Skip to content

Add Rust CodeQL coverage with buildless extraction#56

Merged
sydneyrenee merged 3 commits into
mainfrom
fix/codeql-rust-coverage
May 28, 2026
Merged

Add Rust CodeQL coverage with buildless extraction#56
sydneyrenee merged 3 commits into
mainfrom
fix/codeql-rust-coverage

Conversation

@sydneyrenee
Copy link
Copy Markdown
Member

@sydneyrenee sydneyrenee commented May 28, 2026

Summary

Resolves the duplicate CodeQL configuration (repo default-setup + advanced codeql.yml were both active and conflicting).

  • Add a rust entry to the analyze matrix so the advanced config matches default setup's language coverage (packages/desktop/src-tauri). Default setup scanned actions/js-ts/rust; codeql.yml only scanned js-ts + actions, so disabling default setup would have silently dropped Rust analysis.
  • Use build-mode: none (CodeQL buildless extraction) for Rust — no cargo build or system libs (libwebkit2gtk etc.) needed in CI.
  • Switch the matrix to include form so build-mode can be set per language.

After this merges, repo default code-scanning setup will be disabled so only this advanced workflow runs (no more duplicate scans / rejected SARIF uploads).

Test plan

  • PR triggers Analyze (javascript-typescript), Analyze (actions), and Analyze (rust) — all green.
  • Rust analysis completes without a build step (build-mode none).
  • After default-setup is disabled, only the codeql.yml scans appear in the Actions tab / code-scanning alerts.

@sydneyrenee
Merge branch 'main' of https://github.com/SolaceHarmony/emberharmony
a071847
@sydneyrenee
Add Rust CodeQL coverage with buildless extraction
4dc1772 
Default code-scanning setup covered actions/js-ts/rust while the advanced
codeql.yml only covered js-ts and actions. To retire default setup without
losing Rust analysis of the Tauri surface (packages/desktop/src-tauri), add a
rust matrix entry. build-mode none uses CodeQL's buildless extractor, so no
cargo build or system libraries are needed in CI.

Switch the matrix to include form so build-mode can be set per language.
@gemini-code-assist
Copy link
Copy Markdown
Contributor

gemini-code-assist Bot commented May 28, 2026

Note

Gemini is unable to generate a review for this pull request due to the file types involved not being currently supported.

@sydneyrenee sydneyrenee merged commit 35ed282 into main May 28, 2026
7 checks passed
@sydneyrenee sydneyrenee deleted the fix/codeql-rust-coverage branch May 28, 2026 08:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sydneyrenee