38 lines · yaml
1name: Github Actions CodeQL2 3permissions:4 contents: read5 6on:7 pull_request:8 branches:9 - main10 paths:11 - '.github/**'12 schedule:13 - cron: '30 0 * * *'14 15concurrency:16 group: ${{ github.workflow }}17 cancel-in-progress: true18 19jobs:20 codeql:21 name: 'Github Actions CodeQL'22 runs-on: ubuntu-24.0423 permissions:24 security-events: write25 steps:26 - name: Checkout LLVM27 uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.028 with:29 sparse-checkout: |30 .github/31 - name: Initialize CodeQL32 uses: github/codeql-action/init@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.533 with:34 languages: actions35 queries: security-extended36 - name: Perform CodeQL Analysis37 uses: github/codeql-action/analyze@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.538