Merge pull request #8 from BeyondTrust/BIPS-16468-fix-codeql

Fix: Fixing codeql behavior
BeyondTrust · Feb 14, 2024 · b1aadac · b1aadac
2 parents 28b7a04 + a19d712
commit b1aadac
Showing 1 changed file with 30 additions and 2 deletions.
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -10,8 +10,36 @@ permissions:
   actions: read
 
 jobs:
-  analyze:
-    name: Analyze
+  analyze_on_PR:
+    name: Analyze on PR
+    if: ${{ github.actor != 'dependabot[bot]' && github.event_name == 'pull_request' }}
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        language: ["go"]
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+          config-file: codeql-config.yml
+          languages: ${{ matrix.language }}
+
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v2
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2
+
+  analyze_on_branch:
+    name: Analyze on PR
+    if: ${{ github.actor != 'dependabot[bot]' && github.event_name != 'pull_request' }}
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false