| 1 | name: "Code scanning"
|
| 2 |
|
| 3 | on:
|
| 4 | push:
|
| 5 | pull_request:
|
| 6 | schedule:
|
| 7 | - cron: '0 6 * * 0'
|
| 8 |
|
| 9 | jobs:
|
| 10 | CodeQL-Build:
|
| 11 |
|
| 12 | runs-on: ubuntu-latest
|
| 13 |
|
| 14 | steps:
|
| 15 | - name: Checkout repository
|
| 16 | uses: actions/checkout@v2
|
| 17 | with:
|
| 18 | # We must fetch at least the immediate parents so that if this is
|
| 19 | # a pull request then we can checkout the head.
|
| 20 | fetch-depth: 2
|
| 21 |
|
| 22 | # If this run was triggered by a pull request event, then checkout
|
| 23 | # the head of the pull request instead of the merge commit.
|
| 24 | - run: git checkout HEAD^2
|
| 25 | if: ${{ github.event_name == 'pull_request' }}
|
| 26 |
|
| 27 | # Initializes the CodeQL tools for scanning.
|
| 28 | - name: Initialize CodeQL
|
| 29 | uses: github/codeql-action/init@v1
|
| 30 | # Override language selection by uncommenting this and choosing your languages
|
| 31 | # with:
|
| 32 | # languages: go, javascript, csharp, python, cpp, java
|
| 33 |
|
| 34 | # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
|
| 35 | # If this step fails, then you should remove it and run the build manually (see below)
|
| 36 | - name: Autobuild
|
| 37 | uses: github/codeql-action/autobuild@v1
|
| 38 |
|
| 39 | # ℹ️ Command-line programs to run using the OS shell.
|
| 40 | # 📚 https://git.io/JvXDl
|
| 41 |
|
| 42 | # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
|
| 43 | # and modify them (or add more) to build your code if your project
|
| 44 | # uses a compiled language
|
| 45 |
|
| 46 | #- run: |
|
| 47 | # make bootstrap
|
| 48 | # make release
|
| 49 |
|
| 50 | - name: Perform CodeQL Analysis
|
| 51 | uses: github/codeql-action/analyze@v1
|