[
https://issues.apache.org/jira/browse/NIFI-12278?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
David Handermann updated NIFI-12278:
------------------------------------
Description:
[GitHub
CodeQL|https://docs.github.com/en/code-security/code-scanning/introduction-to-code-scanning/about-code-scanning-with-codeql]
scanning is available for public repositories and provides a default set of
rules for common coding security vulnerabilities.
The {{ci-workflow}} Static Analysis Job should be updated to include CodeQL
scanning actions to detect potential concerns during the build process.
was:
[GitHub
CodeQL]([https://docs.github.com/en/code-security/code-scanning/introduction-to-code-scanning/about-code-scanning-with-codeql)]
scanning is available for public repositories and provides a default set of
rules for common coding security vulnerabilities.
The {{ci-workflow}} Static Analysis Job should be updated to include CodeQL
scanning actions to detect potential concerns during the build process.
> Add GitHub CodeQL Scanning to Static Analysis Job
> -------------------------------------------------
>
> Key: NIFI-12278
> URL: https://issues.apache.org/jira/browse/NIFI-12278
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Tools and Build
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Major
> Fix For: 2.latest
>
>
> [GitHub
> CodeQL|https://docs.github.com/en/code-security/code-scanning/introduction-to-code-scanning/about-code-scanning-with-codeql]
> scanning is available for public repositories and provides a default set of
> rules for common coding security vulnerabilities.
> The {{ci-workflow}} Static Analysis Job should be updated to include CodeQL
> scanning actions to detect potential concerns during the build process.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
