2020-10-23 02:43:28 +02:00
|
|
|
name: "Code scanning"
|
2020-06-25 20:29:26 +02:00
|
|
|
|
2021-08-04 11:34:21 +02:00
|
|
|
on:
|
|
|
|
push:
|
2022-07-05 23:57:53 +02:00
|
|
|
branches: ["*.x", chat.zulip.org, main]
|
|
|
|
tags: ["*"]
|
|
|
|
pull_request:
|
2022-07-07 22:23:25 +02:00
|
|
|
branches: ["*.x", chat.zulip.org, main]
|
2022-07-05 23:57:53 +02:00
|
|
|
workflow_dispatch:
|
2020-06-25 20:29:26 +02:00
|
|
|
|
2022-07-05 01:14:47 +02:00
|
|
|
concurrency:
|
|
|
|
group: "${{ github.workflow }}-${{ github.head_ref || github.run_id }}"
|
|
|
|
cancel-in-progress: true
|
|
|
|
|
2022-08-30 02:12:55 +02:00
|
|
|
permissions:
|
|
|
|
contents: read
|
|
|
|
|
2020-06-25 20:29:26 +02:00
|
|
|
jobs:
|
2020-07-07 20:07:13 +02:00
|
|
|
CodeQL:
|
2022-08-30 02:12:55 +02:00
|
|
|
permissions:
|
|
|
|
actions: read # for github/codeql-action/init to get workflow details
|
|
|
|
contents: read # for actions/checkout to fetch code
|
|
|
|
security-events: write # for github/codeql-action/analyze to upload SARIF results
|
2021-10-01 01:16:31 +02:00
|
|
|
if: ${{!github.event.repository.private}}
|
2020-06-25 20:29:26 +02:00
|
|
|
runs-on: ubuntu-latest
|
|
|
|
|
|
|
|
steps:
|
2020-10-13 23:50:18 +02:00
|
|
|
- name: Check out repository
|
2024-02-22 00:24:18 +01:00
|
|
|
uses: actions/checkout@v4
|
2020-06-25 20:29:26 +02:00
|
|
|
|
2020-07-01 21:19:49 +02:00
|
|
|
# Initializes the CodeQL tools for scanning.
|
|
|
|
- name: Initialize CodeQL
|
2022-07-06 00:16:38 +02:00
|
|
|
uses: github/codeql-action/init@v2
|
2020-06-25 20:29:26 +02:00
|
|
|
|
2020-07-01 21:19:49 +02:00
|
|
|
# Override language selection by uncommenting this and choosing your languages
|
|
|
|
# with:
|
|
|
|
# languages: go, javascript, csharp, python, cpp, java
|
2021-08-03 21:38:25 +02:00
|
|
|
|
2020-07-01 21:19:49 +02:00
|
|
|
- name: Perform CodeQL Analysis
|
2022-07-06 00:16:38 +02:00
|
|
|
uses: github/codeql-action/analyze@v2
|