CodeAnalysis #1175

	name: "CodeAnalysis"

	on:
	push:
	branches: [develop, v0, v1]
	pull_request:
	# The branches below must be a subset of the branches above
	branches: [develop]
	schedule:
	- cron: "0 22 * * 3"
	permissions:
	security-events: write
	jobs:
	code:
	name: Analyse Code
	runs-on: ubuntu-latest

	strategy:
	fail-fast: false
	matrix:
	language: ["go"]

	steps:
	- name: Checkout repository
	uses: actions/checkout@v4

	# Initializes the CodeQL tools for scanning.
	- name: Initialize CodeQL
	uses: github/codeql-action/init@v3
	with:
	languages: ${{ matrix.language }}
	- name: Autobuild
	uses: github/codeql-action/autobuild@v3

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@v3
	golang:
	name: Analyse Vulnerabilities
	runs-on: ubuntu-latest
	steps:
	- name: Checkout code
	uses: actions/checkout@v4
	- name: Running govulncheck
	uses: Templum/govulncheck-action@v1.0.0
	docker:
	name: Analyse Container
	runs-on: ubuntu-latest
	steps:
	- name: Checkout code
	uses: actions/checkout@v4

	- name: Build an image from Dockerfile
	run: docker build -t templum/rabbitmq-connector:${{ github.sha }} .

	- name: Run Trivy vulnerability scanner
	uses: aquasecurity/trivy-action@master
	with:
	image-ref: "templum/rabbitmq-connector:${{ github.sha }}"
	format: 'sarif'
	output: "trivy-results.sarif"

	- name: Upload Trivy scan results to GitHub Security tab
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: "trivy-results.sarif"

Provide feedback