cache/.github/workflows/codeql.yml

name: "Code scanning - action"

on:
  push:
  pull_request:
  schedule:
    - cron: '0 19 * * 0'

jobs:
  CodeQL-Build:
    # CodeQL runs on ubuntu-latest, windows-latest, and macos-latest
    runs-on: ubuntu-latest

    permissions:
      # required for all workflows
      security-events: write

    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    # Initializes the CodeQL tools for scanning.
    - name: Initialize CodeQL
      uses: github/codeql-action/init@v2
      # Override language selection by uncommenting this and choosing your languages
      # with:
      #   languages: go, javascript, csharp, python, cpp, java, ruby

    # Autobuild attempts to build any compiled languages (C/C++, C#, Go, or Java).
    # If this step fails, then you should remove it and run the build manually (see below).
    - name: Autobuild
      uses: github/codeql-action/autobuild@v2

    # ℹ️ Command-line programs to run using the OS shell.
    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun

    # ✏️ If the Autobuild fails above, remove it and uncomment the following
    #    three lines and modify them (or add more) to build your code if your
    #    project uses a compiled language

    #- run: |
    #     make bootstrap
    #     make release

    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v2
-												Add CodeQL security scanning (#346)


											
										
										
											2020-06-18 19:37:05 +02:00
+								name: "Code scanning - action"
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
 								on:
 								  push:
-												Add CodeQL security scanning (#346)


											
										
										
											2020-06-18 19:37:05 +02:00
+								  pull_request:
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
+								  schedule:
-												Add CodeQL security scanning (#346)


											
										
										
											2020-06-18 19:37:05 +02:00
+								    - cron: '0 19 * * 0'
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
 								jobs:
 								  CodeQL-Build:
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								    # CodeQL runs on ubuntu-latest, windows-latest, and macos-latest
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
+								    runs-on: ubuntu-latest
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								    permissions:
 								      # required for all workflows
 								      security-events: write
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
+								    steps:
 								    - name: Checkout repository
-												Bump GitHub actions `actions/checkout` and `actions/setup-node` (#763)

* Bump GitHub actions

* Bump Node.js version used to `16.x` in workflows

* Bump `actions/upload-artifact@v3`
											
										
										
											2022-04-11 20:36:07 +02:00
+								      uses: actions/checkout@v3
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
+								    # Initializes the CodeQL tools for scanning.
 								    - name: Initialize CodeQL
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								      uses: github/codeql-action/init@v2
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
+								      # Override language selection by uncommenting this and choosing your languages
 								      # with:
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								      #   languages: go, javascript, csharp, python, cpp, java, ruby
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								    # Autobuild attempts to build any compiled languages (C/C++, C#, Go, or Java).
 								    # If this step fails, then you should remove it and run the build manually (see below).
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
+								    - name: Autobuild
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								      uses: github/codeql-action/autobuild@v2
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
-												Add CodeQL security scanning (#346)


											
										
										
											2020-06-18 19:37:05 +02:00
+								    # ℹ️ Command-line programs to run using the OS shell.
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
-												Add CodeQL security scanning (#346)


											
										
										
											2020-06-18 19:37:05 +02:00
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								    # ✏️ If the Autobuild fails above, remove it and uncomment the following
 								    #    three lines and modify them (or add more) to build your code if your
 								    #    project uses a compiled language
-												Add CodeQL security scanning (#346)


											
										
										
											2020-06-18 19:37:05 +02:00
 								    #- run: |
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								    #     make bootstrap
 								    #     make release
-												Add CodeQL security scanning (#346)


											
										
										
											2020-06-18 19:37:05 +02:00
-												Add CodeQL Analysis workflow (#283)

* Add CodeQL Analysis workflow

* Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml

* Clean up commented out stuff
											
										
										
											2020-05-05 23:28:32 +02:00
+								    - name: Perform CodeQL Analysis
-												Upgrade codeql to v2 (#1023)

* Upgrade codeql to v2

* Update codeql.yml

Co-authored-by: Sankalp Kotewar <98868223+kotewar@users.noreply.github.com>
											
										
										
											2022-12-23 07:28:28 +01:00
+								      uses: github/codeql-action/analyze@v2