File tree Expand file tree Collapse file tree
Expand file tree Collapse file tree Original file line number Diff line number Diff line change @@ -102,3 +102,34 @@ jobs:
102102 name : bandit-report
103103 path : bandit-report.html
104104 retention-days : 30
105+
106+ # -----------------------------
107+ # 3) CodeQL Analysis
108+ # -----------------------------
109+ codeql_scan :
110+ name : CodeQL Analysis
111+ runs-on : ubuntu-latest
112+ permissions :
113+ security-events : write
114+ contents : read
115+ actions : read
116+ strategy :
117+ fail-fast : false
118+ matrix :
119+ language : [ 'python', 'javascript' ]
120+ steps :
121+ - name : Checkout
122+ uses : actions/checkout@v4
123+
124+ - name : Initialize CodeQL
125+ uses : github/codeql-action/init@v3
126+ with :
127+ languages : ${{ matrix.language }}
128+
129+ - name : Autobuild
130+ uses : github/codeql-action/autobuild@v3
131+
132+ - name : Perform CodeQL Analysis
133+ uses : github/codeql-action/analyze@v3
134+ with :
135+ category : " /language:${{matrix.language}}"
You can’t perform that action at this time.
0 commit comments