Code Scanning using Github Advanced Security

[ksuhag]

Select Topic Area

Question

Body

Hi,
I am using Github Advanced Secuirty on my azure devops project. Which is written using typescript langugage.
Below is the yml file content used in the pipeline

Starter pipeline

Start with a minimal pipeline that you can customize to build and deploy your code.

Add steps that build, run tests, deploy, and more:

https://aka.ms/yaml

trigger:

• dev

pool:
vmImage: ubuntu-latest

steps:

• task: AdvancedSecurity-Dependency-Scanning@1
  displayName: 'Run Advanced Dependency Scanning'

Static Code Analysis

• task: AdvancedSecurity-Codeql-Init@1
  displayName: Initialize CodeQL
  inputs:
  languages: 'typescript'
  failOnIssues: true
• task: AdvancedSecurity-Codeql-Analyze@1
  displayName: Perform CodeQL Analysis
• task: AdvancedSecurity-Publish@1

Security Policy Enforcement

• script: |
  echo Add other tasks to build, test, and deploy your project.
  echo See https://aka.ms/yaml
  displayName: 'Run a multi-line script'

  I get an error saying typescript is not valid selection. is there a way to use this scanning typescript project?

[hvitved]

You may need to specify javascript instead.

[github-actions[bot]]

🕒 Discussion Activity Reminder 🕒

This Discussion has been labeled as dormant by an automated system for having no activity in the last 60 days. Please consider one the following actions:

1️⃣ Close as Out of Date: If the topic is no longer relevant, close the Discussion as out of date at the bottom of the page.

2️⃣ Provide More Information: Share additional details or context — or let the community know if you've found a solution on your own.

3️⃣ Mark a Reply as Answer: If your question has been answered by a reply, mark the most helpful reply as the solution.

Note: This dormant notification will only apply to Discussions with the Question label. To learn more, see our recent announcement.

Thank you for helping bring this Discussion to a resolution! 💬