Adding github code scanning
diff --git a/.github/codeql/wss4j.qls b/.github/codeql/wss4j.qls
new file mode 100644
index 0000000..2f8140a
--- /dev/null
+++ b/.github/codeql/wss4j.qls
@@ -0,0 +1,5 @@
+- import: codeql-suites/java-security-and-quality.qls
+ from: codeql-java
+- exclude:
+ id: java/missing-override-annotation
+
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index c18dcb1..4146b86 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -11,8 +11,8 @@
pull_request:
# The branches below must be a subset of the branches above
branches: [master]
- schedule:
- - cron: '0 8 * * 5'
+ #schedule:
+ #- cron: '0 8 * * 5'
jobs:
analyze:
@@ -57,7 +57,8 @@
# By default, queries listed here will override any specified in a config file.
# Prefix the list here with "+" to use these queries and those in the config file.
# queries: ./path/to/local/query, your-org/your-repo/queries@main
- queries: security-and-quality
+ # queries: security-and-quality
+ queries: ./.github/codeql/wss4j.qls
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually (see below)
@@ -72,7 +73,7 @@
# uses a compiled language
- run: |
- mvn compile -DskipTests -Pnochecks
+ mvn compile -DskipTests
# make bootstrap
# make release