File tree Expand file tree Collapse file tree 2 files changed +66
-0
lines changed
Expand file tree Collapse file tree 2 files changed +66
-0
lines changed Original file line number Diff line number Diff line change 1+ version : 2
2+
3+ updates :
4+ - package-ecosystem : " composer"
5+ directory : " /"
6+ schedule :
7+ interval : " weekly"
8+ open-pull-requests-limit : 0
9+ labels :
10+ - " php"
11+ - " security"
12+ - " dependencies"
13+ groups :
14+ php-security :
15+ applies-to : security-updates
16+ patterns :
17+ - " *"
18+
19+ - package-ecosystem : " github-actions"
20+ directory : " /"
21+ schedule :
22+ interval : " weekly"
23+ commit-message :
24+ prefix : " build"
25+ labels :
26+ - " dependencies"
27+ - " github-actions"
28+ groups :
29+ github-actions :
30+ patterns :
31+ - " *"
Original file line number Diff line number Diff line change 1+ name : Security checks
2+
3+ on :
4+ push :
5+ branches : [ "main" ]
6+ pull_request :
7+ branches : [ "main" ]
8+ schedule :
9+ - cron : " 0 0 * * *"
10+
11+ permissions :
12+ actions : read
13+ contents : read
14+ security-events : write
15+
16+ jobs :
17+ analyze :
18+ name : Analyze
19+ runs-on : ubuntu-latest
20+ strategy :
21+ fail-fast : false
22+ matrix :
23+ language : [ "php", "actions" ]
24+
25+ steps :
26+ - name : Checkout repository
27+ uses : actions/checkout@v6
28+
29+ - name : Initialize CodeQL
30+ uses : github/codeql-action/init@v4
31+ with :
32+ languages : ${{ matrix.language }}
33+
34+ - name : Perform CodeQL analysis
35+ uses : github/codeql-action/analyze@v4
You can’t perform that action at this time.
0 commit comments