CodeQL

[Paul Ramsey]

Anyone have any objections to adding a static scanner to our GHA?

https://github.com/postgis/postgis/pull/759

We already have so many other bots I think it’s probably a good addition that makes things incrementally no worse, and we earn a few security points for it.

If it ends up too noisy with false positives (like codecov!) we can always just turn it off again.

P.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.osgeo.org/pipermail/postgis-devel/attachments/20240208/61656f83/attachment.htm>