codeql-analysis.yml 2.0 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980
  1. # Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
  2. #
  3. # SPDX-License-Identifier: curl
  4. name: CodeQL
  5. on:
  6. push:
  7. branches:
  8. - master
  9. - '*/ci'
  10. paths-ignore:
  11. - '**/*.md'
  12. - '.azure-pipelines.yml'
  13. - '.circleci/**'
  14. - '.cirrus.yml'
  15. - 'appveyor.*'
  16. - 'docs/**'
  17. - 'packages/**'
  18. - 'plan9/**'
  19. - 'projects/**'
  20. - 'tests/data/**'
  21. - 'winbuild/**'
  22. pull_request:
  23. branches:
  24. - master
  25. paths-ignore:
  26. - '**/*.md'
  27. - '.azure-pipelines.yml'
  28. - '.circleci/**'
  29. - '.cirrus.yml'
  30. - 'appveyor.*'
  31. - 'docs/**'
  32. - 'packages/**'
  33. - 'plan9/**'
  34. - 'projects/**'
  35. - 'tests/data/**'
  36. - 'winbuild/**'
  37. schedule:
  38. - cron: '0 0 * * 4'
  39. concurrency:
  40. group: ${{ github.workflow }}
  41. permissions: {}
  42. jobs:
  43. codeql:
  44. runs-on: ubuntu-latest
  45. permissions:
  46. security-events: write
  47. steps:
  48. - name: Checkout repository
  49. uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4
  50. # Initializes the CodeQL tools for scanning.
  51. - name: Initialize CodeQL
  52. uses: github/codeql-action/init@b7cec7526559c32f1616476ff32d17ba4c59b2d6 # v3
  53. with:
  54. languages: cpp
  55. queries: security-extended
  56. # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
  57. # If this step fails, then you should remove it and run the build manually (see below)
  58. - name: Autobuild
  59. uses: github/codeql-action/autobuild@b7cec7526559c32f1616476ff32d17ba4c59b2d6 # v3
  60. # ℹ️ Command-line programs to run using the OS shell.
  61. # 📚 https://git.io/JvXDl
  62. # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
  63. # and modify them (or add more) to build your code if your project
  64. # uses a compiled language
  65. # - run: |
  66. # make bootstrap
  67. # make release
  68. - name: Perform CodeQL Analysis
  69. uses: github/codeql-action/analyze@b7cec7526559c32f1616476ff32d17ba4c59b2d6 # v3