"} (expected configured). Run apply-repo-settings.sh .github or gh api -X PATCH repos/petry-projects/.github/code-scanning/default-setup -F state=configured -F query_suite=default.

Standard: standards/ci-standards.md#2-codeql-analysis-github-managed-default-setup

[don-petry]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[don-petry]

Weekly Compliance Audit (2026-04-17)

This finding is still open.

Detail: CodeQL default setup is in state {"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"} (expected configured). Run apply-repo-settings.sh .github or gh api -X PATCH repos/petry-projects/.github/code-scanning/default-setup -F state=configured -F query_suite=default.

Standard: standards/ci-standards.md#2-codeql-analysis-github-managed-default-setup

[don-petry]

Weekly Compliance Audit (2026-04-21)

This finding is still open.

Detail: CodeQL default setup is in state {"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"}{"message":"Resource not accessible by personal access token","documentation_url":"https://docs.github.com/rest/code-scanning/code-scanning#get-a-code-scanning-default-setup-configuration","status":"403"} (expected configured). Run apply-repo-settings.sh .github or gh api -X PATCH repos/petry-projects/.github/code-scanning/default-setup -F state=configured -F query_suite=default.

Standard: standards/ci-standards.md#2-codeql-analysis-github-managed-default-setup