1
1
# For most projects, this workflow file will not need changing; you simply need
2
- # to commit it to your repository.
3
- #
4
- # You may wish to alter this file to override the set of languages analyzed,
5
- # or to provide custom queries or build logic.
6
- #
7
- # ******** NOTE ********
8
- # We have attempted to detect the languages in your repository. Please check
9
- # the `language` matrix defined below to confirm you have the correct set of
10
- # supported CodeQL languages.
11
- #
2
+ # to commit it to your repository.
3
+ #
4
+ # You may wish to alter this file to override the set of languages analyzed,
5
+ # or to provide custom queries or build logic.
6
+ #
7
+ # ******** NOTE ********
8
+ # We have attempted to detect the languages in your repository. Please check
9
+ # the `language` matrix defined below to confirm you have the correct set of
10
+ # supported CodeQL languages.
11
+ #
12
12
name : " CodeQL"
13
13
14
14
on :
15
15
push :
16
- branches : [ main ]
16
+ branches : [main]
17
17
pull_request :
18
18
# The branches below must be a subset of the branches above
19
- branches : [ main ]
19
+ branches : [main]
20
20
schedule :
21
- - cron : ' 26 22 * * 5'
21
+ - cron : " 26 22 * * 5"
22
22
23
23
jobs :
24
24
analyze :
@@ -28,40 +28,40 @@ jobs:
28
28
strategy :
29
29
fail-fast : false
30
30
matrix :
31
- language : [ ' python' ]
31
+ language : [" python" ]
32
32
# CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python' ]
33
33
# Learn more:
34
34
# https://docs.github.com/en/free-pro-team@latest/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#changing-the-languages-that-are-analyzed
35
35
36
36
steps :
37
- - name : Checkout repository
38
- uses : actions/checkout@v2
37
+ - name : Checkout repository
38
+ uses : actions/checkout@v2
39
39
40
- # Initializes the CodeQL tools for scanning.
41
- - name : Initialize CodeQL
42
- uses : github/codeql-action/init@v1
43
- with :
44
- languages : ${{ matrix.language }}
45
- # If you wish to specify custom queries, you can do so here or in a config file.
46
- # By default, queries listed here will override any specified in a config file.
47
- # Prefix the list here with "+" to use these queries and those in the config file.
48
- # queries: ./path/to/local/query, your-org/your-repo/queries@main
40
+ # Initializes the CodeQL tools for scanning.
41
+ - name : Initialize CodeQL
42
+ uses : github/codeql-action/init@v1
43
+ with :
44
+ languages : ${{ matrix.language }}
45
+ # If you wish to specify custom queries, you can do so here or in a config file.
46
+ # By default, queries listed here will override any specified in a config file.
47
+ # Prefix the list here with "+" to use these queries and those in the config file.
48
+ # queries: ./path/to/local/query, your-org/your-repo/queries@main
49
49
50
- # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
51
- # If this step fails, then you should remove it and run the build manually (see below)
52
- - name : Autobuild
53
- uses : github/codeql-action/autobuild@v1
50
+ # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
51
+ # If this step fails, then you should remove it and run the build manually (see below)
52
+ - name : Autobuild
53
+ uses : github/codeql-action/autobuild@v1
54
54
55
- # ℹ️ Command-line programs to run using the OS shell.
56
- # 📚 https://git.io/JvXDl
55
+ # ℹ️ Command-line programs to run using the OS shell.
56
+ # 📚 https://git.io/JvXDl
57
57
58
- # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
59
- # and modify them (or add more) to build your code if your project
60
- # uses a compiled language
58
+ # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
59
+ # and modify them (or add more) to build your code if your project
60
+ # uses a compiled language
61
61
62
- # - run: |
63
- # make bootstrap
64
- # make release
62
+ # - run: |
63
+ # make bootstrap
64
+ # make release
65
65
66
- - name : Perform CodeQL Analysis
67
- uses : github/codeql-action/analyze@v1
66
+ - name : Perform CodeQL Analysis
67
+ uses : github/codeql-action/analyze@v1
0 commit comments