From 905bebc4d65574ace5757748718279c338ecc7dc Mon Sep 17 00:00:00 2001 From: Felicity Chapman Date: Wed, 15 Oct 2025 13:36:19 +0100 Subject: [PATCH 1/3] Revert "Add 'social_csrf_token' cookie info" (#57987) --- content/site-policy/privacy-policies/github-cookies.md | 1 - 1 file changed, 1 deletion(-) diff --git a/content/site-policy/privacy-policies/github-cookies.md b/content/site-policy/privacy-policies/github-cookies.md index e3dcdede7170..d2c9890d1405 100644 --- a/content/site-policy/privacy-policies/github-cookies.md +++ b/content/site-policy/privacy-policies/github-cookies.md @@ -46,7 +46,6 @@ GitHub | `saml_csrf_token_legacy` | This cookie is set by SAML auth path method GitHub | `saml_return_to` | This cookie is set by the SAML auth path method to maintain state during the SAML authentication loop. | Until user closes browser or completes authentication request GitHub | `saml_return_to_legacy` | This cookie is set by the SAML auth path method to maintain state during the SAML authentication loop. | Until user closes browser or completes authentication request GitHub | `show_cookie_banner` | Set based on the client’s region and used to determine if a cookie consent banner should be shown | Session -GitHub | `social_csrf_token` | This cookie is set by the social initiate path to ensure that the user that started the flow is the same user that completes it. | 5 minutes GitHub | `tz` | This cookie allows us to customize timestamps to your time zone. | Session GitHub | `user_session` | This cookie is used to log you in. | Two weeks [Microsoft](https://privacy.microsoft.com/en-us/privacystatement) | `ai_session` | Application Insights session ID | One year From fdd1e72d84a4b9b5ab7277e7663e4f60ab499b77 Mon Sep 17 00:00:00 2001 From: Anders Peter Fugmann Date: Wed, 15 Oct 2025 14:42:03 +0200 Subject: [PATCH 2/3] =?UTF-8?q?Remove=20note=20that=20C/C++=20BMN=20is=20i?= =?UTF-8?q?n=20preview,=20and=20add=20GHES=203.20=20as=20fully=20=E2=80=A6?= =?UTF-8?q?=20(#57790)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Co-authored-by: Anne-Marie <102995847+am-stead@users.noreply.github.com> --- ...deql-code-scanning-for-compiled-languages.md | 17 ++++++++++++++++- data/features/codeql-no-build-c-cpp.yml | 3 ++- 2 files changed, 18 insertions(+), 2 deletions(-) diff --git a/content/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages.md b/content/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages.md index b68fbf049813..531d9a8c4528 100644 --- a/content/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages.md +++ b/content/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages.md @@ -267,7 +267,22 @@ If you added manual build steps for compiled languages and {% data variables.pro When you enable default setup for a repository that contains C/C++ code, the build mode is set to `none` automatically. ->[!NOTE] Support of build mode `none` for C/C++ codebases is currently in {% data variables.release-phases.public_preview %} and subject to change. +### No build for C/C++ + +{% data variables.product.prodname_codeql %} will infer C/C++ compilation units through source file extensions. For each source file found, compilation flags and include paths are inferred by inspecting the codebase without the need for a working build command. + +#### Accuracy of no build analysis for C/C++ + +Creating a {% data variables.product.prodname_codeql %} C/C++ database without a build may produce less accurate results than using `autobuild` or manual build steps in some cases; for example, if: + +* The code depends heavily on custom macros/defines not available in existing headers +* The codebase has many external dependencies + +You can ensure a more accurate analysis by taking the following steps: + +* Place custom macros and defines in header files that are included in relevant source files +* Ensure external dependencies (headers) are available in system include directories or in the workspace +* Run the extraction on the target platform. For example, choose a Windows runner to analyze Windows projects to give access to platform specific headers and compilers {% endif %} diff --git a/data/features/codeql-no-build-c-cpp.yml b/data/features/codeql-no-build-c-cpp.yml index a95f111c4d43..c2f5d14d7684 100644 --- a/data/features/codeql-no-build-c-cpp.yml +++ b/data/features/codeql-no-build-c-cpp.yml @@ -1,5 +1,6 @@ -# Reference: #16543 (C/C++ public preview) +# Reference: #19520 (C/C++ GA) versions: fpt: '*' ghec: '*' + ghes: '>= 3.20' From b554742225a01f51429f42b36b191087fcc16486 Mon Sep 17 00:00:00 2001 From: Felicity Chapman Date: Wed, 15 Oct 2025 14:14:18 +0100 Subject: [PATCH 3/3] Recreate "Add 'social_csrf_token' cookie info"" (#57988) --- content/site-policy/privacy-policies/github-cookies.md | 1 + 1 file changed, 1 insertion(+) diff --git a/content/site-policy/privacy-policies/github-cookies.md b/content/site-policy/privacy-policies/github-cookies.md index d2c9890d1405..e3dcdede7170 100644 --- a/content/site-policy/privacy-policies/github-cookies.md +++ b/content/site-policy/privacy-policies/github-cookies.md @@ -46,6 +46,7 @@ GitHub | `saml_csrf_token_legacy` | This cookie is set by SAML auth path method GitHub | `saml_return_to` | This cookie is set by the SAML auth path method to maintain state during the SAML authentication loop. | Until user closes browser or completes authentication request GitHub | `saml_return_to_legacy` | This cookie is set by the SAML auth path method to maintain state during the SAML authentication loop. | Until user closes browser or completes authentication request GitHub | `show_cookie_banner` | Set based on the client’s region and used to determine if a cookie consent banner should be shown | Session +GitHub | `social_csrf_token` | This cookie is set by the social initiate path to ensure that the user that started the flow is the same user that completes it. | 5 minutes GitHub | `tz` | This cookie allows us to customize timestamps to your time zone. | Session GitHub | `user_session` | This cookie is used to log you in. | Two weeks [Microsoft](https://privacy.microsoft.com/en-us/privacystatement) | `ai_session` | Application Insights session ID | One year