Add CodeQL workflow for GitHub code scanning (#131)
Co-authored-by: LGTM Migrator <lgtm-migrator@users.noreply.github.com>
lgtm-com[bot] authored 1 year, 5 months ago
GitHub committed 1 year, 5 months ago
0 | name: "CodeQL" | |
1 | ||
2 | on: | |
3 | push: | |
4 | branches: [ "master" ] | |
5 | pull_request: | |
6 | branches: [ "master" ] | |
7 | schedule: | |
8 | - cron: "4 18 * * 3" | |
9 | ||
10 | jobs: | |
11 | analyze: | |
12 | name: Analyze | |
13 | runs-on: ubuntu-latest | |
14 | permissions: | |
15 | actions: read | |
16 | contents: read | |
17 | security-events: write | |
18 | ||
19 | strategy: | |
20 | fail-fast: false | |
21 | matrix: | |
22 | language: [ python ] | |
23 | ||
24 | steps: | |
25 | - name: Checkout | |
26 | uses: actions/checkout@v3 | |
27 | ||
28 | - name: Initialize CodeQL | |
29 | uses: github/codeql-action/init@v2 | |
30 | with: | |
31 | languages: ${{ matrix.language }} | |
32 | queries: +security-and-quality | |
33 | ||
34 | - name: Autobuild | |
35 | uses: github/codeql-action/autobuild@v2 | |
36 | ||
37 | - name: Perform CodeQL Analysis | |
38 | uses: github/codeql-action/analyze@v2 | |
39 | with: | |
40 | category: "/language:${{ matrix.language }}" |