github.com/klaytn/klaytn@v1.12.1/.github/workflows/CodeQL.yml (about) 1 name: "Code Scanning - Action" 2 3 on: 4 pull_request: 5 branches: [dev, master] 6 types: [opened, synchronize] 7 8 jobs: 9 CodeQL-Build: 10 # CodeQL runs on ubuntu-latest, windows-latest, and macos-latest 11 runs-on: ubuntu-latest 12 13 permissions: 14 # required for all workflows 15 security-events: write 16 17 # only required for workflows in private repositories 18 actions: read 19 contents: read 20 21 steps: 22 - name: Checkout repository 23 uses: actions/checkout@v3 24 25 # Initializes the CodeQL tools for scanning. 26 - name: Initialize CodeQL 27 uses: github/codeql-action/init@v2 28 with: 29 languages: go 30 # Override language selection by uncommenting this and choosing your languages 31 # with: 32 # languages: go, javascript, csharp, python, cpp, java 33 34 # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). 35 # If this step fails, then you should remove it and run the build manually (see below). 36 # - name: Autobuild 37 # uses: github/codeql-action/autobuild@v2 38 39 # âšī¸ Command-line programs to run using the OS shell. 40 # đ See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun 41 42 # âī¸ If the Autobuild fails above, remove it and uncomment the following 43 # three lines and modify them (or add more) to build your code if your 44 # project uses a compiled language 45 46 #- run: | 47 # make bootstrap 48 # make release 49 50 - name: Perform CodeQL Analysis 51 uses: github/codeql-action/analyze@v2