4
0

codeql-analysis.yml 1.8 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475
  1. ---
  2. # For most projects, this workflow file will not need changing; you simply need
  3. # to commit it to your repository.
  4. #
  5. # You may wish to alter this file to override the set of languages analyzed,
  6. # or to provide custom queries or build logic.
  7. #
  8. # ******** NOTE ********
  9. # We have attempted to detect the languages in your repository. Please check
  10. # the `language` matrix defined below to confirm you have the correct set of
  11. # supported CodeQL languages.
  12. #
  13. name: "CodeQL"
  14. on:
  15. push:
  16. paths:
  17. - '.github/workflows/codeql-analysis.yml'
  18. - 'frontend/**'
  19. - 'integration-tests/**'
  20. - 'proto/**'
  21. - 'service/**'
  22. branches: [main]
  23. pull_request:
  24. paths:
  25. - '.github/workflows/codeql-analysis.yml'
  26. - 'frontend/**'
  27. - 'integration-tests/**'
  28. - 'proto/**'
  29. - 'service/**'
  30. branches: [main]
  31. schedule:
  32. - cron: '25 10 * * 5'
  33. jobs:
  34. analyze:
  35. name: Analyze
  36. runs-on: ubuntu-latest
  37. permissions:
  38. actions: read
  39. contents: read
  40. security-events: write
  41. strategy:
  42. fail-fast: false
  43. matrix:
  44. language: ['go', 'javascript']
  45. steps:
  46. - name: Checkout repository
  47. uses: actions/checkout@v4
  48. - name: Setup Go
  49. uses: actions/setup-go@v5
  50. with:
  51. go-version-file: 'service/go.mod'
  52. cache: true
  53. cache-dependency-path: 'service/go.mod'
  54. - name: Setup Node
  55. if: matrix.language == 'javascript'
  56. uses: actions/setup-node@v4
  57. with:
  58. node-version: '22'
  59. # Initializes the CodeQL tools for scanning.
  60. - name: Initialize CodeQL
  61. uses: github/codeql-action/init@v3
  62. with:
  63. languages: ${{ matrix.language }}
  64. - name: Perform CodeQL Analysis
  65. uses: github/codeql-action/analyze@v3
  66. with:
  67. category: "/language:${{matrix.language}}"