CodeQL - Complete analysis #17

Workflow file for this run

.github/workflows/codeql-complete.yml at 042742b

	name: "CodeQL - Complete analysis"

	on:
	schedule:
	- cron: '44 23 11 * *' # Run CodeQL scan on a day of every month at 11:44 PM UTC

	jobs:
	analyze:
	name: Analyze
	runs-on: ubuntu-latest
	timeout-minutes: 30 # Set timeout to 30 minutes; Change if your project takes longer to scan
	permissions:
	actions: read
	contents: read
	security-events: write

	strategy:
	fail-fast: false
	matrix:
	language: [ 'javascript' ]

	steps:
	- name: Checkout repository
	uses: actions/checkout@v3

	- uses: actions/setup-node@v3
	with:
	node-version: 16 # The version of Node.js to use
	cache: 'npm'
	cache-dependancy-path: '**/package-lock.json' # The path to package-lock.json file to find dependancies to cache - https://github.com/actions/setup-node/blob/main/docs/advanced-usage.md#caching-packages-data
	# registry-url: 'https://registry.npmjs.org/' # The private registry to use for the Node.js packages

	- name: Install Node.js dependencies
	run: "npm ci --ignore-scripts"
	# working-directory: ./path/to/your/project # The path to your project if its a monorepo
	#env:
	# NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} # The NPM token to use for authentication


	# Initializes the CodeQL tools for scanning.
	- name: Initialize CodeQL
	uses: github/codeql-action/init@v2
	with:
	languages: ${{ matrix.language }}
	# queries: security-extended,security-and-quality
	# debug: true # Only use this for debugging. It will increase the runtime of the action and take up storage

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@v2
	with:
	category: "/language:${{matrix.language}}"

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CodeQL - Complete analysis #17

Workflow file

CodeQL - Complete analysis #17

Jobs

Run details

Workflow file for this run