Skip to content

🔬 CodeQL: Semantic code analysis #414

🔬 CodeQL: Semantic code analysis

🔬 CodeQL: Semantic code analysis #414

Workflow file for this run

name: '🔬 CodeQL: Semantic code analysis'
on:
pull_request:
paths:
- 'src/**'
- '!src/qodana.yml'
- '.github/workflows/codeql.yml'
types: [opened, synchronize, reopened]
push:
branches:
- 'master'
paths:
- 'src/**'
- '!src/qodana.yml'
- '.github/workflows/codeql.yml'
schedule:
- cron: '20 23 * * 0'
workflow_dispatch:
env:
DOTNET_NOLOGO: true
DOTNET_CLI_TELEMETRY_OPTOUT: true
Configuration: Release
defaults:
run:
shell: pwsh
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
jobs:
scan:
runs-on: ubuntu-latest
timeout-minutes: 360
permissions:
actions: read
contents: read
security-events: write
strategy:
fail-fast: false
matrix:
language: [ 'csharp' ]
steps:
- name: 📥 checkout
uses: actions/checkout@v4
with:
fetch-depth: 0
- name: 🎰 initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
- name: 🏗️ build
run: dotnet build ./src/Objectivity.AutoFixture.XUnit2.AutoMock.sln
- name: 🔬 analyze with CodeQL
uses: github/codeql-action/analyze@v3
with:
category: '/language:${{ matrix.language }}'