From aee198aaa27df37cee040b837be7e94fd579e8ce Mon Sep 17 00:00:00 2001 From: jandroav Date: Mon, 23 Oct 2023 11:37:18 +0200 Subject: [PATCH 1/2] feat(codeql.yml): add CodeQL workflow to run code analysis on push, pull request, and schedule The CodeQL workflow is added to the project to perform code analysis. It is triggered on push to the main branch, pull requests targeting the main branch, and on a weekly schedule every Thursday at 14:16 UTC. The workflow uses the `liquibase/build-logic/.github/workflows/codeql.yml@v0.5.3` action and inherits secrets from the repository. --- .github/workflows/codeql.yml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 .github/workflows/codeql.yml diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml new file mode 100644 index 00000000..0afe38bf --- /dev/null +++ b/.github/workflows/codeql.yml @@ -0,0 +1,16 @@ +name: CodeQL + +on: + workflow_dispatch: + push: + branches: [ "main" ] + pull_request: + # The branches below must be a subset of the branches above + branches: [ "main" ] + schedule: + - cron: '16 14 * * 4' + +jobs: + codeql: + uses: liquibase/build-logic/.github/workflows/codeql.yml@v0.5.3 + secrets: inherit From 3685e9fa945748f06c6d5599ecddadd1eede8bad Mon Sep 17 00:00:00 2001 From: jandroav Date: Mon, 23 Oct 2023 11:45:33 +0200 Subject: [PATCH 2/2] chore(codeql.yml): add 'languages' parameter to the CodeQL job to specify the programming language to analyze --- .github/workflows/codeql.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 0afe38bf..e3fc948b 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -14,3 +14,5 @@ jobs: codeql: uses: liquibase/build-logic/.github/workflows/codeql.yml@v0.5.3 secrets: inherit + with: + languages: '[java]'