diff --git a/build-tools/automation/azure-pipelines.yaml b/build-tools/automation/azure-pipelines.yaml index 24e51edfe55..a667506d529 100644 --- a/build-tools/automation/azure-pipelines.yaml +++ b/build-tools/automation/azure-pipelines.yaml @@ -74,10 +74,9 @@ extends: binskim: scanOutputDirectoryOnly: true codeql: - ${{ if ne(variables['Build.SourceBranch'], 'refs/heads/main') }}: - compiled: - enabled: false - justificationForDisabling: CodeQL disabled for non-main branch builds + compiled: + enabled: false + justificationForDisabling: CodeQL runs against the nightly build policheck: enabled: false justification: Built in task does not support multi-language scanning diff --git a/build-tools/automation/yaml-templates/build-linux.yaml b/build-tools/automation/yaml-templates/build-linux.yaml index 796b5fe5df0..f34a25ba776 100644 --- a/build-tools/automation/yaml-templates/build-linux.yaml +++ b/build-tools/automation/yaml-templates/build-linux.yaml @@ -35,11 +35,6 @@ stages: CC: gcc-10 ${{ if eq(parameters.use1ESTemplate, true) }}: templateContext: - sdl: - codeql: - compiled: - enabled: false - justificationForDisabling: CodeQL runs against the Windows build and nightly macOS build outputs: - output: pipelineArtifact displayName: upload linux sdk diff --git a/build-tools/automation/yaml-templates/build-macos.yaml b/build-tools/automation/yaml-templates/build-macos.yaml index eafc4c7499d..c279a6752ba 100644 --- a/build-tools/automation/yaml-templates/build-macos.yaml +++ b/build-tools/automation/yaml-templates/build-macos.yaml @@ -43,11 +43,6 @@ stages: clean: all ${{ if eq(parameters.use1ESTemplate, true) }}: templateContext: - sdl: - codeql: - compiled: - enabled: false - justificationForDisabling: CodeQL runs against the Windows build and nightly macOS build outputParentDirectory: ${{ parameters.xaSourcePath }}/bin outputs: - output: pipelineArtifact