fix(ci): add explicit codeql workflow

This commit is contained in:
777genius 2026-06-02 13:51:30 +03:00
parent 6bb75c9fc8
commit 73f5063a08
2 changed files with 82 additions and 0 deletions

15
.github/codeql/codeql-config.yml vendored Normal file
View file

@ -0,0 +1,15 @@
name: agent-teams-codeql
paths:
- src
- packages
- agent-teams-controller
- mcp-server
- scripts
- .github/workflows
paths-ignore:
- '**/node_modules/**'
- 'test/**'
- 'landing/**'
- 'build/**'

67
.github/workflows/codeql.yml vendored Normal file
View file

@ -0,0 +1,67 @@
name: CodeQL
on:
push:
branches: [main, dev]
paths:
- 'src/**'
- 'packages/**'
- 'agent-teams-controller/**'
- 'mcp-server/**'
- 'scripts/**'
- '.github/workflows/**'
- '.github/codeql/**'
- 'package.json'
- 'pnpm-lock.yaml'
- 'pnpm-workspace.yaml'
- 'tsconfig*.json'
pull_request:
paths:
- 'src/**'
- 'packages/**'
- 'agent-teams-controller/**'
- 'mcp-server/**'
- 'scripts/**'
- '.github/workflows/**'
- '.github/codeql/**'
- 'package.json'
- 'pnpm-lock.yaml'
- 'pnpm-workspace.yaml'
- 'tsconfig*.json'
schedule:
- cron: '34 3 * * 1'
permissions:
contents: read
jobs:
analyze:
name: Analyze (${{ matrix.language }})
runs-on: ubuntu-latest
timeout-minutes: 45
permissions:
actions: read
contents: read
security-events: write
strategy:
fail-fast: false
matrix:
language:
- actions
- javascript-typescript
steps:
- name: Checkout repository
uses: actions/checkout@v6
- name: Initialize CodeQL
uses: github/codeql-action/init@v4
with:
languages: ${{ matrix.language }}
config-file: ./.github/codeql/codeql-config.yml
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v4
with:
category: /language:${{ matrix.language }}