Updating CodeQL (#27453)

commit: dfefb740e0bb81713df579ed5f1dd185e68c0b92 [log] [tgz]
author: Justin Wood <woody@apple.com> Sat Jun 24 14:18:58 2023 -0700
committer: GitHub <noreply@github.com> Sat Jun 24 14:18:58 2023 -0700
tree: 2b0aa74000e0393941710451d967d21200dbd3c3
parent: 34b3f9851a3557e4dcced47452baa692bf94f5e9 [diff]
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index d6aa8ae..29ac3f8 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml

@@ -120,3 +120,29 @@
         uses: github/codeql-action/analyze@v2
         with:
           category: "/language:${{matrix.language}}"
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2
+        with:
+          upload: False
+          output: sarif-results
+  
+      - name: filter-sarif
+        uses: advanced-security/filter-sarif@v1
+        with:
+          patterns: |
+            -**/third_party/**
+            -**/scripts/**
+          input: sarif-results/cpp.sarif
+          output: sarif-results/cpp.sarif
+  
+      - name: Upload SARIF
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: sarif-results/java.sarif
+  
+      - name: Upload loc as a Build Artifact
+        uses: actions/upload-artifact@v2.2.0
+        with:
+          name: sarif-results
+          path: sarif-results
+          retention-days: 1
\ No newline at end of file
commit	dfefb740e0bb81713df579ed5f1dd185e68c0b92	[log] [tgz]
author	Justin Wood <woody@apple.com>	Sat Jun 24 14:18:58 2023 -0700
committer	GitHub <noreply@github.com>	Sat Jun 24 14:18:58 2023 -0700
tree	2b0aa74000e0393941710451d967d21200dbd3c3
parent	34b3f9851a3557e4dcced47452baa692bf94f5e9 [diff]