From 699cd3cc47af61aa10a2b12baa07457e123cd267 Mon Sep 17 00:00:00 2001
From: Gandalf <gandalf@storm.pl>
Date: Wed, 20 Oct 2021 21:35:14 +0000
Subject: [PATCH] Preliminary workflow configuration.
---
.github/codeql-config.yml | 9 ++++++
.github/workflows/codeql-analysis.yml | 44 +++++++++++++++++++++++++++
2 files changed, 53 insertions(+)
create mode 100644 .github/codeql-config.yml
create mode 100644 .github/workflows/codeql-analysis.yml
diff --git a/.github/codeql-config.yml b/.github/codeql-config.yml
new file mode 100644
index 0000000..7ceeca3
--- /dev/null
+++ b/.github/codeql-config.yml
@@ -0,0 +1,9 @@
+name: "CodeQL config for Jussi"
+
+languages: python
+
+queries:
+ - name: Extended Security
+ uses: security-extended
+ - name: Security and Quality
+ uses: security-and-quality
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
new file mode 100644
index 0000000..4cca773
--- /dev/null
+++ b/.github/workflows/codeql-analysis.yml
@@ -0,0 +1,44 @@
+name: "CodeQL"
+
+on:
+ push:
+ branches: [ develop ]
+
+jobs:
+ analyze:
+ name: Analyze
+ runs-on: ubuntu-latest
+ permissions:
+ actions: read
+ contents: read
+ security-events: write
+
+ strategy:
+ fail-fast: false
+ matrix:
+ language: [ 'python' ]
+ python-version: [3.6, 3.8]
+
+ steps:
+ - name: Checkout repository
+ uses: actions/checkout@v2
+ - run: git fetch --prune --unshallow
+
+ - name: Set up Python ${{ matrix.python-version }}
+ uses: actions/setup-python@v2
+ with:
+ python-version: ${{ matrix.python-version }}
+
+ - name: Install dependencies
+ run: |
+ python -m pip install --upgrade pip
+ python -m pip install .
+
+ - name: Initialize CodeQL
+ uses: github/codeql-action/init@v1
+ with:
+ languages: ${{ matrix.language }}
+ config-file: ./.github/codeql-config.yml
+
+ - name: Perform CodeQL Analysis
+ uses: github/codeql-action/analyze@v1
--
GitLab