Re-enable codeql analysis

ko-build · Oct 1, 2021 · 4a9ad1d · 4a9ad1d
1 parent 688ca47
commit 4a9ad1d
Showing 1 changed file with 23 additions and 0 deletions.
diff --git a/.github/workflows/security.yaml b/.github/workflows/security.yaml
@@ -0,0 +1,23 @@
+name: Analyze
+
+on:
+  workflow_dispatch:
+  pull_request:
+    branches: ['main']
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v2
+      with:
+        # We must fetch at least the immediate parents so that if this is
+        # a pull request then we can checkout the head.
+        fetch-depth: 2
+
+    - uses: github/codeql-action/init@v1
+      with:
+        languages: go
+    - uses: github/codeql-action/autobuild@v1
+    - uses: github/codeql-action/analyze@v1