Try psalm action

Author: bplainia

.github/workflows/codeql.yml

@@ -11,51 +11,19 @@ on:
 
 jobs:
   analyze:
-    strategy:
-      matrix:
-        php-versions: [ '8.0', '8.1', '8.2', '8.3', '8.4' ]
     runs-on: ubuntu-latest
     timeout-minutes: 10
-    name: Analyze PHP ${{ matrix.php-versions }}
+    name: Analyze PHP 
 
     steps:
       - uses: actions/checkout@v3
         name: Check Out Code
 
-      - name: Setup PHP
-        uses: shivammathur/setup-php@v2
-        with:
-          php-version: ${{ matrix.php-versions }}
-          tools: pecl
-          extensions: pdo_mysql, pdo_pgsql, pdo_sqlite, sqlsrv, pdo_sqlsrv
-
-      - name: Validate composer.json and composer.lock
-        run: composer validate
-
-      - name: Setup Composer Access
-        run: composer config -g github-oauth.github.com ${{ secrets.ACTIONS_ACCESS_TOKEN }}
-
-      - name: Cache Composer packages
-        id: composer-cache
-        uses: actions/cache@v4
-        with:
-          path: vendor
-          key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }}
-          restore-keys: |
-            ${{ runner.os }}-composer-
-
-      - name: Install dependencies
-        if: steps.composer-cache.outputs.cache-hit != 'true'
-        run: composer install --prefer-dist --no-progress --optimize-autoloader
-
-      - name: Perform CodeQL Analysis using Psalm
-        run: |
-          if [ "${{ github.event_name }}" == "pull_request" ]; then
-             vendor/bin/psalm --diff --output-format=sarif --report=psalm-report.sarif || true
-          else
-             vendor/bin/psalm --no-diff --output-format=sarif --report=psalm-report.sarif || true
-          fi
-        continue-on-error: true
+      - name: Psalm
+        uses: docker://ghcr.io/psalm/psalm-github-actions
++       with:
++         security_analysis: true
++         report_file: psalm-report.sarif
 
       - name: Upload SARIF report
         uses: github/codeql-action/upload-sarif@v3