| name: "CodeQL" |
| |
| on: |
| push: |
| branches: [ "main" ] |
| pull_request: |
| branches: [ "main" ] |
| schedule: |
| - cron: "22 5 * * 5" |
| |
| jobs: |
| analyze: |
| name: Analyze |
| runs-on: ubuntu-latest |
| permissions: |
| actions: read |
| contents: read |
| security-events: write |
| |
| strategy: |
| fail-fast: false |
| matrix: |
| language: [ javascript, python ] |
| |
| steps: |
| - name: Checkout |
| uses: actions/checkout@v3 |
| |
| - name: Initialize CodeQL |
| uses: github/codeql-action/init@v2 |
| with: |
| languages: ${{ matrix.language }} |
| queries: +security-and-quality |
| |
| - name: Autobuild |
| uses: github/codeql-action/autobuild@v2 |
| if: ${{ matrix.language == 'javascript' || matrix.language == 'python' }} |
| |
| - name: Perform CodeQL Analysis |
| uses: github/codeql-action/analyze@v2 |
| with: |
| category: "/language:${{ matrix.language }}" |