github.com/massongit/reviewdog@v0.0.0-20240331071725-4a16675475a8/.github/workflows/codeql-analysis.yml

github.com/massongit/reviewdog@v0.0.0-20240331071725-4a16675475a8/.github/workflows/codeql-analysis.yml (about)

     1  name: "Code scanning - action"
     2  
     3  on:
     4    push:
     5    pull_request:
     6    schedule:
     7      - cron: '0 10 * * 6'
     8  
     9  jobs:
    10    CodeQL-Build:
    11  
    12      permissions:
    13        actions: read
    14        contents: read
    15        security-events: write
    16      runs-on: ubuntu-latest
    17  
    18      steps:
    19      - name: Checkout repository
    20        uses: actions/checkout@v4
    21  
    22      # Initializes the Golang environment for the CodeQL tools.
    23      # https://github.com/github/codeql-action/issues/1842#issuecomment-1704398087
    24      - name: Install Go
    25        uses: actions/setup-go@v5
    26        with:
    27          go-version-file: go.mod
    28  
    29      # Initializes the CodeQL tools for scanning.
    30      - name: Initialize CodeQL
    31        uses: github/codeql-action/init@v3
    32        with:
    33          languages: go
    34  
    35      # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
    36      # If this step fails, then you should remove it and run the build manually (see below)
    37      - name: Autobuild
    38        uses: github/codeql-action/autobuild@v3
    39  
    40      - name: Perform CodeQL Analysis
    41        uses: github/codeql-action/analyze@v3