.github/workflows/codeql-analysis.yml - systemd-stable - Rivoreo Source Code Repositories

 ---
 # vi: ts=2 sw=2 et:
 # SPDX-License-Identifier: LGPL-2.1-or-later
 #
 name: "CodeQL"

 on:
   pull_request:
     branches: [main]
     paths:
       - .github/codeql-config.yml
       - .github/codeql-custom.qls
       - .github/workflows/codeql-analysis.yml
       - .github/workflows/requirements.txt
       - .github/workflows/unit_tests.sh
   # It takes the workflow approximately 30 minutes to analyze the code base
   # so it doesn't seem to make much sense to trigger it on every PR or commit.
   # It runs daily at 01:00 to avoid colliding with the Coverity workflow.
   schedule:
     - cron: '0 1 * * *'

 permissions:
   contents: read

 jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-latest
     concurrency:
       group: ${{ github.workflow }}-${{ matrix.language }}-${{ github.ref }}
       cancel-in-progress: true
     permissions:
       actions: read
       security-events: write

     strategy:
       fail-fast: false
       matrix:
         language: [ 'cpp', 'python' ]

     steps:
     - name: Checkout repository
       uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579

     - name: Initialize CodeQL
       uses: github/codeql-action/init@75f07e7ab2ee63cba88752d8c696324e4df67466
       with:
         languages: ${{ matrix.language }}
         config-file: ./.github/codeql-config.yml

     - run: sudo -E .github/workflows/unit_tests.sh SETUP

     - name: Autobuild
       uses: github/codeql-action/autobuild@75f07e7ab2ee63cba88752d8c696324e4df67466

     - name: Perform CodeQL Analysis
       uses: github/codeql-action/analyze@75f07e7ab2ee63cba88752d8c696324e4df67466
	---
	# vi: ts=2 sw=2 et:
	# SPDX-License-Identifier: LGPL-2.1-or-later
	#
	name: "CodeQL"

	on:
	pull_request:
	branches: [main]
	paths:
	- .github/codeql-config.yml
	- .github/codeql-custom.qls
	- .github/workflows/codeql-analysis.yml
	- .github/workflows/requirements.txt
	- .github/workflows/unit_tests.sh
	# It takes the workflow approximately 30 minutes to analyze the code base
	# so it doesn't seem to make much sense to trigger it on every PR or commit.
	# It runs daily at 01:00 to avoid colliding with the Coverity workflow.
	schedule:
	- cron: '0 1 * * *'

	permissions:
	contents: read

	jobs:
	analyze:
	name: Analyze
	runs-on: ubuntu-latest
	concurrency:
	group: ${{ github.workflow }}-${{ matrix.language }}-${{ github.ref }}
	cancel-in-progress: true
	permissions:
	actions: read
	security-events: write

	strategy:
	fail-fast: false
	matrix:
	language: [ 'cpp', 'python' ]

	steps:
	- name: Checkout repository
	uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579

	- name: Initialize CodeQL
	uses: github/codeql-action/init@75f07e7ab2ee63cba88752d8c696324e4df67466
	with:
	languages: ${{ matrix.language }}
	config-file: ./.github/codeql-config.yml

	- run: sudo -E .github/workflows/unit_tests.sh SETUP

	- name: Autobuild
	uses: github/codeql-action/autobuild@75f07e7ab2ee63cba88752d8c696324e4df67466

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@75f07e7ab2ee63cba88752d8c696324e4df67466