Bump github/codeql-action from 3.24.8 to 3.25.5 #96
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This workflow performs a static analysis of your Kotlin source code using Detekt. | |
| # | |
| # Scans are triggered: | |
| # 1. On every push to default and protected branches | |
| # 2. On every Pull Request targeting the default branch | |
| # 3. On a weekly schedule | |
| # 4. Manually, on demand, via the "workflow_dispatch" event | |
| name: Scan with Detekt | |
| on: | |
| push: | |
| branches: [ main ] | |
| pull_request: | |
| branches: [ main ] | |
| workflow_dispatch: | |
| jobs: | |
| scan: | |
| name: Scan | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 | |
| - uses: actions/setup-java@99b8673ff64fbf99d8d325f52d9a5bdedb8483e9 | |
| with: | |
| distribution: 'temurin' | |
| java-version: '17' | |
| - name: Setup Gradle | |
| uses: gradle/gradle-build-action@29c0906b64b8fc82467890bfb7a0a7ef34bda89e | |
| with: | |
| gradle-home-cache-cleanup: true | |
| # Performs static analysis using Detekt | |
| - name: Run Detekt | |
| continue-on-error: true | |
| run: ./gradlew detekt | |
| # Uploads results to GitHub repository using the upload-sarif action | |
| - uses: github/codeql-action/upload-sarif@b7cec7526559c32f1616476ff32d17ba4c59b2d6 | |
| with: | |
| # Path to SARIF file relative to the root of the repository | |
| sarif_file: ${{ github.workspace }}/app/build/reports/detekt/detekt.sarif | |
| checkout_path: ${{ github.workspace }} |