Skip to content

Commit 8f57616

Browse files
committed
Fix CodeQL Analysis
1 parent aef6760 commit 8f57616

1 file changed

Lines changed: 48 additions & 0 deletions

File tree

Lines changed: 48 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,48 @@
1+
name: "CodeQL"
2+
3+
on:
4+
push:
5+
branches: [master]
6+
pull_request:
7+
branches: [master]
8+
schedule:
9+
- cron: '0 12 * * 6'
10+
11+
permissions:
12+
contents: read
13+
14+
jobs:
15+
analyze:
16+
name: Analyze
17+
runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }}
18+
permissions:
19+
actions: read
20+
contents: read
21+
security-events: write
22+
23+
strategy:
24+
fail-fast: false
25+
matrix:
26+
language: ['python', 'actions']
27+
28+
steps:
29+
- name: Harden Runner
30+
uses: step-security/harden-runner@v2.16.0
31+
with:
32+
egress-policy: audit
33+
34+
- name: Checkout repository
35+
uses: actions/checkout@v4.2.2
36+
37+
- name: Initialize CodeQL
38+
uses: github/codeql-action/init@v3.28.3
39+
with:
40+
languages: ${{ matrix.language }}
41+
42+
- name: Autobuild
43+
uses: github/codeql-action/autobuild@v3.28.3
44+
45+
- name: Perform CodeQL Analysis
46+
uses: github/codeql-action/analyze@v3.28.3
47+
with:
48+
category: "/language:${{matrix.language}}"

0 commit comments

Comments
 (0)