Skip to content

ci: rely on CodeQL default setup#193

Open
afc163 wants to merge 1 commit into
masterfrom
codex/disable-advanced-codeql
Open

ci: rely on CodeQL default setup#193
afc163 wants to merge 1 commit into
masterfrom
codex/disable-advanced-codeql

Conversation

@afc163

@afc163 afc163 commented Jul 3, 2026

Copy link
Copy Markdown
Member

Summary

  • Remove the advanced CodeQL workflow.
  • Keep code scanning covered by GitHub CodeQL default setup.
  • Fix the master branch CodeQL failure caused by uploading SARIF from an advanced configuration while default setup is enabled.

Test Plan

  • npm run lint
  • npm run tsc
  • gh api repos/react-component/input/code-scanning/default-setup --jq '.state'

Summary by CodeRabbit

  • Chores
    • 移除了一个自动化工作流配置,减少了仓库中的后台任务。
    • 相关的持续集成运行不再包含该安全检查流程。

Copilot AI review requested due to automatic review settings July 3, 2026 12:47
@gemini-code-assist

Copy link
Copy Markdown
Contributor

Note

Gemini is unable to generate a review for this pull request due to the file types involved not being currently supported.

@vercel

vercel Bot commented Jul 3, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
input Ready Ready Preview, Comment Jul 3, 2026 1:36pm

@coderabbitai

coderabbitai Bot commented Jul 3, 2026

Copy link
Copy Markdown

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: ef2dfa45-3c03-434f-abde-51fdb324928f

📥 Commits

Reviewing files that changed from the base of the PR and between 6eed130 and df3b210.

📒 Files selected for processing (1)
  • .github/workflows/codeql.yml
💤 Files with no reviewable changes (1)
  • .github/workflows/codeql.yml

Walkthrough

此变更删除了仓库中的 CodeQL 代码扫描 GitHub Actions 工作流文件,移除了针对 push、pull_request 及定时触发的安全分析任务配置。

Changes

Cohort / File(s) Summary
移除 CI 工作流
.github/workflows/codeql.yml
删除整个 CodeQL 分析工作流文件,包括触发条件、analyze 任务及相关权限配置。

Estimated code review effort: 1 (Trivial) | ~2 minutes

Poem

一纸工作流悄然离去,
兔窝不再需守望机,
少了扫描多几分轻盈,
蹦跳过夜色不留痕迹。
🐇✂️📄

🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed 标题准确概括了移除自定义 CodeQL 工作流并改用默认 CodeQL 设置这一主要变更。
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch codex/disable-advanced-codeql

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands.

@github-actions

github-actions Bot commented Jul 3, 2026

Copy link
Copy Markdown

✅ Preview is ready!

PR preview ✅ Ready ✅ Ready
🔗 Preview https://react-component-input-preview-pr-193.surge.sh
📝 Commitdf3b210
⏱️ Build time19.092s
📦 Size1.7 MB · 50 files
🪵 LogsView logs
📱 MobileScan to open preview on mobile

↩️ Previous: ⚡️ df3b210 · react-component-input-preview-pr-193.surge.sh (open ↗) · 2026-07-03 13:01:03 UTC

🤖 Powered by surge-preview

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Note

Copilot couldn't run its full agentic review because no GitHub Actions runner was available. Make sure your repository has a runner available to run Copilot's review, or add a copilot-setup-steps.yml file specifying one with the runs-on attribute. See the docs for more details.

Removes the repository’s custom (advanced) CodeQL workflow so code scanning is handled exclusively by GitHub CodeQL default setup, avoiding conflicts from SARIF uploads while default setup is enabled.

Changes:

  • Deleted .github/workflows/codeql.yml (advanced CodeQL workflow) to rely on CodeQL default setup only.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@codecov

codecov Bot commented Jul 3, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 98.34%. Comparing base (6eed130) to head (df3b210).

Additional details and impacted files
@@           Coverage Diff           @@
##           master     #193   +/-   ##
=======================================
  Coverage   98.34%   98.34%           
=======================================
  Files          11       11           
  Lines         423      423           
  Branches      131      136    +5     
=======================================
  Hits          416      416           
  Misses          7        7           

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants