Add codeql.

2022-01-25 10:11:58 +01:00 · 2022-01-25 10:11:58 +01:00 · 1d172026eb
commit 1d172026eb
parent 8fbe1b526a
3 changed files with 29 additions and 2 deletions
--- a/.github/workflows/codeql.yaml
+++ b/.github/workflows/codeql.yaml
@ -0,0 +1,26 @@
+name: CodeQL
+
+"on":
+  workflow_dispatch: {}
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+    paths: [src/main/java/*.java]
+  schedule:
+    - cron: '0 0 * * 0'
+
+jobs:
+  codeql:
+    runs-on: ubuntu-latest
+    permissions:
+      security-events: write
+      actions: read
+      contents: read
+    steps:
+      - uses: actions/checkout@v2
+      - uses: github/codeql-action/init@v1
+        with:
+          languages: java
+      - uses: github/codeql-action/autobuild@v1
+      - uses: github/codeql-action/analyze@v1
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@ -20,6 +20,7 @@ jobs:
        with:
          distribution: temurin
          java-version: 11
+          cache: maven
          server-id: sonatype-nexus
          server-username: SERVER_USERNAME
          server-password: SERVER_PASSWORD
--- a/.github/workflows/snapshot.yaml
+++ b/.github/workflows/snapshot.yaml
@ -6,7 +6,7 @@ name: Snapshot

 jobs:

-  lint-yaml:
+  yaml:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2
@ -15,7 +15,7 @@ jobs:
          format: colored
          strict: true

-  lint-markdown:
+  markdown:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2