Temporarily disable CodeQL ReDoS and overly-large-range (#1344)

* Nudge to allow branch push

* Add codeql config

* Move codeql config around

* Move config file into init step

* Shuffle config-file index

* Change to correct query id

* Shuffle and switch to polynomial-redos

* Ignore both redos queries

* Ignore java/overly-large-range

* Add comment on exclude

.codeql-config.yml

@@ -0,0 +1,10 @@
+name: "Code scanning CodeQL config"
+
+query-filters:
+  # This should be empty, but contains three queries that currently break the CodeQL action - dotasek
+  - exclude:
+      id: java/polynomial-redos
+  - exclude:
+      id: java/redos
+  - exclude:
+      id: java/overly-large-range

.github/workflows/codeql.yml

@@ -45,6 +45,7 @@ jobs:
       uses: github/codeql-action/init@v2
       with:
         languages: ${{ matrix.language }}
+        config-file: ./.codeql-config.yml
         # If you wish to specify custom queries, you can do so here or in a config file.
         # By default, queries listed here will override any specified in a config file.
         # Prefix the list here with "+" to use these queries and those in the config file.

RELEASE_NOTES.md

@@ -1,6 +1,6 @@
 ## Validator Changes
 
-* no changes
+* no changes 
 
 ## Other code changes