From 9841a90a271cbf137ada36ed32533d866e1e1bb8 Mon Sep 17 00:00:00 2001 From: Maciej Barelkowski Date: Thu, 6 Jul 2023 13:45:12 +0200 Subject: [PATCH] ci: setup code scanning with GH CodeQL (#763) --- .github/workflows/CODE_SCANNING.yml | 34 +++++++++++++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 .github/workflows/CODE_SCANNING.yml diff --git a/.github/workflows/CODE_SCANNING.yml b/.github/workflows/CODE_SCANNING.yml new file mode 100644 index 00000000..4b4bd72e --- /dev/null +++ b/.github/workflows/CODE_SCANNING.yml @@ -0,0 +1,34 @@ +name: "Code Scanning" + +on: + push: + branches: [ master, develop ] + pull_request: + branches: [ master, develop ] + paths-ignore: + - '**/*.md' + +jobs: + CodeQL-Build: + # CodeQL runs on ubuntu-latest, windows-latest, and macos-latest + runs-on: ubuntu-latest + + permissions: + # required for all workflows + security-events: write + + steps: + - name: Checkout repository + uses: actions/checkout@v3 + + # Initializes the CodeQL tools for scanning. + - name: Initialize CodeQL + uses: github/codeql-action/init@v2 + with: + languages: javascript + config: | + paths-ignore: + - '**/test' + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v2