From 549ac02873a3cff6af5bb02711495bc60e401caa Mon Sep 17 00:00:00 2001 From: "pauline.maury-laribiere" Date: Fri, 8 May 2026 09:52:53 +0000 Subject: [PATCH 1/3] add workflow for codeql --- .github/workflows/code_ql.yaml | 44 ++++++++++++++++++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 .github/workflows/code_ql.yaml diff --git a/.github/workflows/code_ql.yaml b/.github/workflows/code_ql.yaml new file mode 100644 index 0000000..e828331 --- /dev/null +++ b/.github/workflows/code_ql.yaml @@ -0,0 +1,44 @@ +name: CodeQL Extended + +on: + pull_request: + schedule: + - cron: '0 9 * * 1' # Monday morning at 9am + +jobs: + analyze: + name: Analyze Python code + runs-on: ubuntu-latest + timeout-minutes: 360 + permissions: + security-events: write + packages: read + actions: read + contents: read + + strategy: + fail-fast: false + matrix: + python-version: [3.11, 3.12, 3.13] + + steps: + - uses: actions/checkout@v5 + + # Set up Python for each version specified in the matrix + - name: Set up Python ${{ matrix.python-version }} + uses: actions/setup-python@v4 + with: + python-version: ${{ matrix.python-version }} + + # Initialize CodeQL with the current Python version + - name: Initialize CodeQL + uses: github/codeql-action/init@v4 + with: + languages: python + build-mode: none + queries: security-extended + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v4 + with: + category: "/language:python" \ No newline at end of file From eb69d9b7f0a5fc3073f7593b7bea3ace06a76250 Mon Sep 17 00:00:00 2001 From: "pauline.maury-laribiere" Date: Fri, 8 May 2026 10:03:02 +0000 Subject: [PATCH 2/3] add shields to readme --- csvw-safe-library/README.md | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/csvw-safe-library/README.md b/csvw-safe-library/README.md index efb8b45..83c9b3f 100644 --- a/csvw-safe-library/README.md +++ b/csvw-safe-library/README.md @@ -1,5 +1,12 @@ # CSVW-SAFE Utility Library +![GitHub License](https://img.shields.io/github/license/dscc-admin-ch/csvw-safe) +![PyPI - Python Version](https://img.shields.io/pypi/pyversions/csvw-safe) +[![Documentation](https://img.shields.io/badge/docs-Read%20the%20Docs-blue)](https://dscc-admin-ch.github.io/csvw-safe-docs/index.html) # TODO +[![Coverage badge](https://raw.githubusercontent.com/dscc-admin-ch/csvw-safe/python-coverage-comment-action-data/badge.svg)](https://htmlpreview.github.io/?https://raw.githubusercontent.com/dscc-admin-ch/csvw-safe/python-coverage-comment-action-data/htmlcov/index.html) +[![CodeQL](https://github.com/dscc-admin-ch/csvw-safe/actions/workflows/code_ql.yml/badge.svg)](https://github.com/dscc-admin-ch/csvw-safe/actions/workflows/code_ql.yml) +[![Ruff](https://img.shields.io/endpoint?url=https://raw.githubusercontent.com/astral-sh/ruff/main/assets/badge/v2.json)](https://github.com/astral-sh/ruff) + This library provides Python utilities for generating, validating, and testing CSVW-SAFE metadata and associated dummy datasets for differential privacy (DP) development and safe data modeling workflows. It includes five main scripts: From 73ea92b00c0e18a56791b0b18293cf3481a769fe Mon Sep 17 00:00:00 2001 From: "pauline.maury-laribiere" Date: Fri, 8 May 2026 10:06:12 +0000 Subject: [PATCH 3/3] fixing shileds --- .github/workflows/{code_ql.yaml => codeql.yaml} | 0 csvw-safe-library/README.md | 10 +++++++--- 2 files changed, 7 insertions(+), 3 deletions(-) rename .github/workflows/{code_ql.yaml => codeql.yaml} (100%) diff --git a/.github/workflows/code_ql.yaml b/.github/workflows/codeql.yaml similarity index 100% rename from .github/workflows/code_ql.yaml rename to .github/workflows/codeql.yaml diff --git a/csvw-safe-library/README.md b/csvw-safe-library/README.md index 83c9b3f..bc9f458 100644 --- a/csvw-safe-library/README.md +++ b/csvw-safe-library/README.md @@ -1,10 +1,14 @@ # CSVW-SAFE Utility Library ![GitHub License](https://img.shields.io/github/license/dscc-admin-ch/csvw-safe) + ![PyPI - Python Version](https://img.shields.io/pypi/pyversions/csvw-safe) -[![Documentation](https://img.shields.io/badge/docs-Read%20the%20Docs-blue)](https://dscc-admin-ch.github.io/csvw-safe-docs/index.html) # TODO -[![Coverage badge](https://raw.githubusercontent.com/dscc-admin-ch/csvw-safe/python-coverage-comment-action-data/badge.svg)](https://htmlpreview.github.io/?https://raw.githubusercontent.com/dscc-admin-ch/csvw-safe/python-coverage-comment-action-data/htmlcov/index.html) -[![CodeQL](https://github.com/dscc-admin-ch/csvw-safe/actions/workflows/code_ql.yml/badge.svg)](https://github.com/dscc-admin-ch/csvw-safe/actions/workflows/code_ql.yml) +[![Documentation](https://img.shields.io/badge/docs-Read%20the%20Docs-blue)](https://dscc-admin-ch.github.io/csvw-safe-docs/index.html) + +[![Coverage](https://raw.githubusercontent.com/dscc-admin-ch/csvw-safe/python-coverage-comment-action-data/badge.svg)](https://htmlpreview.github.io/?https://github.com/dscc-admin-ch/csvw-safe/blob/python-coverage-comment-action-data/htmlcov/index.html) + +[![CodeQL](https://github.com/dscc-admin-ch/csvw-safe/actions/workflows/codeql.yml/badge.svg)](https://github.com/dscc-admin-ch/csvw-safe/actions/workflows/codeql.yml) + [![Ruff](https://img.shields.io/endpoint?url=https://raw.githubusercontent.com/astral-sh/ruff/main/assets/badge/v2.json)](https://github.com/astral-sh/ruff) This library provides Python utilities for generating, validating, and testing CSVW-SAFE metadata and associated dummy datasets for differential privacy (DP) development and safe data modeling workflows.