| Nov | DEC | Jan |
| 01 | ||
| 2019 | 2020 | 2021 |
COLLECTED BY
Collection: github.com
Test Go autobuildc6dbd5a
name: "Code Scanning - Action" on: push: pull_request: schedule: # ┌───────────── minute (0 - 59) # │ ┌───────────── hour (0 - 23) # │ │ ┌───────────── day of the month (1 - 31) # │ │ │ ┌───────────── month (1 - 12 or JAN-DEC) # │ │ │ │ ┌───────────── day of the week (0 - 6 or SUN-SAT) # │ │ │ │ │ # │ │ │ │ │ # │ │ │ │ │ # * * * * * - cron: '30 1 * * 0' jobs: CodeQL-Build: # CodeQL runs on ubuntu-latest, windows-latest, and macos-latest runs-on: ubuntu-latest steps: - name: Checkout repository uses: actions/checkout@v2 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL uses: github/codeql-action/init@v1 # Override language selection by uncommenting this and choosing your languages # with: # languages: go, javascript, csharp, python, cpp, java # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below). - name: Autobuild uses: github/codeql-action/autobuild@v1 # ℹ️ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl # ✏️ If the Autobuild fails above, remove it and uncomment the following # three lines and modify them (or add more) to build your code if your # project uses a compiled language #- run: | # make bootstrap # make release - name: Perform CodeQL Analysis uses: github/codeql-action/analyze@v1If you prefer to integrate this within an existing CI workflow, it should end up looking something like this:
- name: Initialize CodeQL uses: github/codeql-action/init@v1 with: languages: go, javascript # Here is where you build your code - run: | make bootstrap make release - name: Perform CodeQL Analysis uses: github/codeql-action/analyze@v1
config-file parameter of the init action to enable the configuration file. The value of config-file is the path to the configuration file you want to use. This example loads the configuration file ./.github/codeql/codeql-config.yml.
- uses: github/codeql-action/init@v1 with: config-file: ./.github/codeql/codeql-config.ymlThe configuration file must be located within the local repository. For information on how to write a configuration file, see "Using a custom configuration file." If you only want to customise the queries used, you can specify them in your workflow instead of creating a config file, using the
queries property of the init action:
- uses: github/codeql-action/init@v1 with: queries: <local-or-remote-query>,<another-query>By default, this will override any queries specified in a config file. If you wish to use both sets of queries, prefix the list of queries in the workflow with
+:
- uses: github/codeql-action/init@v1 with: queries: +<local-or-remote-query>,<another-query>