Implement CodeQL GitHub Action (#1682)

* Add CodeQL action for security scanning * Alter name to be in line with other workflows Signed-off-by: Chris Mills <millscj01@gmail.com>
2026-02-03 12:10:32 +00:00 · 2020-11-22 03:39:02 +00:00
parent 46b68e4da8
commit ebae08082e
1 changed files with 33 additions and 0 deletions
@@ -0,0 +1,33 @@
+---
+name: "CodeQL Security Scanning"
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+  schedule:
+    - cron: "0 15 * * 0"
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+
+    strategy:
+      fail-fast: false
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v2
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v1
+        with:
+          languages: go
+
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v1
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v1