aoc 2017 day 7 part 2 #266

	# This workflow checks out code, performs a Codacy security scan
	# and integrates the results with the
	# GitHub Advanced Security code scanning feature. For more information on
	# the Codacy security scan action usage and parameters, see
	# https://github.com/codacy/codacy-analysis-cli-action.
	# For more information on Codacy Analysis CLI in general, see
	# https://github.com/codacy/codacy-analysis-cli.

	name: Codacy Security Scan

	on:
	push:
	branches: [ "master", "main" ]
	pull_request:
	branches: [ "master", "main" ]

	jobs:
	codacy-security-scan:
	name: Codacy Security Scan
	runs-on: ubuntu-latest
	steps:
	# Checkout the repository to the GitHub Actions runner
	- name: Checkout code
	uses: actions/checkout@v2

	- name: Set up JDK 21
	uses: actions/setup-java@v3
	with:
	java-version: '21'
	distribution: 'zulu'
	cache: maven
	- name: Build with Maven
	run: mvn -B compile compiler:testCompile --file pom.xml

	# Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
	- name: Run Codacy Analysis CLI
	uses: codacy/codacy-analysis-cli-action@master
	with:
	output: results.sarif
	format: sarif
	# Adjust severity of non-security issues
	gh-code-scanning-compat: true
	# Force 0 exit code to allow SARIF file generation
	# This will hand over control about PR rejection to the GitHub side
	max-allowed-issues: 2147483647

	# Upload the SARIF file generated in the previous step
	- name: Upload SARIF results file
	uses: github/codeql-action/upload-sarif@main
	with:
	sarif_file: results.sarif

Provide feedback