Add CodeQL workflow for GitHub code scanning (#131)
Co-authored-by: LGTM Migrator <lgtm-migrator@users.noreply.github.com>
lgtm-com[bot] authored 1 year, 5 months ago
GitHub committed 1 year, 5 months ago
| 0 | name: "CodeQL" | |
| 1 | ||
| 2 | on: | |
| 3 | push: | |
| 4 | branches: [ "master" ] | |
| 5 | pull_request: | |
| 6 | branches: [ "master" ] | |
| 7 | schedule: | |
| 8 | - cron: "4 18 * * 3" | |
| 9 | ||
| 10 | jobs: | |
| 11 | analyze: | |
| 12 | name: Analyze | |
| 13 | runs-on: ubuntu-latest | |
| 14 | permissions: | |
| 15 | actions: read | |
| 16 | contents: read | |
| 17 | security-events: write | |
| 18 | ||
| 19 | strategy: | |
| 20 | fail-fast: false | |
| 21 | matrix: | |
| 22 | language: [ python ] | |
| 23 | ||
| 24 | steps: | |
| 25 | - name: Checkout | |
| 26 | uses: actions/checkout@v3 | |
| 27 | ||
| 28 | - name: Initialize CodeQL | |
| 29 | uses: github/codeql-action/init@v2 | |
| 30 | with: | |
| 31 | languages: ${{ matrix.language }} | |
| 32 | queries: +security-and-quality | |
| 33 | ||
| 34 | - name: Autobuild | |
| 35 | uses: github/codeql-action/autobuild@v2 | |
| 36 | ||
| 37 | - name: Perform CodeQL Analysis | |
| 38 | uses: github/codeql-action/analyze@v2 | |
| 39 | with: | |
| 40 | category: "/language:${{ matrix.language }}" |