From 536e4a0b38c69879aad8380b0a2dcf49c0612b7f Mon Sep 17 00:00:00 2001 From: Jan Knipper Date: Tue, 3 Sep 2024 14:21:54 +0200 Subject: [PATCH] Ad CodeQL check --- .github/workflows/codeql.yaml | 35 +++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 .github/workflows/codeql.yaml diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml new file mode 100644 index 0000000..28ae149 --- /dev/null +++ b/.github/workflows/codeql.yaml @@ -0,0 +1,35 @@ +name: CodeQL +"on": + push: + branches: + - master + pull_request: + branches: + - master + schedule: + - cron: '00 07 * * 1' +permissions: + actions: read + contents: read + security-events: write +jobs: + analyze: + name: CodeQL + runs-on: ubuntu-latest + steps: + - name: Check out code + uses: actions/checkout@v4 + - name: Set up Go + uses: actions/setup-go@v5 + with: + check-latest: true + go-version: 1.22.6 + - name: Initialize CodeQL + uses: github/codeql-action/init@v3 + with: + languages: go + queries: security-extended + - name: Autobuild + uses: github/codeql-action/autobuild@v3 + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v3