fix: remove security-experimental queries from CodeQL configuration to prevent false positives

2026-03-07 03:48:04 +00:00
parent 6add11f1d2
commit 82e2134333
4 changed files with 9 additions and 11 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -55,7 +55,7 @@ jobs:
        uses: github/codeql-action/init@0d579ffd059c29b07949a3cce3983f0780820c98 # v4
        with:
          languages: ${{ matrix.language }}
-          queries: security-and-quality,security-experimental
+          queries: security-and-quality
          # Use CodeQL config to exclude documented false positives
          # Go: Excludes go/request-forgery for url_testing.go (has 4-layer SSRF defense)
          # See: .github/codeql/codeql-config.yml for full justification