2020-09-01 14:22:36 -05:00
|
|
|
|
name: 'Code scanning - action'
|
2020-06-07 11:29:52 -05:00
|
|
|
|
|
|
|
|
|
on:
|
2024-10-06 02:02:47 -05:00
|
|
|
|
push:
|
|
|
|
|
paths:
|
|
|
|
|
- .github/workflows/codeql-analysis.yml
|
|
|
|
|
- 'packages/**'
|
2020-06-07 11:29:52 -05:00
|
|
|
|
pull_request:
|
2020-12-22 07:10:20 -05:00
|
|
|
|
paths:
|
2021-04-11 02:05:27 -05:00
|
|
|
|
- .github/workflows/codeql-analysis.yml
|
2020-12-22 07:10:20 -05:00
|
|
|
|
- 'packages/**'
|
2020-06-07 11:29:52 -05:00
|
|
|
|
schedule:
|
|
|
|
|
- cron: '0 2 * * 4'
|
|
|
|
|
|
2022-04-28 11:06:00 -05:00
|
|
|
|
permissions:
|
|
|
|
|
contents: read
|
|
|
|
|
|
2024-08-03 03:35:46 -05:00
|
|
|
|
concurrency:
|
|
|
|
|
group: code-${{ github.ref }}
|
2024-10-06 02:02:47 -05:00
|
|
|
|
cancel-in-progress: true
|
2024-08-03 03:35:46 -05:00
|
|
|
|
|
2020-06-07 11:29:52 -05:00
|
|
|
|
jobs:
|
|
|
|
|
CodeQL-Build:
|
2022-04-28 11:06:00 -05:00
|
|
|
|
permissions:
|
|
|
|
|
actions: read # for github/codeql-action/init to get workflow details
|
|
|
|
|
contents: read # for actions/checkout to fetch code
|
|
|
|
|
security-events: write # for github/codeql-action/autobuild to send a status report
|
2020-09-01 14:22:36 -05:00
|
|
|
|
runs-on: ubuntu-latest
|
2020-06-07 11:29:52 -05:00
|
|
|
|
|
|
|
|
|
steps:
|
2020-09-01 14:22:36 -05:00
|
|
|
|
- name: Checkout repository
|
2024-10-05 11:40:07 -05:00
|
|
|
|
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
|
2020-09-01 14:22:36 -05:00
|
|
|
|
with:
|
|
|
|
|
# We must fetch at least the immediate parents so that if this is
|
|
|
|
|
# a pull request then we can checkout the head.
|
|
|
|
|
fetch-depth: 2
|
|
|
|
|
|
|
|
|
|
# Initializes the CodeQL tools for scanning.
|
|
|
|
|
- name: Initialize CodeQL
|
2024-10-01 15:21:36 -05:00
|
|
|
|
uses: github/codeql-action/init@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v2
|
2024-10-06 02:02:47 -05:00
|
|
|
|
with:
|
|
|
|
|
config: |
|
|
|
|
|
paths-ignore:
|
|
|
|
|
- packages/config/test/partials/config/js/invalid.js
|
|
|
|
|
- packages/middleware/test/static/js
|
2020-09-01 14:22:36 -05:00
|
|
|
|
|
2020-06-07 11:29:52 -05:00
|
|
|
|
# Override language selection by uncommenting this and choosing your languages
|
|
|
|
|
# with:
|
|
|
|
|
# languages: go, javascript, csharp, python, cpp, java
|
2020-09-01 14:22:36 -05:00
|
|
|
|
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
|
|
|
|
|
# If this step fails, then you should remove it and run the build manually (see below)
|
|
|
|
|
- name: Autobuild
|
2024-10-01 15:21:36 -05:00
|
|
|
|
uses: github/codeql-action/autobuild@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v2
|
2020-06-07 11:29:52 -05:00
|
|
|
|
|
2020-09-01 14:22:36 -05:00
|
|
|
|
# ℹ️ Command-line programs to run using the OS shell.
|
|
|
|
|
# 📚 https://git.io/JvXDl
|
2020-06-07 11:29:52 -05:00
|
|
|
|
|
2020-09-01 14:22:36 -05:00
|
|
|
|
# ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
|
|
|
|
|
# and modify them (or add more) to build your code if your project
|
|
|
|
|
# uses a compiled language
|
2020-06-07 11:29:52 -05:00
|
|
|
|
|
2020-09-01 14:22:36 -05:00
|
|
|
|
#- run: |
|
|
|
|
|
# make bootstrap
|
|
|
|
|
# make release
|
2020-06-07 11:29:52 -05:00
|
|
|
|
|
2020-09-01 14:22:36 -05:00
|
|
|
|
- name: Perform CodeQL Analysis
|
2024-10-01 15:21:36 -05:00
|
|
|
|
uses: github/codeql-action/analyze@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v2
|