| --- |
| name: CodeQL |
| |
| on: |
| schedule: |
| - cron: "41 3 * * 6" |
| workflow_dispatch: |
| |
| concurrency: |
| group: ${{ github.workflow }} |
| cancel-in-progress: true |
| |
| permissions: {} |
| |
| jobs: |
| analyze: |
| name: Analyze |
| runs-on: ubuntu-latest |
| permissions: |
| security-events: write # necessary according to docs |
| |
| strategy: |
| fail-fast: false |
| matrix: |
| language: [python] |
| |
| steps: |
| - name: Checkout repository |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 |
| with: |
| persist-credentials: false |
| |
| - name: Initialize CodeQL |
| uses: github/codeql-action/init@e46ed2cbd01164d986452f91f178727624ae40d7 # v4.35.3 |
| with: |
| languages: ${{ matrix.language }} |
| |
| - name: Autobuild |
| uses: github/codeql-action/autobuild@e46ed2cbd01164d986452f91f178727624ae40d7 # v4.35.3 |
| |
| - name: Perform CodeQL Analysis |
| uses: github/codeql-action/analyze@e46ed2cbd01164d986452f91f178727624ae40d7 # v4.35.3 |
