--- name: Security Analysis on: push: branches: [master] pull_request: branches: [master] schedule: - cron: "0 6 * * *" jobs: codeql: name: CodeQL runs-on: ubuntu-latest steps: - name: Checkout repository uses: actions/checkout@v4 with: # Must fetch at least the immediate parents so that if this is # a pull request then we can checkout the head of the pull request. # Only include this option if you are running this workflow on pull requests. fetch-depth: 2 # If this run was triggered by a pull request event then checkout # the head of the pull request instead of the merge commit. # Only include this step if you are running this workflow on pull requests. - run: git checkout HEAD^2 if: ${{ github.event_name == 'pull_request' }} - name: Initialize CodeQL uses: github/codeql-action/init@v2 with: languages: go - name: Perform CodeQL Analysis uses: github/codeql-action/analyze@v2