Skip to content
Closed
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
24 changes: 24 additions & 0 deletions .github/workflows/codeql.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
name: CodeQL

on:
push:
branches: [main]
pull_request:
branches: [main]
schedule:
- cron: "0 6 * * 1"

jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
permissions:

Copilot AI Mar 30, 2026

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

permissions is set at the job level but only grants security-events: write. When a job defines permissions, all unspecified scopes default to none, so actions/checkout will not be able to read repository contents and the workflow will fail. Add at least contents: read (and typically also actions: read) alongside security-events: write.

Suggested change
permissions:
permissions:
contents: read
actions: read

Copilot uses AI. Check for mistakes.
security-events: write
steps:
- uses: actions/checkout@v4
- uses: github/codeql-action/init@v3
with:
languages: javascript-typescript
- uses: github/codeql-action/analyze@v3
with:
category: /language:javascript-typescript
1 change: 1 addition & 0 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@
[![CI](https://github.com/FerrFlow-Org/MCP/actions/workflows/ci.yml/badge.svg)](https://github.com/FerrFlow-Org/MCP/actions/workflows/ci.yml)
[![npm](https://img.shields.io/npm/v/@ferrflow/mcp)](https://www.npmjs.com/package/@ferrflow/mcp)
[![Coverage](https://codecov.io/gh/FerrFlow-Org/MCP/branch/main/graph/badge.svg)](https://codecov.io/gh/FerrFlow-Org/MCP)
[![CodeQL](https://github.com/FerrFlow-Org/MCP/actions/workflows/codeql.yml/badge.svg)](https://github.com/FerrFlow-Org/MCP/actions/workflows/codeql.yml)
[![License](https://img.shields.io/github/license/FerrFlow-Org/MCP)](LICENSE)

[Model Context Protocol](https://modelcontextprotocol.io) server that lets AI assistants interact with FerrFlow.
Expand Down
Loading