actions/actions-hugo
0
0
Fork 0
mirror of https://github.com/peaceiris/actions-hugo.git synced 2026-06-04 10:38:41 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
9b7aa41d208dfc44925efc5b6630e4c19557a3d3
actions-hugo/.github/workflows/codeql-analysis.yml
T
peaceiris 9b7aa41d20 ci: harden GitHub Actions workflows 
Pin workflow actions to commit SHAs, set explicit permissions and timeouts, update Ubuntu runners, and include the generated action bundle.

Co-Authored-By: Codex <noreply@openai.com>
2026-05-10 01:18:21 +09:00

30 lines
723 B
YAML
Raw Blame History

name: "Code Scanning"
on:
push:
branches:
- main
pull_request:
permissions:
security-events: write
contents: read
jobs:
CodeQL-Build:
runs-on: ubuntu-24.04
timeout-minutes: 20
steps:
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
- name: Initialize CodeQL
uses: github/codeql-action/init@1521896cd211af95be3f02edf6f436e10b819c27 # v3.35.4
with:
languages: javascript
- name: Autobuild
uses: github/codeql-action/autobuild@1521896cd211af95be3f02edf6f436e10b819c27 # v3.35.4
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@1521896cd211af95be3f02edf6f436e10b819c27 # v3.35.4
Reference in New Issue View Git Blame Copy Permalink