-
Notifications
You must be signed in to change notification settings - Fork 9
46 lines (43 loc) · 1.44 KB
/
rhiza_codeql.yml
File metadata and controls
46 lines (43 loc) · 1.44 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
# For most projects, this workflow file will not need changing; you simply need
# to commit it to your repository.
#
# You may wish to alter this file to override the set of languages analyzed,
# or to provide custom queries or build logic.
#
# ******** NOTE ********
# We have attempted to detect the languages in your repository. Please check
# the `language` matrix defined below to confirm you have the correct set of
# supported CodeQL languages.
#
# ******** IMPORTANT: GitHub Advanced Security Required ********
# CodeQL is FREE for public repositories, but requires GitHub Advanced Security
# (part of GitHub Enterprise) for private repositories.
#
# This workflow automatically:
# - Runs on public repositories
# - Skips on private repositories (unless Advanced Security is available)
#
# To control this behavior, set the CODEQL_ENABLED repository variable:
# - Set to 'true' to force enable (if you have Advanced Security on private repos)
# - Set to 'false' to disable entirely
# - Leave unset for automatic behavior (recommended)
#
# To learn more about customizing this workflow, see the comments below
#
name: "(RHIZA) CODEQL"
permissions:
security-events: write
packages: read
actions: read
contents: read
on:
push:
branches: [ "main", "master" ]
pull_request:
branches: [ "main", "master" ]
schedule:
- cron: '27 1 * * 1'
jobs:
codeql:
uses: jebel-quant/rhiza/.github/workflows/rhiza_codeql.yml@v0.18.5
secrets: inherit