/certi-ghsa-exercise-enable-code-scanning-using-codeql

certi-ghsa-exercise-enable-code-scanning-using-codeql

Creative Commons Attribution 4.0 InternationalCC-BY-4.0

Welcome to the Enable code scanning using CodeQL exercise!

This exercise checks your knowledge on enabling code scanning with CodeQL on a GitHub repository. It is automatically graded via a workflow once you have completed the instructions.

About this exercise

A grading script exists under .github/workflows/grading.yml. You do not need to use this workflow for any purpose and altering its contents will affect the repository's ability to assess your exercise and give feedback.

ℹ️ About the use of GitHub Actions in this exercise

This exercise utilizes GitHub Actions, which is free for public repositories and self-hosted runners, but may incur charges on private repositories. See About billing for GitHub Actions to learn more. The use of GitHub Actions also means that it may take the grading workflow a few seconds and sometimes minutes to run.

Instructions

Please complete the instructions below:

  1. Create your own copy of this repository by using the Use this template button. Make sure your copy is a public repository.

  2. Set up the CodeQL Analysis workflow on the repository.

Useful resources

Use these resources specific to this exercise to help you!

Resources specific to this exercise:

Resources for working with exercises and GitHub Actions in general:

Seeing your result

Your exercise is graded automatically once you have completed the instructions. To see the result of your exercise, go to the Actions tab, and see the most recent run on the Grading workflow.

See Viewing workflow run history if you need assistance.

Troubleshooting

If you are stuck with a step in the exercise or the grading workflow does not automatically run after you complete the instructions, run the troubleshooter: in the Actions tab select the Grading workflow, click Run workflow, select the appropriate branch, and click the Run workflow button.

The troubleshooter will either display useful information to help you understand what you might have done wrong in your exercise or redirect you to the documentation relevant to your exercise to help you out.

See Running a workflow on GitHub if you need assistance.