Skip to content

feat: add CodeQL security scanning to workspace CI#37

Merged
tgarciai merged 1 commit intomainfrom
feat/codeql-workspace
Mar 18, 2026
Merged

feat: add CodeQL security scanning to workspace CI#37
tgarciai merged 1 commit intomainfrom
feat/codeql-workspace

Conversation

@tgarciai
Copy link
Member

@tgarciai tgarciai commented Mar 18, 2026

Summary

Adds CodeQL static analysis (Go) to the workspace CI pipeline. The tool-learning CI already had CodeQL — this closes the gap for the workspace service.

  • Scans all workspace Go code (excludes services/ and e2e/)
  • Builds with -tags k8s to cover all code paths
  • Results visible in GitHub Security tab

Test plan

  • CI runs CodeQL job
  • Matches tool-learning CodeQL pattern

🤖 Generated with Claude Code

@tgarciai @claude
feat: add CodeQL security scanning to workspace CI
86f87f1 
Adds CodeQL static analysis job (Go) to the workspace CI pipeline,
matching the tool-learning CI which already has CodeQL.

Scans workspace code only (excludes services/ and e2e/).
Builds with k8s tag to cover all code paths.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@github-advanced-security
Copy link

github-advanced-security bot commented Mar 18, 2026

You are seeing this message because GitHub Code Scanning has recently been set up for this repository, or this pull request contains the workflow file for the Code Scanning tool.

What Enabling Code Scanning Means:

  • The 'Security' tab will display more code scanning analysis results (e.g., for the default branch).
  • Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results.
  • You will be able to see the analysis results for the pull request's branch on this overview once the scans have completed and the checks have passed.

For more information about GitHub Code Scanning, check out the documentation.

@sonarqubecloud
Copy link

sonarqubecloud bot commented Mar 18, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@tgarciai tgarciai merged commit f8080d1 into main Mar 18, 2026
11 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tgarciai