Merge pull request #10 from githubschool/security

Create security.yml
githubschool · Mar 15, 2022 · fb48f64 · fb48f64
2 parents 29d1965 + 5ac1888
commit fb48f64
Showing 1 changed file with 58 additions and 0 deletions.
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -0,0 +1,58 @@
+---
+##########################
+##########################
+## CodeQL Security Scan ##
+##########################
+##########################
+name: CodeQl Analysis
+
+#
+# Documentation:
+# https://help.github.com/en/articles/workflow-syntax-for-github-actions
+# https://github.com/github/codeql-action
+#
+
+#############################
+# Start the job on all push #
+#############################
+on:
+  push:
+    branches-ignore:
+      - 'master'
+      - 'main'
+
+###############
+# Set the Job #
+###############
+jobs:
+  scan:
+    # Name the Job
+    name: CodeQL Analysis
+    # Set the agent to run on
+    runs-on: ubuntu-latest
+    ##################
+    # Load all steps #
+    ##################
+    steps:
+      ##########################
+      # Checkout the code base #
+      ##########################
+      - name: Checkout Code
+        uses: actions/[email protected]
+        with:
+          # Full git history is needed to get a proper list of changed files
+          fetch-depth: 0
+
+      #####################
+      # Initialize CodeQL #
+      #####################
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v1
+        with:
+          languages: python
+
+      #######################
+      # Run CodeQL Analysis #
+      #######################
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v1