Skip to content

Scan

Scan #5238

Workflow file for this run

name: Scan
on:
push:
branches:
- main
pull_request:
branches:
- main
schedule:
- cron: "0 21 * * 1"
merge_group:
types: [checks_requested]
concurrency:
group: scan-${{ github.ref }}
cancel-in-progress: true
permissions:
contents: read
packages: read
security-events: write
jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: 20
cache: yarn
- run: yarn install --immutable
- run: yarn build --quiet
- uses: github/codeql-action/init@v3
with:
languages: javascript
config-file: .github/codeql/config.yml
- uses: github/codeql-action/analyze@v3