diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml new file mode 100644 index 000000000..68d2c6929 --- /dev/null +++ b/.github/workflows/codeql.yml @@ -0,0 +1,67 @@ +name: 'CodeQL' + +on: + workflow_dispatch: + push: + branches: [trunk] + pull_request: + branches: [trunk] + schedule: + - cron: '0 6 * * 1' # Weekly on Monday at 6am UTC + +permissions: + security-events: write + contents: read + +jobs: + analyze-interpreted: + name: Analyze (${{ matrix.language }}) + runs-on: ubuntu-latest + timeout-minutes: 15 + + strategy: + fail-fast: false + matrix: + language: [actions, java-kotlin, javascript-typescript] + + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + - name: Initialize CodeQL + uses: github/codeql-action/init@v3 + with: + languages: ${{ matrix.language }} + + - name: Autobuild + uses: github/codeql-action/autobuild@v3 + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v3 + with: + category: '/language:${{ matrix.language }}' + + analyze-swift: + name: Analyze (swift) + runs-on: macos-15 + timeout-minutes: 30 + + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + - name: Select Xcode + run: sudo xcode-select -s /Applications/Xcode_26.0.1.app/Contents/Developer + + - name: Initialize CodeQL + uses: github/codeql-action/init@v3 + with: + languages: swift + + - name: Build Swift package + run: swift build --target GutenbergKit --target GutenbergKitHTTP + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v3 + with: + category: '/language:swift' diff --git a/ios/Sources/GutenbergKitHTTP/HTTPServer.swift b/ios/Sources/GutenbergKitHTTP/HTTPServer.swift index 17cfeb1c7..485cc9b79 100644 --- a/ios/Sources/GutenbergKitHTTP/HTTPServer.swift +++ b/ios/Sources/GutenbergKitHTTP/HTTPServer.swift @@ -626,4 +626,4 @@ extension Logger { static let httpServer = Logger(subsystem: "com.gutenbergkit.http", category: "server") } -#endif // canImport(Network) +#endif // canImport(Network) \ No newline at end of file