Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Tree: d9ccca150e
Branches Tags
helm-externa...
/
.github
/
workflows
/
codeql.yml

codeql.yml 980 B
History Raw

12345678910111213141516171819202122232425262728293031323334353637 
  1. name: "CodeQL Advanced"
    2. 

  2. 

  3. on:
    4. 

  4.   push:
    5. 

  5.     branches: [ "main" ]
    6. 

  6.   pull_request:
    7. 

  7.     branches: [ "main" ]
    8. 

  8. 

  9. permissions:
    10. 

  10.   contents: read
    11. 

  11. 

  12. jobs:
    13. 

  13.   analyze:
    14. 

  14.     name: Analyze project
    15. 

  15.     runs-on: ubuntu-latest
    16. 

  16.     permissions:
    17. 

  17.       # required for all workflows
    18. 

  18.       security-events: write
    19. 

  19.       packages: read
    20. 

  20.       actions: read 
    21. 

  21.     strategy:
    22. 

  22.       fail-fast: false
    23. 

  23.     steps:
    24. 

  24.     - uses: step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
    25. 

  25.       with:
    26. 

  26.         egress-policy: audit
    27. 

  27.     - name: Checkout repository
    28. 

  28.       uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
    29. 

  29. 

  30.     # Initializes the CodeQL tools for scanning.
    31. 

  31.     - name: Initialize CodeQL
    32. 

  32.       uses: github/codeql-action/init@39edc492dbe16b1465b0cafca41432d857bdb31a # v3.29.1
    33. 

  33.       with:
    34. 

  34.         languages: go
    35. 

  35.         build-mode: autobuild
    36. 

  36.     - name: Perform CodeQL Analysis
    37. 

  37.       uses: github/codeql-action/analyze@39edc492dbe16b1465b0cafca41432d857bdb31a # v3.29.1
    38.