lumin/phoenix
1
0
Fork 0
mirror of https://github.com/ordinary-dev/phoenix synced 2024-09-20 03:40:29 +05:00
Code Issues Actions Packages Projects Releases Wiki Activity
phoenix/.github/workflows/codeql.yml

38 lines
877 B
YAML
Raw Permalink Normal View History

Create codeql.yml
2023-09-03 19:35:01 +05:00
name: "CodeQL"
on:
push:
branches: [ "production" ]
pull_request:
# The branches below must be a subset of the branches above
branches: [ "production" ]
jobs:
codeql-analyze:
name: CodeQL Analyze
runs-on: 'ubuntu-latest'
timeout-minutes: 360
permissions:
actions: read
contents: read
security-events: write
steps:
- name: Checkout repository
Bump actions/checkout from 3 to 4 Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
2023-09-11 11:36:52 +05:00
uses: actions/checkout@v4
Create codeql.yml
2023-09-03 19:35:01 +05:00
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
Bump github/codeql-action from 2 to 3 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v2...v3) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
2023-12-18 11:17:35 +05:00
uses: github/codeql-action/init@v3
Create codeql.yml
2023-09-03 19:35:01 +05:00
with:
languages: go
# Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift).
- name: Autobuild
Bump github/codeql-action from 2 to 3 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v2...v3) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
2023-12-18 11:17:35 +05:00
uses: github/codeql-action/autobuild@v3
Create codeql.yml
2023-09-03 19:35:01 +05:00
- name: Perform CodeQL Analysis
Bump github/codeql-action from 2 to 3 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v2...v3) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
2023-12-18 11:17:35 +05:00
uses: github/codeql-action/analyze@v3
Create codeql.yml
2023-09-03 19:35:01 +05:00
with:
category: "/language:go"
Reference in a new issue Copy permalink