Skip to content

ci: rely on CodeQL default setup#211

Open
afc163 wants to merge 1 commit into
masterfrom
codex/disable-advanced-codeql
Open

ci: rely on CodeQL default setup#211
afc163 wants to merge 1 commit into
masterfrom
codex/disable-advanced-codeql

Conversation

@afc163

@afc163 afc163 commented Jul 3, 2026

Copy link
Copy Markdown
Member

Summary

  • Remove the advanced CodeQL workflow.
  • Keep code scanning covered by GitHub CodeQL default setup.
  • Fix the master branch CodeQL failure caused by uploading SARIF from an advanced configuration while default setup is enabled.

Test Plan

  • npm run lint
  • npm run tsc
  • gh api repos/react-component/rate/code-scanning/default-setup --jq '.state'

Copilot AI review requested due to automatic review settings July 3, 2026 12:47
@gemini-code-assist

Copy link
Copy Markdown
Contributor

Note

Gemini is unable to generate a review for this pull request due to the file types involved not being currently supported.

@vercel

vercel Bot commented Jul 3, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
rate Ready Ready Preview, Comment Jul 3, 2026 1:37pm

@coderabbitai

coderabbitai Bot commented Jul 3, 2026

Copy link
Copy Markdown

Warning

Review limit reached

@afc163, you've reached your PR review limit, so we couldn't start this review.

Next review available in: 59 minutes

Enable usage-based reviews in Billing to review now. Otherwise, wait until the next included review is available.
You're only billed for reviews past your plan's rate limits ($0.25/file).

How can I continue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

To avoid repeated limits, reduce automatic review volume by pausing incremental auto-reviews earlier, using label-based review opt-in, excluding WIP or generated PR titles, or requesting reviews manually when the PR is ready. If your team needs uninterrupted high-volume reviews, an organization admin can enable usage-based reviews.

How do review limits work?

CodeRabbit enforces per-developer PR review limits for each organization. Most developers receive the normal plan review availability.

For paid Pro and Pro+ PR reviews, CodeRabbit uses adaptive limits for sustained high-volume activity. When a developer's recent PR review activity reaches the 95th percentile or higher among CodeRabbit users, additional reviews become available more gradually as earlier reviews age out of the rolling window.

Please refer docs for additional details.

Review details
⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 45b5bf19-114f-4c1d-b518-a48bea8223e8

📥 Commits

Reviewing files that changed from the base of the PR and between 1cbe0d9 and a7c6793.

📒 Files selected for processing (1)
  • .github/workflows/codeql.yml
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch codex/disable-advanced-codeql

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands.

@github-actions

github-actions Bot commented Jul 3, 2026

Copy link
Copy Markdown

✅ Preview is ready!

PR preview ✅ Ready ✅ Ready
🔗 Preview https://react-component-rate-preview-pr-211.surge.sh
📝 Commita7c6793
⏱️ Build time22.151s
📦 Size1.8 MB · 34 files
🪵 LogsView logs
📱 MobileScan to open preview on mobile

↩️ Previous: ⚡️ a7c6793 · react-component-rate-preview-pr-211.surge.sh (open ↗) · 2026-07-03 13:02:20 UTC

🤖 Powered by surge-preview

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Note

Copilot couldn't run its full agentic review because no GitHub Actions runner was available. Make sure your repository has a runner available to run Copilot's review, or add a copilot-setup-steps.yml file specifying one with the runs-on attribute. See the docs for more details.

Removes the repository’s advanced CodeQL GitHub Actions workflow to rely solely on GitHub’s CodeQL default setup, preventing conflicts from uploading SARIF via an advanced configuration while default setup is enabled.

Changes:

  • Deleted the custom/advanced CodeQL workflow (.github/workflows/codeql.yml)
  • Leaves code scanning responsibility to GitHub CodeQL default setup (no workflow-managed SARIF upload)

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@codecov

codecov Bot commented Jul 3, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 96.95%. Comparing base (1cbe0d9) to head (a7c6793).

Additional details and impacted files
@@           Coverage Diff           @@
##           master     #211   +/-   ##
=======================================
  Coverage   96.95%   96.95%           
=======================================
  Files           4        4           
  Lines         164      164           
  Branches       54       54           
=======================================
  Hits          159      159           
  Misses          5        5           

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants