Skip to content

Migrate to GitHub-managed CodeQL configuration#739

Merged
douglasmiller merged 1 commit intov3-v2021-02-25from
migrate-to-default-codeql-20260205-165211
Feb 5, 2026
Merged

Migrate to GitHub-managed CodeQL configuration#739
douglasmiller merged 1 commit intov3-v2021-02-25from
migrate-to-default-codeql-20260205-165211

Conversation

@recurly-bearley
Copy link
Contributor

@recurly-bearley recurly-bearley commented Feb 5, 2026

Related Items (JIRA/Sentry Issue/PR): https://recurly.atlassian.net/browse/APPSEC-908

Description:
This PR migrates from advanced CodeQL setup to GitHub's default managed CodeQL configuration.

GitHub now provides a managed default setup for CodeQL that automatically:

  • Detects languages in the repository
  • Applies recommended query suites
  • Keeps analysis up-to-date with GitHub's latest improvements

Changes:

  • Removed custom CodeQL workflow files
  • Removed custom CodeQL configuration file

After merging, CodeQL default setup needs to be enabled in the repository settings under Code security and analysis.

Screenshots: None

Testing:
This PR is the test. CodeQL will be re-enabled using GitHub's managed default setup after merge.

Deployment Instructions:
After merge, enable CodeQL default setup in repository Settings → Code security and analysis.

Rollback Commands:
Revert this change.

Checklist:

  • Acceptance criteria reviewed and met
  • Code manually tested locally
  • Tests added/updated and passing
  • Self-reviewed for obvious issues

@recurly-bearley @claude
Migrate to GitHub-managed CodeQL configuration
7d55dfe 
Remove advanced CodeQL setup in favor of GitHub's default managed configuration.

This change:
- Removes custom CodeQL workflow files
- Removes custom CodeQL configuration
- Allows GitHub to manage CodeQL setup with recommended defaults

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
mroman-recurly
mroman-recurly approved these changes Feb 5, 2026
View reviewed changes
Copy link
Contributor

@mroman-recurly mroman-recurly left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@douglasmiller douglasmiller added V4 v2021-02-25 Client internal Internal tooling updates labels Feb 5, 2026
@douglasmiller douglasmiller merged commit 6d12a0a into v3-v2021-02-25 Feb 5, 2026
8 of 9 checks passed
@douglasmiller douglasmiller deleted the migrate-to-default-codeql-20260205-165211 branch February 5, 2026 21:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@douglasmiller douglasmiller douglasmiller approved these changes

@mroman-recurly mroman-recurly mroman-recurly approved these changes

Assignees

No one assigned

Labels

internal Internal tooling updates V4 v2021-02-25 Client

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@recurly-bearley @douglasmiller @mroman-recurly