Skip to content

Code Scanning

Code Scanning #48

name: "Code Scanning"
on:
push:
branches: [ develop, main, master, release/*, hotfix/* ]
pull_request:
branches: [ main ]
schedule:
- cron: '0 9 * * 1'
jobs:
code-scanning-java:
name: Perform code scanning (Java) - Analyze
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write
steps:
- name: Checkout repository
uses: actions/checkout@v3
- name: Setup jdk
uses: actions/setup-java@v3
with:
distribution: 'temurin'
java-version: '17'
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
uses: github/codeql-action/init@v2
with:
languages: java
packs: codeql/java-queries
- name: Run preparation script
run: |-
export GRADLE_OPTS="-Xmx2048m"
npm ci
(cd android; ./gradlew --no-daemon --no-parallel assemble)
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v2
code-scanning-javascript:
name: Perform code scanning (JavaScript) - Analyze
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write
steps:
- name: Checkout repository
uses: actions/checkout@v3
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
uses: github/codeql-action/init@v2
with:
languages: javascript
packs: codeql/javascript-queries
# Autobuild the language if possible
- name: Autobuild
uses: github/codeql-action/autobuild@v2
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v2