diff --git a/.github/codeql/codeql-javascript-typescript.yml b/.github/codeql/codeql-javascript-typescript.yml new file mode 100644 index 00000000000..5a765db5392 --- /dev/null +++ b/.github/codeql/codeql-javascript-typescript.yml @@ -0,0 +1,18 @@ +name: openclaw-codeql-javascript-typescript + +paths: + - src + - extensions + - ui/src + - skills + +paths-ignore: + - apps + - dist + - docs + - "**/node_modules" + - "**/coverage" + - "**/*.test.ts" + - "**/*.test.tsx" + - "**/*.e2e.test.ts" + - "**/*.e2e.test.tsx" diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 57b0683e03c..9b78a3c6172 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -28,6 +28,7 @@ jobs: needs_swift_tools: false needs_manual_build: false needs_autobuild: false + config_file: ./.github/codeql/codeql-javascript-typescript.yml - language: actions runs_on: blacksmith-16vcpu-ubuntu-2404 needs_node: false @@ -36,6 +37,7 @@ jobs: needs_swift_tools: false needs_manual_build: false needs_autobuild: false + config_file: "" - language: python runs_on: blacksmith-16vcpu-ubuntu-2404 needs_node: false @@ -44,6 +46,7 @@ jobs: needs_swift_tools: false needs_manual_build: false needs_autobuild: false + config_file: "" - language: java-kotlin runs_on: blacksmith-16vcpu-ubuntu-2404 needs_node: false @@ -52,6 +55,7 @@ jobs: needs_swift_tools: false needs_manual_build: true needs_autobuild: false + config_file: "" - language: swift runs_on: macos-latest needs_node: false @@ -60,6 +64,7 @@ jobs: needs_swift_tools: true needs_manual_build: true needs_autobuild: false + config_file: "" steps: - name: Checkout uses: actions/checkout@v4 @@ -95,6 +100,7 @@ jobs: with: languages: ${{ matrix.language }} queries: security-and-quality + config-file: ${{ matrix.config_file || '' }} - name: Autobuild if: matrix.needs_autobuild