Temporarily disable CodeQL ReDoS and overly-large-range (#1344)

* Nudge to allow branch push * Add codeql config * Move codeql config around * Move config file into init step * Shuffle config-file index * Change to correct query id * Shuffle and switch to polynomial-redos * Ignore both redos queries * Ignore java/overly-large-range * Add comment on exclude
2025-02-09 06:14:45 +00:00 · 2023-07-11 13:42:54 -04:00 · 2023-07-11 13:42:54 -04:00 · ca2b26fc3b
commit ca2b26fc3b
parent c2e4b2090f
3 changed files with 12 additions and 1 deletions
--- a/.codeql-config.yml
+++ b/.codeql-config.yml
@ -0,0 +1,10 @@
+name: "Code scanning CodeQL config"
+
+query-filters:
+  # This should be empty, but contains three queries that currently break the CodeQL action - dotasek
+  - exclude:
+      id: java/polynomial-redos
+  - exclude:
+      id: java/redos
+  - exclude:
+      id: java/overly-large-range
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -45,6 +45,7 @@ jobs:
      uses: github/codeql-action/init@v2
      with:
        languages: ${{ matrix.language }}
+        config-file: ./.codeql-config.yml
        # If you wish to specify custom queries, you can do so here or in a config file.
        # By default, queries listed here will override any specified in a config file.
        # Prefix the list here with "+" to use these queries and those in the config file.