codeql-analysis.yml 1.2 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950
  1. name: codeql
  2. on:
  3. # Trigger the workflow on push or pull requests, but only for the
  4. # master branch
  5. push:
  6. branches:
  7. - master
  8. - '*/ci'
  9. pull_request:
  10. branches:
  11. - master
  12. schedule:
  13. - cron: '0 0 * * 4'
  14. permissions:
  15. security-events: write
  16. jobs:
  17. codeql:
  18. runs-on: ubuntu-latest
  19. steps:
  20. - name: Checkout repository
  21. uses: actions/checkout@v2
  22. # Initializes the CodeQL tools for scanning.
  23. - name: Initialize CodeQL
  24. uses: github/codeql-action/init@v1
  25. with:
  26. languages: cpp
  27. queries: security-extended
  28. # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
  29. # If this step fails, then you should remove it and run the build manually (see below)
  30. - name: Autobuild
  31. uses: github/codeql-action/autobuild@v1
  32. # ℹ️ Command-line programs to run using the OS shell.
  33. # 📚 https://git.io/JvXDl
  34. # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
  35. # and modify them (or add more) to build your code if your project
  36. # uses a compiled language
  37. #- run: |
  38. # make bootstrap
  39. # make release
  40. - name: Perform CodeQL Analysis
  41. uses: github/codeql-action/analyze@v1