Bump ossf/scorecard-action from 15bc21f12b2fbbb36fa93d5f2e786f6b18ffe048 to 405dced65a1dcc6bc335115002f0690b1f1e49bb #1755
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: 'CodeQL' | |
| on: | |
| push: | |
| branches: ['develop'] | |
| pull_request: | |
| branches: ['develop'] | |
| schedule: | |
| - cron: '32 13 * * 0' | |
| permissions: | |
| contents: read | |
| jobs: | |
| analyze: | |
| name: Analyze | |
| runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'blacksmith-4vcpu-ubuntu-2204' }} | |
| timeout-minutes: ${{ (matrix.language == 'swift' && 120) || 360 }} | |
| permissions: | |
| actions: read | |
| contents: read | |
| security-events: write | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| language: ['javascript'] | |
| steps: | |
| - name: Harden Runner | |
| uses: step-security/harden-runner@617de1d11dea286f7a53941812f4667f646e72da | |
| with: | |
| egress-policy: audit | |
| - name: Checkout repository | |
| uses: actions/checkout@85e6279cec87321a52edac9c87bce653a07cf6c2 | |
| - name: Initialize CodeQL | |
| uses: github/codeql-action/init@9f45e7498becbbc08084a122b4be9ab534ac6d88 | |
| with: | |
| languages: ${{ matrix.language }} | |
| - name: Autobuild | |
| uses: github/codeql-action/autobuild@9f45e7498becbbc08084a122b4be9ab534ac6d88 | |
| - name: Perform CodeQL Analysis | |
| uses: github/codeql-action/analyze@9f45e7498becbbc08084a122b4be9ab534ac6d88 | |
| with: | |
| category: '/language:${{ matrix.language }}' |