Skip to content
Back to pull request #377

Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0 #432

Sign in to view logs

Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0

Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0 #432

Workflow file for this run

.github/workflows/code-ql.yml at 148f026
name: code-ql
on:
push:
branches: [ main ]
pull_request:
branches: [ main, dotnet-vnext ]
schedule:
- cron: '0 6 * * MON'
workflow_dispatch:
permissions:
actions: read
contents: read
jobs:
code-ql:
runs-on: ubuntu-latest
permissions:
security-events: write
strategy:
fail-fast: false
matrix:
language: [ 'csharp', 'javascript' ]
steps:
- name: Checkout repository
uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
- name: Setup .NET SDK
uses: actions/setup-dotnet@4d6c8fcf3c8f7a60068d26b594648e99df24cee3 # v4.0.0
- name: Initialize CodeQL
uses: github/codeql-action/init@cdcdbb579706841c47f7063dda365e292e5cad7a # v2.13.4
with:
languages: ${{ matrix.language }}
- name: Autobuild
uses: github/codeql-action/autobuild@cdcdbb579706841c47f7063dda365e292e5cad7a # v2.13.4
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@cdcdbb579706841c47f7063dda365e292e5cad7a # v2.13.4
with:
category: "/language:${{ matrix.language }}"