swift-ui-debug-scan/.github/workflows/security.yml at 2b5cb93b7002afef735d7faf095b59a5b983de78 · ConsultingMD/swift-ui-debug-scan · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
# Security Workflow - CURRENTLY DISABLED
#
# This workflow is commented out because it requires Code Security/Code Scanning
# to be enabled in the repository settings.
#
# To enable this workflow:
# 1. Go to your repository Settings > Security & analysis
# 2. Enable "Code scanning"
# 3. Uncomment this entire file
# 4. The workflow provides automated security scanning with CodeQL
#
# For more information: https://docs.github.com/en/code-security/code-scanning

# name: Security

# on:
#   push:
#     branches: [ main ]
#   pull_request:
#     branches: [ main ]
#   schedule:
#     # Run weekly security scans
#     - cron: '0 2 * * 1'

# jobs:
#   codeql:
#     name: CodeQL Analysis
#     runs-on: macos-14
#     permissions:
#       actions: read
#       contents: read
#       security-events: write
#
#     strategy:
#       fail-fast: false
#       matrix:
#         language: [ 'swift' ]
#
#     steps:
#     - name: Checkout
#       uses: actions/checkout@v4
#
#     - name: Initialize CodeQL
#       uses: github/codeql-action/init@v3
#       with:
#         languages: ${{ matrix.language }}
#
#     - name: Select Xcode Version
#       run: sudo xcode-select -s /Applications/Xcode_16.1.app/Contents/Developer
#
#     - name: Build for CodeQL
#       run: |
#         swift package resolve
#         swift build --configuration release
#
#     - name: Perform CodeQL Analysis
#       uses: github/codeql-action/analyze@v3
#       with:
#         category: "/language:${{matrix.language}}"