name: CodeQL on: push: branches: - master # The branches below must be a subset of the branches above pull_request: branches: - master schedule: - cron: '0 11 * * *' # | | | | | # | | | | |____ day of the week (0 - 6 or SUN-SAT) # | | | |____ month (1 - 12 or JAN-DEC) # | | |____ day of the month (1 - 31) # | |____ hour (0 - 23) # |____ minute (0 - 59) jobs: analyze: runs-on: ubuntu-20.04 name: Analyze # The maximum number of minutes to let a workflow run # before GitHub automatically cancels it. Default: 360 timeout-minutes: 30 strategy: # When set to true, GitHub cancels # all in-progress jobs if any matrix job fails. fail-fast: false matrix: language: - javascript permissions: # required for all workflows security-events: write steps: - name: Checkout code uses: actions/checkout@v4 - name: Initialize CodeQL uses: github/codeql-action/init@v2 with: languages: ${{ matrix.language }} - name: Autobuild uses: github/codeql-action/autobuild@v2 - name: Setup Hugo uses: peaceiris/actions-hugo@v2 with: hugo-version: '0.101.0' extended: true - name: Setup Node uses: actions/setup-node@v3 with: node-version: '14' - name: Cache dependencies uses: actions/cache@v3 with: path: ~/.npm key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }} restore-keys: | ${{ runner.os }}-node- - name: Install a project with a clean slate run: npm ci - name: Build site run: | hugo --verbose --source=exampleSite --buildDrafts --buildFuture env: HUGO_RESOURCEDIR: '../resources' HUGO_ENV: development - name: Perform CodeQL Analysis uses: github/codeql-action/analyze@v2