This repository has been archived by the owner on Oct 3, 2024. It is now read-only.

fix(deps): update all non-major dependencies #660

	name: Analyze CodeQL

	permissions:
	contents: read

	on:
	push:
	branches: ["main"]
	pull_request:
	paths-ignore:
	- "**.md"
	- "**.jpg"
	- "**.png"
	- "**.gif"
	- "**.svg"
	- "adr/**"
	- "docs/**"
	- "CODEOWNERS"
	schedule:
	- cron: "32 2 * * 5"

	jobs:
	validate:
	runs-on: ubuntu-latest
	permissions:
	actions: read
	contents: read
	security-events: write

	strategy:
	fail-fast: false
	matrix:
	language: ["go", "javascript", "typescript"]
	# CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ]
	# Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support

	steps:
	- name: Checkout
	uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7

	- name: Setup Go
	uses: defenseunicorns/zarf/.github/actions/golang@main

	- name: Setup NodeJS
	uses: actions/setup-node@0a44ba7841725637a19e28fa30b79a866c81b0a6 # v4.0.4
	with:
	node-version: 20
	cache: "npm"
	cache-dependency-path: "package-lock.json"

	# Initializes the CodeQL tools for scanning.
	- name: Initialize CodeQL
	uses: github/codeql-action/init@d97ba04b39135f37e9d60c84a6995bb18b7ac328 # v2.26.9
	env:
	CODEQL_EXTRACTOR_GO_BUILD_TRACING: on
	with:
	languages: ${{ matrix.language }}
	config-file: ./.github/codeql.yaml

	- name: Build
	run: make build-credential-helper-linux-amd

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@d97ba04b39135f37e9d60c84a6995bb18b7ac328 # v2.26.9
	with:
	category: "/language:${{matrix.language}}"

Provide feedback