Android-Password-Store/.github/workflows/codeql_analysis.yml

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

42 lines
985 B
YAML
Raw Normal View History

name: "CodeQL"
on:
workflow_dispatch:
# push:
# branches:
# - develop
# pull_request:
# branches:
# - develop
env:
SENTRY_DSN: 'https://public_key@example.com/project_id'
jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write
steps:
- name: Setup build environment
uses: android-password-store/android-password-store/.github/reusable-workflows/setup-gradle@develop
- name: Initialize CodeQL
uses: github/codeql-action/init@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
with:
languages: java
tools: latest
queries: +security-extended
- name: Build project
shell: bash
run: ./gradlew assembleNonFreeRelease
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
with:
category: "/language:java"