1name: codeql 2 3on: 4 # Trigger the workflow on push or pull requests, but only for the 5 # master branch 6 push: 7 branches: 8 - master 9 - '*/ci' 10 pull_request: 11 branches: 12 - master 13 schedule: 14 - cron: '0 0 * * 4' 15 16jobs: 17 codeql: 18 runs-on: ubuntu-latest 19 steps: 20 - name: Checkout repository 21 uses: actions/checkout@v2 22 23 # Initializes the CodeQL tools for scanning. 24 - name: Initialize CodeQL 25 uses: github/codeql-action/init@v1 26 with: 27 languages: cpp 28 queries: security-extended 29 30 # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). 31 # If this step fails, then you should remove it and run the build manually (see below) 32 - name: Autobuild 33 uses: github/codeql-action/autobuild@v1 34 35 # ℹ️ Command-line programs to run using the OS shell. 36 # �� https://git.io/JvXDl 37 38 # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines 39 # and modify them (or add more) to build your code if your project 40 # uses a compiled language 41 42 #- run: | 43 # make bootstrap 44 # make release 45 46 - name: Perform CodeQL Analysis 47 uses: github/codeql-action/analyze@v1 48