CodeScan #32

Summary
Jobs
- CodeScan
Run details
- Usage
- Workflow file

Workflow file for this run

.github/workflows/codescan.yml at 808b435

	# This workflow uses actions that are not certified by GitHub.
	# They are provided by a third-party and are governed by
	# separate terms of service, privacy policy, and support
	# documentation.

	# This workflow requires that you have an existing account with codescan.io
	# For more information about configuring your workflow,
	# read our documentation at https://github.com/codescan-io/codescan-scanner-action
	name: CodeScan

	on:
	push:
	branches: [ main ]
	pull_request:
	# The branches below must be a subset of the branches above
	branches: [ main ]
	schedule:
	- cron: '36 18 * * 2'

	permissions:
	contents: read

	jobs:
	CodeScan:
	permissions:
	contents: read # for actions/checkout to fetch code
	security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
	with:
	egress-policy: audit

	- name: Checkout repository
	uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
	- name: Cache files
	uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2
	with:
	path: \|
	~/.sonar
	key: ${{ runner.os }}-sonar
	restore-keys: ${{ runner.os }}-sonar
	- name: Run Analysis
	uses: codescan-io/codescan-scanner-action@34bb1239ae63550b540bb82f8f5de370ecb34d99
	with:
	login: ${{ secrets.CODESCAN_AUTH_TOKEN }}
	organization: ${{ secrets.CODESCAN_ORGANIZATION_KEY }}
	projectKey: ${{ secrets.CODESCAN_PROJECT_KEY }}
	- name: Upload SARIF file
	uses: github/codeql-action/upload-sarif@4355270be187e1b672a7a1c7c7bae5afdc1ab94a # v3.24.10
	with:
	sarif_file: codescan.sarif

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CodeScan #32

Workflow file

CodeScan #32

Jobs

Run details

Workflow file for this run