codeql.yml
1 # SPDX-License-Identifier: AGPL-3.0-or-later 2 name: CodeQL 3 on: 4 push: 5 branches: [main] 6 pull_request: 7 branches: [main] 8 schedule: 9 - cron: "0 6 * * 1" 10 permissions: read-all 11 jobs: 12 analyze: 13 name: Analyze 14 runs-on: ubuntu-latest 15 permissions: 16 actions: read 17 contents: read 18 security-events: write 19 strategy: 20 fail-fast: false 21 matrix: 22 language: [actions] 23 steps: 24 - name: Checkout 25 uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4 26 - name: Initialize CodeQL 27 uses: github/codeql-action/init@662472033e021d55d94146f66f6058822b0b39fd # v3 28 with: 29 languages: ${{ matrix.language }} 30 - name: Autobuild 31 uses: github/codeql-action/autobuild@662472033e021d55d94146f66f6058822b0b39fd # v3 32 - name: Perform CodeQL Analysis 33 uses: github/codeql-action/analyze@662472033e021d55d94146f66f6058822b0b39fd # v3 34 with: 35 category: "/language:${{ matrix.language }}" 36