1# See https://github.com/github/codeql-action/tree/v1 for more information.
2
3name: CodeQL
4
5on:
6 push:
7 branches: [main, stable-*]
8 paths:
9 - .github/workflows/codeql.yml
10 - "**/*.go"
11 - "**/*.js"
12 - "**/*.jsx"
13 pull_request:
14 # The branches below must be a subset of the branches above
15 branches: [main, stable-*]
16 paths:
17 - .github/workflows/codeql.yml
18 - "**/*.go"
19 - "**/*.js"
20 - "**/*.jsx"
21
22jobs:
23 analyze:
24 name: Analyze
25 runs-on: ubuntu-22.04
26 permissions:
27 actions: read
28 contents: read
29 security-events: write
30
31 strategy:
32 fail-fast: false
33 matrix:
34 language:
35 - go
36 - javascript
37
38 steps:
39 - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7
40 with:
41 go-version: "1.22"
42 - name: Checkout
43 uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29
44
45 - name: Initialize
46 # Unpinned action version so that we automatically get analyzer updates.
47 uses: github/codeql-action/init@v3
48 with:
49 languages: ${{ matrix.language }}
50
51 - name: Analyze
52 uses: github/codeql-action/analyze@v3
View as plain text