From dd72e9f52e36e8b0171f4fc952ab65972c1a7fcc Mon Sep 17 00:00:00 2001
From: gruebel <anton.gruebel@gmail.com>
Date: Sat, 6 Jan 2024 20:19:34 +0100
Subject: [PATCH] split lint job into lint and sast

Signed-off-by: gruebel <anton.gruebel@gmail.com>
---
 .github/workflows/build.yml | 18 ++++++++++++------
 1 file changed, 12 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 9a7c108c..4753ea71 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -63,17 +63,23 @@ jobs:
           python-version: "3.11"
           cache: "pip"
 
+      - name: Run pre-commit
+        uses: pre-commit/action@v3.0.0
+
+  sast:
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-python@v5
+        with:
+          python-version: "3.11"
+
       - name: Initialize CodeQL
         uses: github/codeql-action/init@v3
         with:
           languages: python
           config-file: ./.github/codeql-config.yml
 
-      - name: Install dependencies
-        run: pip install -r requirements.txt
-
-      - name: Run pre-commit
-        uses: pre-commit/action@v3.0.0
-
       - name: Perform CodeQL Analysis
         uses: github/codeql-action/analyze@v3