Update codeql.yml

gulivero1773 · web-flow · commit e17029cfc203 · 2025-12-11T17:21:29.000+02:00
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -6,35 +6,42 @@ on:
   pull_request:
     branches: [ "main" ]
 
-# Allow one concurrent deployment
+permissions:
+  contents: read
+  security-events: write
+
+# Allow one concurrent scan
 concurrency:
-  group: "scanning"
+  group: "codeql-scan"
   cancel-in-progress: true
 
-
 jobs:
   analyze:
-    name: Analyze
-    runs-on: macos-13
-    permissions:
-      security-events: write
+    name: Analyze Swift with CodeQL
+    runs-on: macos-14
 
     strategy:
       fail-fast: false
       matrix:
         language: [ 'swift' ]
 
     steps:
-    - name: Checkout repository
-      uses: actions/checkout@v3
-
-    - name: Initialize CodeQL
-      uses: github/codeql-action/init@v2
-      with:
-        languages: ${{ matrix.language }}
-
-    - name: Build
-      run: swift build
-    
-    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v2
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Cache Swift build artifacts
+        uses: actions/cache@v3
+        with:
+          path: .build
+          key: swift-build-${{ runner.os }}-${{ hashFiles('**/*.swift') }}
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v3
+        with:
+          languages: ${{ matrix.language }}
+
+      - name: Build
+        run: swift build --configuration release
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v3
