From 4d5a25f557e22dc7db0f18a745d1e5195e792ef9 Mon Sep 17 00:00:00 2001 From: Zach Hoffman Date: Tue, 26 Apr 2022 10:48:03 -0600 Subject: [PATCH 1/2] Use v2 of the CodeQL action --- .github/workflows/codeql.go.yml | 6 +++--- .github/workflows/codeql.javascript.yml | 6 +++--- .github/workflows/codeql.python.yml | 6 +++--- 3 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/codeql.go.yml b/.github/workflows/codeql.go.yml index d6073cffc5..ee5318e362 100644 --- a/.github/workflows/codeql.go.yml +++ b/.github/workflows/codeql.go.yml @@ -37,14 +37,14 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v1 + uses: github/codeql-action/init@v2 with: languages: go # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually - name: Autobuild - uses: github/codeql-action/autobuild@v1 + uses: github/codeql-action/autobuild@v2 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v1 + uses: github/codeql-action/analyze@v2 diff --git a/.github/workflows/codeql.javascript.yml b/.github/workflows/codeql.javascript.yml index df85748c2a..8174be670a 100644 --- a/.github/workflows/codeql.javascript.yml +++ b/.github/workflows/codeql.javascript.yml @@ -37,14 +37,14 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v1 + uses: github/codeql-action/init@v2 with: languages: javascript # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually - name: Autobuild - uses: github/codeql-action/autobuild@v1 + uses: github/codeql-action/autobuild@v2 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v1 + uses: github/codeql-action/analyze@v2 diff --git a/.github/workflows/codeql.python.yml b/.github/workflows/codeql.python.yml index eb97f4d817..3ec667f784 100644 --- a/.github/workflows/codeql.python.yml +++ b/.github/workflows/codeql.python.yml @@ -37,14 +37,14 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v1 + uses: github/codeql-action/init@v2 with: languages: python # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually - name: Autobuild - uses: github/codeql-action/autobuild@v1 + uses: github/codeql-action/autobuild@v2 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v1 + uses: github/codeql-action/analyze@v2 From 066933885e212ba10b23092804315a5d1603f27f Mon Sep 17 00:00:00 2001 From: Zach Hoffman Date: Tue, 26 Apr 2022 10:49:03 -0600 Subject: [PATCH 2/2] Run workflow when CodeQL workflow file is modified --- .github/workflows/codeql.go.yml | 1 + .github/workflows/codeql.javascript.yml | 1 + .github/workflows/codeql.python.yml | 1 + 3 files changed, 3 insertions(+) diff --git a/.github/workflows/codeql.go.yml b/.github/workflows/codeql.go.yml index ee5318e362..7287d28d8f 100644 --- a/.github/workflows/codeql.go.yml +++ b/.github/workflows/codeql.go.yml @@ -23,6 +23,7 @@ on: pull_request: branches: [ master ] paths: + - .github/workflows/codeql.go.yml - "**/*.go" types: [opened, reopened, ready_for_review, synchronize] diff --git a/.github/workflows/codeql.javascript.yml b/.github/workflows/codeql.javascript.yml index 8174be670a..edc377616d 100644 --- a/.github/workflows/codeql.javascript.yml +++ b/.github/workflows/codeql.javascript.yml @@ -23,6 +23,7 @@ on: pull_request: branches: [ master ] paths: + - .github/workflows/codeql.javascript.yml - "**/*.js" types: [opened, reopened, ready_for_review, synchronize] diff --git a/.github/workflows/codeql.python.yml b/.github/workflows/codeql.python.yml index 3ec667f784..87556826f7 100644 --- a/.github/workflows/codeql.python.yml +++ b/.github/workflows/codeql.python.yml @@ -23,6 +23,7 @@ on: pull_request: branches: [ master ] paths: + - .github/workflows/codeql.python.yml - "**/*.py" types: [opened, reopened, ready_for_review, synchronize]