name: "Code Scanning - Action" on: push: branches: - main pull_request: branches: - main schedule: - cron: '0 17 * * 5' jobs: codeQL: runs-on: ubuntu-latest permissions: actions: read contents: read security-events: write steps: - name: Checkout repository uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: # Must fetch at least the immediate parents so that if this is # a pull request then we can checkout the head of the pull request. # Only include this option if you are running this workflow on pull requests. fetch-depth: 2 persist-credentials: false # If this run was triggered by a pull request event then checkout # the head of the pull request instead of the merge commit. # Only include this step if you are running this workflow on pull requests. - run: git checkout HEAD^2 if: ${{ github.event_name == 'pull_request' }} # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 # Override language selection by uncommenting this and choosing your languages with: languages: 'javascript-typescript' - run: | npm install npm run all - name: Perform CodeQL Analysis uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2