github.com/oam-dev/kubevela@v1.9.11/.github/workflows/codeql-analysis.yml

github.com/oam-dev/kubevela@v1.9.11/.github/workflows/codeql-analysis.yml (about)

     1  name: "CodeQL"
     2  
     3  on:
     4    push:
     5      branches: [ master, release-* ]
     6  
     7  permissions:
     8    contents: read
     9  
    10  jobs:
    11    analyze:
    12      name: Analyze
    13      runs-on: ubuntu-22.04
    14  
    15      permissions:
    16        actions: read  # for github/codeql-action/init to get workflow details
    17        security-events: write  # for github/codeql-action/autobuild to send a status report
    18  
    19      strategy:
    20        fail-fast: false
    21        matrix:
    22          language: [ 'go' ]
    23  
    24      steps:
    25        - name: Checkout repository
    26          uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608
    27  
    28        - name: Initialize CodeQL
    29          uses: github/codeql-action/init@959cbb7472c4d4ad70cdfe6f4976053fe48ab394 # v2.1.37
    30          with:
    31            languages: ${{ matrix.language }}
    32  
    33        - name: Autobuild
    34          uses: github/codeql-action/autobuild@959cbb7472c4d4ad70cdfe6f4976053fe48ab394 # v2.1.37
    35  
    36        - name: Perform CodeQL Analysis
    37          uses: github/codeql-action/analyze@959cbb7472c4d4ad70cdfe6f4976053fe48ab394 # v2.1.37