Skip to content

Update regex for GitHub hosted runner matching#21976

Merged
owen-mc merged 3 commits into
github:mainfrom
JarLob:patch-1
Jun 12, 2026
Merged

Update regex for GitHub hosted runner matching#21976
owen-mc merged 3 commits into
github:mainfrom
JarLob:patch-1

Conversation

@JarLob

@JarLob JarLob commented Jun 12, 2026

Copy link
Copy Markdown
Contributor

Fixes false positives (of critical severity). New label naming conventions were introduced since the query was initially written.

@JarLob
Update regex for GitHub hosted runner matching
9078b51 
Fixes false positives (of critical severity). New label naming conventions were introduced since the query was initially written.
@JarLob JarLob requested a review from a team as a code owner June 12, 2026 06:37
Copilot AI review requested due to automatic review settings June 12, 2026 06:37
@github-actions github-actions Bot added the Actions Analysis of GitHub Actions label Jun 12, 2026
Copilot AI reviewed Jun 12, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Note

Copilot was unable to run its full agentic suite in this review.

Updates the GitHub-hosted runner label detection regex to recognize additional official runner label variants (ARM, Intel, size, and Windows VS toolchain suffixes).

Changes:

  • Extend Ubuntu runner matching to allow an ARM suffix.
  • Extend macOS runner matching to allow size and Intel suffixes.
  • Extend Windows runner matching to allow ARM and -vs... suffixes.
Show a summary per file
File Description
actions/ql/lib/codeql/actions/security/SelfHostedQuery.qll Expands the regex used to classify GitHub-hosted runner labels.

Copilot's findings

  • Files reviewed: 1/1 changed files
  • Comments generated: 2

Comment thread actions/ql/lib/codeql/actions/security/SelfHostedQuery.qll Outdated
Comment thread actions/ql/lib/codeql/actions/security/SelfHostedQuery.qll Outdated
@JarLob JarLob marked this pull request as draft June 12, 2026 06:47
@JarLob JarLob marked this pull request as ready for review June 12, 2026 07:50
owen-mc
owen-mc approved these changes Jun 12, 2026
View reviewed changes

@owen-mc owen-mc left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for updating this.

@owen-mc owen-mc merged commit de7afca into github:main Jun 12, 2026
18 checks passed
@JarLob JarLob deleted the patch-1 branch June 12, 2026 08:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@owen-mc owen-mc owen-mc approved these changes

Assignees

No one assigned

Labels

Actions Analysis of GitHub Actions documentation

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@JarLob @owen-mc