mirror of https://github.com/acidanthera/audk.git
30 lines
1.1 KiB
YAML
30 lines
1.1 KiB
YAML
## @file
|
|
# CodeQL configuration file for edk2.
|
|
#
|
|
# Copyright (c) Microsoft Corporation.
|
|
# SPDX-License-Identifier: BSD-2-Clause-Patent
|
|
##
|
|
|
|
name: "CodeQL config"
|
|
|
|
# The following line disables the default queries. This is used because we want to enable on query at a time by
|
|
# explicitly specifying each query in a "queries" array as they are enabled.
|
|
#
|
|
# See the following for more information about adding custom queries:
|
|
# https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-a-custom-configuration-file
|
|
|
|
#disable-default-queries: true
|
|
|
|
queries:
|
|
- name: EDK2 CodeQL Query List
|
|
uses: ./.github/codeql/edk2.qls
|
|
|
|
# We must specify a query for CodeQL to run. Until the first query is enabled, enable the security query suite but
|
|
# exclude all problem levels from impacting the results. After the first query is enabled, this filter can be relaxed
|
|
# to find the level of problems desired from the query.
|
|
query-filters:
|
|
- exclude:
|
|
problem.severity:
|
|
- warning
|
|
- recommendation
|