Document unsupported filter patterns in Code Scanning config (#19174)

* Document unsupported filter patterns in Code Scanning config Addresses https://github.com/github/docs-content/issues/4316 * reword and add to newer article Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
2025-12-21 10:57:10 -05:00 · 2021-05-11 04:13:21 -05:00
parent b10c19ffee
commit 4f99affb60
2 changed files with 2 additions and 0 deletions
--- a/content/code-security/secure-coding/configuring-code-scanning.md
+++ b/content/code-security/secure-coding/configuring-code-scanning.md
@@ -319,6 +319,7 @@ paths-ignore:
 **Note**:

 * The `paths` and `paths-ignore` keywords, used in the context of the {% data variables.product.prodname_code_scanning %} configuration file, should not be confused with the same keywords when used for `on.<push|pull_request>.paths` in a workflow. When they are used to modify `on.<push|pull_request>` in a workflow, they determine whether the actions will be run when someone modifies code in the specified directories. For more information, see "[Workflow syntax for {% data variables.product.prodname_actions %}](/actions/reference/workflow-syntax-for-github-actions#onpushpull_requestpaths)."
+* The filter pattern characters `?`, `+`, `[`, `]`, and `!` are not supported and will be matched literally.
 * `**` characters can only be at the start or end of a line, or surrounded by slashes, and you can't mix `**` and other characters. For example, `foo/**`, `**/foo`, and `foo/**/bar` are all allowed syntax, but `**foo` isn't. However you can use single stars along with other characters, as shown in the example. You'll need to quote anything that contains a `*` character.

 {% endnote %}