Browse Source
8e6eca8121 Add CodeQL code scanning (Kristaps Kaupe)
Pull request description:
Add [GitHub CodeQL](https://docs.github.com/en/code-security/code-scanning/introduction-to-code-scanning/about-code-scanning-with-codeql) code scanning.
#1648 was already found while testing it.
Top commit has no ACKs.
Tree-SHA512: dd7ca6b21d13f0a1022a613f6f4e0184d17f9a7cd176e7d26060fdc39344b28237f77d1c4be439b96327b528688bb91dd1813c53db769047a39cad0abcd18e31
Kristaps Kaupe
2 years ago
1 changed files with 36 additions and 0 deletions
@ -0,0 +1,36 @@ |
|||||||
|
name: "CodeQL" |
||||||
|
|
||||||
|
on: |
||||||
|
push: |
||||||
|
branches: [ "master" ] |
||||||
|
pull_request: |
||||||
|
branches: [ "master" ] |
||||||
|
schedule: |
||||||
|
- cron: '0 3 * * 1' |
||||||
|
|
||||||
|
jobs: |
||||||
|
analyze: |
||||||
|
name: Analyze |
||||||
|
runs-on: 'ubuntu-latest' |
||||||
|
timeout-minutes: 360 |
||||||
|
permissions: |
||||||
|
security-events: write |
||||||
|
|
||||||
|
strategy: |
||||||
|
fail-fast: false |
||||||
|
matrix: |
||||||
|
language: [ 'python' ] |
||||||
|
|
||||||
|
steps: |
||||||
|
- name: Checkout repository |
||||||
|
uses: actions/checkout@v4 |
||||||
|
|
||||||
|
- name: Initialize CodeQL |
||||||
|
uses: github/codeql-action/init@v3 |
||||||
|
with: |
||||||
|
languages: ${{ matrix.language }} |
||||||
|
|
||||||
|
- name: Perform CodeQL Analysis |
||||||
|
uses: github/codeql-action/analyze@v3 |
||||||
|
with: |
||||||
|
category: "/language:${{matrix.language}}" |
||||||
Loading…
Reference in new issue