|
1 | | -# For most projects, this workflow file will not need changing; you simply need |
2 | | -# to commit it to your repository. |
3 | | -# |
4 | | -# You may wish to alter this file to override the set of languages analyzed, |
5 | | -# or to provide custom queries or build logic. |
6 | | -# |
7 | | -# ******** NOTE ******** |
8 | | -# We have attempted to detect the languages in your repository. Please check |
9 | | -# the `language` matrix defined below to confirm you have the correct set of |
10 | | -# supported CodeQL languages. |
11 | | -# |
12 | 1 | name: "CodeQL Advanced" |
13 | 2 |
|
14 | 3 | on: |
15 | 4 | push: |
16 | 5 | branches: [ "main" ] |
17 | 6 | pull_request: |
18 | 7 | branches: [ "main" ] |
| 8 | + paths: |
| 9 | + - src |
19 | 10 |
|
20 | 11 | jobs: |
21 | 12 | analyze: |
22 | 13 | name: Analyze (${{ matrix.language }}) |
23 | | - # Runner size impacts CodeQL analysis time. To learn more, please see: |
24 | | - # - https://gh.io/recommended-hardware-resources-for-running-codeql |
25 | | - # - https://gh.io/supported-runners-and-hardware-resources |
26 | | - # - https://gh.io/using-larger-runners (GitHub.com only) |
27 | | - # Consider using larger runners or machines with greater resources for possible analysis time improvements. |
28 | 14 | runs-on: 'ubuntu-latest' |
29 | 15 | permissions: |
30 | 16 | # required for all workflows |
|
47 | 33 | - name: Checkout repository |
48 | 34 | uses: actions/checkout@v4 |
49 | 35 |
|
50 | | - # Add any setup steps before running the `github/codeql-action/init` action. |
51 | | - # This includes steps like installing compilers or runtimes (`actions/setup-node` |
52 | | - # or others). This is typically only required for manual builds. |
53 | | - # - name: Setup runtime (example) |
54 | | - # uses: actions/setup-example@v1 |
55 | | - |
56 | 36 | # Initializes the CodeQL tools for scanning. |
57 | 37 | - name: Initialize CodeQL |
58 | 38 | uses: github/codeql-action/init@v3 |
|
65 | 45 | # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs |
66 | 46 | queries: ${{ matrix.language && 'security-extended' }} |
67 | 47 |
|
68 | | - # If the analyze step fails for one of the languages you are analyzing with |
| 48 | + # If the "analyze" step fails for one of the languages you are analyzing with |
69 | 49 | # "We were unable to automatically build your code", modify the matrix above |
70 | 50 | # to set the build mode to "manual" for that language. Then modify this step |
71 | 51 | # to build your code. |
|
0 commit comments