Skip to content

Commit

Permalink
Set up GHA workflow for CodeQL scanning
Browse files Browse the repository at this point in the history
Edited version of GitHub generated codeql-analysis.yaml file that uses reusable workflow from `UBC-MOAD/gha-workflows` repository.
douglatornell authored Dec 10, 2024

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
1 parent 58d1d8e commit 8124dd8
Showing 1 changed file with 25 additions and 0 deletions.
25 changes: 25 additions & 0 deletions .github/workflows/codeql-analysis.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,25 @@
name: "CodeQL"

on:
push:
branches: [ "main" ]
pull_request:
branches: [ "main" ]
schedule:
- cron: '26 16 * * 1'

jobs:
analyze:
name: Analyze
permissions:
actions: read
contents: read
security-events: write

strategy:
fail-fast: false
matrix:
language: [ "python" ]
uses: UBC-MOAD/gha-workflows/.github/workflows/codeql-analysis.yaml@main
with:
language: ${{ matrix.language }}

0 comments on commit 8124dd8

Please sign in to comment.