diff options
| author | Doug Bunting <6431421+dougbu@users.noreply.github.com> | 2022-10-24 22:46:49 +0300 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-10-24 22:46:49 +0300 |
| commit | b35b7ac8b7196a53814b3b7766de6bb8fb07a256 (patch) | |
| tree | 6ef0e2555fa32fa9f95990868a73a2b7e0f81043 /.config | |
| parent | d3259f92851e4772d3230177be5b71be20d3ff6d (diff) | |
Add CodeQL3000 run to aspnetcore-ci-official (#44688)
* Add CodeQL3000 run to aspnetcore-ci-official
- add new schedule for a weekly run
- add top-level parameter enabling CodeQL3000 in manual builds
- add `enableSBOM` and `variables` parameters in default-build.yml
- add a separate job w/ CodeQL3000 tasks included in build steps; run this job alone
- use the new default-build.yml parameters
- set `$(UseSharedCompilation)` to `false` to ease analysis
- tag CodeQL3000 runs
- add a tsaoptions.json file
- cribbed values from our eng/sdl-tsa-vars.config file
nit: Unconditionally disable the auto-injected component governance build step
- job.yml inserts the task where we need (unless overridden)
Diffstat (limited to '.config')
| -rw-r--r-- | .config/tsaoptions.json | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/.config/tsaoptions.json b/.config/tsaoptions.json new file mode 100644 index 0000000000..1688609163 --- /dev/null +++ b/.config/tsaoptions.json @@ -0,0 +1,12 @@ +{ + "areaPath": "DevDiv\\ASP.NET Core", + "codebaseName": "AspNetCore", + "instanceUrl": "https://devdiv.visualstudio.com/", + "iterationPath": "DevDiv", + "notificationAliases": [ + "aspnetcore-build@microsoft.com" + ], + "projectName": "DEVDIV", + "repositoryName": "AspNetCore", + "template": "TFSDEVDIV" +} |