Update vuln analysis GHAW to use on.push hook

This hook is needed for proper operation of the `Vulnerability / CodeQL` job so that it can compare before/after changes against the base branch. I'm opting to skip limiting the pull_request hook events to just the base branch, instead adding a commented directive to imply that I explicitly made that decision. refs atc0005/todo#56
atc0005 · Mar 17, 2023 · ea06bae · ea06bae
1 parent 48db844
commit ea06bae
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/.github/workflows/project-analysis.yml b/.github/workflows/project-analysis.yml
@@ -8,11 +8,17 @@
 name: Project Analysis
 
 on:
+  push:
+    branches: [master]
+
   pull_request:
     # `synchronized` seems to equate to pushing new commits to a linked branch
     # (whether force-pushed or not)
     types: [opened, synchronize]
 
+    # The branches below must be a subset of the branches above
+    # branches: [master]
+
 jobs:
   lint:
     name: Lint