1# For most projects, this workflow file will not need changing; you simply need
2# to commit it to your repository.
3#
4# You may wish to alter this file to override the set of languages analyzed,
5# or to provide custom queries or build logic.
6name: "CodeQL"
7
8on:
9 push:
10 branches: [ master ]
11 pull_request:
12 # The branches below must be a subset of the branches above
13 branches: [ master ]
14 schedule:
15 - cron: '0 17 * * 5'
16
17jobs:
18 analyze:
19 name: Analyze
20 runs-on: ubuntu-latest
21
22 permissions:
23 # required for all workflows
24 security-events: write
25
26 strategy:
27 fail-fast: false
28 matrix:
29 # Override automatic language detection by changing the below list
30 # Supported options are ['csharp', 'cpp', 'go', 'java', 'javascript', 'python']
31 # TODO: Enable for javascript later
32 language: [ 'go']
33
34 steps:
35 - name: Checkout repository
36 uses: actions/checkout@v3
37
38 # Initializes the CodeQL tools for scanning.
39 - name: Initialize CodeQL
40 uses: github/codeql-action/init@v2
41 with:
42 languages: ${{ matrix.language }}
43 # If you wish to specify custom queries, you can do so here or in a config file.
44 # By default, queries listed here will override any specified in a config file.
45 # Prefix the list here with "+" to use these queries and those in the config file.
46 # queries: ./path/to/local/query, your-org/your-repo/queries@main
47
48 - name: Perform CodeQL Analysis
49 uses: github/codeql-action/analyze@v2
View as plain text