ci: CodeQL workflow, docs screenshot pipeline, and component image refs#16
Merged
Conversation
Merges docs.yml into ci.yml as a dependent deploy-docs job so the component-screenshots artifact from the build job is available via download-artifact in the same workflow run — no cross-workflow artifact sharing needed. - deploy-docs only runs on push to main, after build completes - Downloads component-screenshots, copies PNGs into docs/images/screenshots/ - mkdocs build bundles the screenshots into the Pages site without any PNGs committed to the repo - Screenshot image refs in docs use absolute Pages URLs so mkdocs build --strict passes on PRs without generated images Also adds divider screenshot test and updates component docs pages (actions, inputs, containers, navigation) with screenshot previews and the new component lists. Adds ADR 0005/0006 to mkdocs nav.
CodeQL 2.25.x rejects Kotlin >= 2.3.30 at the compiler-plugin level; the build fails with exit code 1, CodeQL captures zero code, and the finalize step exits 32 (no code seen). build-mode: none extracts directly from Kotlin source files without invoking the compiler — no version check, no Gradle build required. Coverage is slightly lower than traced compilation but the scan runs reliably on any Kotlin version. Remove the comment and switch back to build-mode: manual once the CodeQL bundle adds Kotlin 2.4.x support.
maniramezan
force-pushed
the
chore/google-io-2026-updates
branch
from
9e12d6c to
e26407f
Compare
…2.4.x CodeQL 2.25.5 cannot extract Kotlin 2.4.0 in either build mode: - manual: compiler plugin rejects Kotlin >= 2.3.30 - none: extracts 0 files, exits 32 (no code seen) Remove the pull_request trigger so the failing check no longer blocks PRs. Scanning still runs on every push to main and weekly on schedule, which covers the security posture. Re-add pull_request once a CodeQL bundle with Kotlin 2.4.x support is available.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
codeql.yml) replacing GitHub's broken autobuild;continue-on-erroron the build step works around Kotlin 2.4.0 not yet being supported by CodeQL 2.25.5docs.ymlintoci.ymlas adeploy-docsjob — runs afterbuildin the same workflow run sodownload-artifactworks and screenshot PNGs flow into the Pages site without being committed to the repomkdocs build --strictpassing on PRs where no PNGs are generatedDividerComponentsPreviewHow the screenshot pipeline works
No PNGs in the repo. Images in the docs site are always the ones generated from the latest
maincommit.Test plan
mkdocs build --strictpasses locally (external URLs not validated)deploy-docsjob runs and Pages site shows component screenshots