refactor(workflows): Update code scanning workflow (#101)

* fix(docs): enable globbing in "Upgrading from Version 1?" section * PR comments * refactor(workflows): Update code scanning workflow * Update .github/workflows/codeql-analysis.yml * Update .github/workflows/codeql-analysis.yml * Apply suggestions from code review * Update .github/workflows/codeql-analysis.yml * Update .github/workflows/codeql-analysis.yml * Remove comments
ScottBrenner · Sep 29, 2021 · 2c5a184 · 2c5a184
1 parent 213fa21
commit 2c5a184
Showing 1 changed file with 3 additions and 4 deletions.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -2,19 +2,17 @@ name: "CodeQL"
 
 on:
   push:
-    branches-ignore: dependabot/**
+  pull_request:
   schedule:
     - cron: '38 18 * * 3'
 
 jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-latest
-
     permissions:
-      actions: write
+      actions: read
       contents: read
-      pull-requests: read
       security-events: write
 
     strategy:
@@ -26,6 +24,7 @@ jobs:
     - name: Checkout repository
       uses: actions/checkout@v2
 
+    # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
       uses: github/codeql-action/init@v1
       with: