Conversation
Add required codeql.yml workflow to satisfy compliance check. Retains existing codeql-analysis.yml; codeql.yml is identical content. Co-authored-by: don-petry <don-petry@users.noreply.github.com>
|
Warning Rate limit exceeded
Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 7 minutes and 17 seconds. ⌛ How to resolve this issue?After the wait time has elapsed, a review can be triggered using the We recommend that you space out your commits to avoid hitting the rate limit. 🚦 How do rate limits work?CodeRabbit enforces hourly rate limits for each developer per organization. Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout. Please see our FAQ for further information. ℹ️ Review info⚙️ Run configurationConfiguration used: Path: .coderabbit.yaml Review profile: CHILL Plan: Pro Run ID: 📒 Files selected for processing (1)
✨ Finishing Touches🧪 Generate unit tests (beta)
Comment |
Self-reviewThe change is minimal and correct:
One follow-up to consider: Both @don-petry — you're the code owner for this repo. This is a one-line compliance fix (adding a required workflow file). Please review and merge when ready. |
There was a problem hiding this comment.
Pull request overview
Adds a new GitHub Actions workflow file to meet the organization’s compliance requirement that a required .github/workflows/codeql.yml exists, aligning this repo’s CI setup with the referenced standards.
Changes:
- Add
.github/workflows/codeql.ymlfor CodeQL scanning (mirrors existingcodeql-analysis.yml).
| push: | ||
| branches: [main] | ||
| pull_request: | ||
| branches: [main] | ||
| schedule: | ||
| - cron: '25 14 * * 1' |
There was a problem hiding this comment.
This workflow has the same triggers and contents as the existing .github/workflows/codeql-analysis.yml, so adding it will cause CodeQL to run twice on each push/PR/scheduled run. If compliance only requires the presence of codeql.yml, consider disabling triggers in one of the workflows (e.g., workflow_dispatch only) or removing the duplicate workflow to avoid doubled CI time and compute usage.
| push: | |
| branches: [main] | |
| pull_request: | |
| branches: [main] | |
| schedule: | |
| - cron: '25 14 * * 1' | |
| workflow_dispatch: |
|
|
Closing as stale — predates the standards PR. This PR was generated by Claude during the original bulk-toggle yesterday, before petry-projects/.github#86 landed. That standards PR added prompt rules that:
Re-toggling the underlying issue will let Claude regenerate this fix using the new rules. The next run should produce a workflow that is byte-identical to the standard template (verified with the canary on TalkTerm#51 → PR #78 yesterday). |
Summary
.github/workflows/codeql.ymlto satisfy the compliance requirement for a requiredcodeql.ymlworkflowcodeql-analysis.ymlNotes
The existing
codeql-analysis.ymlis retained. If desired, it can be removed in a follow-up to avoid running CodeQL twice on each trigger event. However, addingcodeql.ymlis the minimal change required to resolve the compliance finding.Generated with Claude Code