Skip to content
Snippets Groups Projects
Unverified Commit 5d3128f5 authored by Sadjy SADJAN's avatar Sadjy SADJAN Committed by GitHub
Browse files

Adding basic codeQL analysis (#725)

* Adding basic codeQL analysis

Adding CodeQL analysis pipeline for common vulnerability scanning.

* adding security-and-quality query pack
parent fb4e6579
No related branches found
No related tags found
No related merge requests found
name: "CodeQL Config"
queries:
- uses: security-and-quality
name: "CodeQL"
on:
push:
branches: [develop, master]
pull_request:
branches: [develop]
schedule:
- cron: '0 0 * * 1'
jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
strategy:
fail-fast: false
matrix:
language: ['go']
steps:
- name: Checkout repository
uses: actions/checkout@v2
with:
fetch-depth: 2
- run: git checkout HEAD^2
if: ${{ github.event_name == 'pull_request' }}
- name: Initialize CodeQL
uses: github/codeql-action/init@v1
with:
languages: ${{ matrix.language }}
config-file: ./.github/codeql/codeql-config.yml
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v1
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment