File tree Expand file tree Collapse file tree 1 file changed +46
-0
lines changed
Expand file tree Collapse file tree 1 file changed +46
-0
lines changed Original file line number Diff line number Diff line change 1+ # yaml-language-server: $schema=https://www.schemastore.org/github-workflow.json
2+
3+ name : CodeQL
4+
5+ on :
6+ push :
7+ branches : [main]
8+ pull_request :
9+ branches : [main]
10+ schedule :
11+ # Run weekly on Sundays at 04:00 UTC
12+ - cron : " 0 4 * * 0"
13+
14+ # Cancel in-progress runs for PRs
15+ concurrency :
16+ group : ${{ github.workflow }}-${{ github.ref }}
17+ cancel-in-progress : ${{ github.event_name == 'pull_request' }}
18+
19+ permissions :
20+ contents : read
21+ security-events : write
22+
23+ jobs :
24+ analyze :
25+ name : Analyze
26+ runs-on : ubuntu-latest
27+ if : github.actor != 'dependabot[bot]'
28+ permissions :
29+ contents : read
30+ security-events : write
31+
32+ steps :
33+ - name : Checkout code
34+ uses : actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
35+
36+ - name : Initialize CodeQL
37+ uses : github/codeql-action/init@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
38+ with :
39+ languages : actions
40+ # CodeQL's Rust support is experimental
41+ # Using 'actions' to analyze GitHub Actions workflows for misconfigurations
42+
43+ - name : Perform CodeQL Analysis
44+ uses : github/codeql-action/analyze@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
45+ with :
46+ category : " /language:actions"
You can’t perform that action at this time.
0 commit comments