Skip to content

chore: delete stray codeql.yml workflow#213

Closed
don-petry wants to merge 37 commits into
mainfrom
claude/issue-169-20260419-2133
Closed

chore: delete stray codeql.yml workflow#213
don-petry wants to merge 37 commits into
mainfrom
claude/issue-169-20260419-2133

Conversation

@don-petry

Copy link
Copy Markdown
Collaborator

Summary

  • Deletes .github/workflows/codeql.yml
  • Org standard now uses GitHub-managed CodeQL default setup; per-repo workflow files are drift and run a duplicate analysis alongside default setup

Why

The stray-codeql-workflow compliance check flags the presence of this file. It causes duplicate CodeQL analysis and is not needed since GitHub-managed default setup is in place.

Closes #169

Generated with Claude Code

Copilot AI review requested due to automatic review settings April 19, 2026 21:34
@coderabbitai

coderabbitai Bot commented Apr 19, 2026

Copy link
Copy Markdown

Warning

Rate limit exceeded

@github-actions[bot] has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 59 minutes and 4 seconds before requesting another review.

You’ve run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: c8d9c47e-ff49-45d7-923f-ad82b14a7eff

📥 Commits

Reviewing files that changed from the base of the PR and between b62abed and c141488.

📒 Files selected for processing (1)
  • .github/workflows/codeql.yml
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch claude/issue-169-20260419-2133

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@don-petry

Copy link
Copy Markdown
Collaborator Author

@don-petry — PR ready for review and merge. Single-file deletion to resolve the stray-codeql-workflow compliance finding (issue #169). No logic changes.

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Removes the repository-owned CodeQL GitHub Actions workflow to align with the org standard of using GitHub-managed CodeQL default setup (avoiding duplicate analyses and satisfying the stray-codeql-workflow compliance check).

Changes:

  • Deleted .github/workflows/codeql.yml to prevent duplicate CodeQL scans alongside GitHub-managed default setup.
Comments suppressed due to low confidence (1)

.github/workflows/codeql.yml:1

  • After removing this repository-level CodeQL workflow, repo documentation still lists a codeql-analysis.yml workflow (see docs/development-guide.md CI/CD Pipelines table). Please update docs to reflect GitHub-managed CodeQL default setup (or remove the workflow entry) so documentation matches the actual CI configuration.

@github-actions

github-actions Bot commented May 4, 2026

Copy link
Copy Markdown
Contributor

Auto-rebase failed — merge conflict — this branch has conflicts with main that must be resolved manually.

Please resolve the conflicts and push:

git fetch origin
git merge origin/main
# resolve conflicts, then:
git add .
git commit
git push

Org standard now uses GitHub-managed CodeQL default setup.
Per-repo codeql.yml causes duplicate analysis and is drift.

Closes #169

Co-authored-by: don-petry <don-petry@users.noreply.github.com>
@don-petry don-petry force-pushed the claude/issue-169-20260419-2133 branch from 392bf1b to e7694d7 Compare May 13, 2026 17:07
@don-petry don-petry requested a review from a team as a code owner May 13, 2026 17:07
@sonarqubecloud

Copy link
Copy Markdown

@donpetry-bot donpetry-bot left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Automated review — APPROVED ✓

Risk: LOW
Reviewed commit: f42d83e8440cb3e9ccb8af37ca824847695c4420
Cascade: triage → deep (triage: haiku 4.5 → deep: sonnet 4.6 + duck: o4-mini → audit: opus 4.7)

Summary

This PR is a no-op: the original commit (e7694d7) correctly deleted .github/workflows/codeql.yml (42 lines), but by the time 30+ merge-from-main commits landed on the branch, the file had already been removed from main via another path, leaving 0 changed files. The linked compliance issue #169 is already closed (2026-05-26), the file is confirmed absent on both main and the head branch, and all CI checks are green. No security concerns — merging is safe and cleans up a stale branch.

Findings

  • info: PR has 0 additions, 0 deletions, 0 changed files. The intended deletion (.github/workflows/codeql.yml) already landed on main through another path before the branch was fully merged. Merging this PR will have no effect on the repository.
  • info: Issue #169 (stray-codeql-workflow compliance finding) was closed on 2026-05-26, confirming the underlying problem is resolved independently of this PR.
  • minor: Copilot reviewer flagged that docs/development-guide.md CI/CD Pipelines table may still reference the deleted codeql-analysis.yml workflow. Low priority but worth a follow-up to keep docs accurate.

Reviewed by the PR-review cascade (triage: haiku 4.5 → deep: sonnet 4.6 + duck: o4-mini → audit: opus 4.7). Reply if you need a human review.

@don-petry

Copy link
Copy Markdown
Collaborator Author

Closing due to merge conflict that cannot be auto-rebased. Re-implementing from fresh main via dev-lead.

@don-petry don-petry closed this Jun 2, 2026
auto-merge was automatically disabled June 2, 2026 12:16

Pull request was closed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Compliance: stray-codeql-workflow

3 participants