build(deps): Bump actions/setup-go from d60b41a563a30eac31c3ec623e6ff0b3f16e1a06 to 41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed #1757
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Copyright Contributors to the L3AF Project. | |
| # SPDX-License-Identifier: Apache-2.0 | |
| # | |
| # For documentation on the github environment, see | |
| # https://docs.github.com/en/actions/using-github-hosted-runners/about-github-hosted-runners | |
| # | |
| # For documentation on the syntax of this file, see | |
| # https://docs.github.com/en/actions/reference/workflow-syntax-for-github-actions | |
| name: "CodeQL" | |
| on: | |
| push: | |
| branches: [ main ] | |
| pull_request: | |
| branches: [ main ] | |
| # Declare default permissions as read only. | |
| permissions: read-all | |
| jobs: | |
| analyze: | |
| name: Analyze | |
| runs-on: ubuntu-latest | |
| permissions: | |
| actions: read | |
| contents: read | |
| security-events: write | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| language: [ 'go' ] | |
| steps: | |
| - name: Harden Runner | |
| uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 | |
| with: | |
| egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs | |
| - name: Checkout repository | |
| uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 | |
| - name: Initialize CodeQL | |
| uses: github/codeql-action/init@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea | |
| with: | |
| languages: ${{ matrix.language }} | |
| - name: Perform CodeQL Analysis | |
| uses: github/codeql-action/analyze@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea |