scan.yml

 1---
 2name: scan
 3
 4on:
 5  push:
 6    branches:
 7      - trunk
 8  pull_request:
 9    branches:
10      - trunk
11  schedule:
12    - cron: '0 12 * * 6'
13
14permissions:
15  security-events: write
16
17jobs:
18  codeql:
19    runs-on: ubuntu-latest
20    steps:
21      - name: Checkout repository
22        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
23        with:
24          fetch-depth: 2
25          persist-credentials: false
26
27      - name: Initialize CodeQL
28        uses: github/codeql-action/init@28deaeda66b76a05916b6923827895f2b14ab387 # v3.28.16
29        with:
30          languages: go, javascript
31
32      - name: Autobuild
33        uses: github/codeql-action/autobuild@28deaeda66b76a05916b6923827895f2b14ab387 # v3.28.16
34
35      - name: Perform CodeQL Analysis
36        uses: github/codeql-action/analyze@28deaeda66b76a05916b6923827895f2b14ab387 # v3.28.16