github.com/getgauge/gauge@v1.6.9/.github/workflows/codeql-analysis.yml (about) 1 name: "CodeQL" 2 3 on: 4 push: 5 branches: [master, ] 6 pull_request: 7 # The branches below must be a subset of the branches above 8 branches: [master] 9 schedule: 10 - cron: '0 21 * * 5' 11 12 permissions: 13 contents: read 14 15 jobs: 16 analyse: 17 permissions: 18 actions: read # for github/codeql-action/init to get workflow details 19 contents: read # for actions/checkout to fetch code 20 security-events: write # for github/codeql-action/autobuild to send a status report 21 name: Analyse 22 runs-on: ubuntu-latest 23 24 steps: 25 - uses: actions/checkout@v4 26 27 - name: Set up Go 28 uses: actions/setup-go@v5 29 with: 30 check-latest: true 31 go-version-file: 'go.mod' 32 33 # Initializes the CodeQL tools for scanning. 34 - name: Initialize CodeQL 35 uses: github/codeql-action/init@v3 36 # Override language selection by uncommenting this and choosing your languages 37 # with: 38 # languages: go, javascript, csharp, python, cpp, java 39 40 # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). 41 # If this step fails, then you should remove it and run the build manually (see below) 42 - name: Autobuild 43 uses: github/codeql-action/autobuild@v3 44 45 # âšī¸ Command-line programs to run using the OS shell. 46 # đ https://git.io/JvXDl 47 48 # âī¸ If the Autobuild fails above, remove it and uncomment the following three lines 49 # and modify them (or add more) to build your code if your project 50 # uses a compiled language 51 52 #- run: | 53 # make bootstrap 54 # make release 55 56 - name: Perform CodeQL Analysis 57 uses: github/codeql-action/analyze@v3