diff options
| author | Allen Winter <winter@kde.org> | 2022-06-01 17:11:07 -0400 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-06-01 17:11:07 -0400 |
| commit | dd14cc2e6f9df83f2e1390b89dbf6a1a75afe0ca (patch) | |
| tree | dbacc0eded9e266a18703e53369e64ef20e54e3b | |
| parent | 11ca9164090e1bbb9c520a9a3eabbaa713dc46ea (diff) | |
| download | libical-git-dd14cc2e6f9df83f2e1390b89dbf6a1a75afe0ca.tar.gz | |
Create codacy.yml
| -rw-r--r-- | .github/workflows/codacy.yml | 60 |
1 files changed, 60 insertions, 0 deletions
diff --git a/.github/workflows/codacy.yml b/.github/workflows/codacy.yml new file mode 100644 index 00000000..d2000770 --- /dev/null +++ b/.github/workflows/codacy.yml @@ -0,0 +1,60 @@ +# This workflow uses actions that are not certified by GitHub. +# They are provided by a third-party and are governed by +# separate terms of service, privacy policy, and support +# documentation. + +# This workflow checks out code, performs a Codacy security scan +# and integrates the results with the +# GitHub Advanced Security code scanning feature. For more information on +# the Codacy security scan action usage and parameters, see +# https://github.com/codacy/codacy-analysis-cli-action. +# For more information on Codacy Analysis CLI in general, see +# https://github.com/codacy/codacy-analysis-cli. + +name: Codacy Security Scan + +on: + push: + branches: [ 3.0 ] + pull_request: + # The branches below must be a subset of the branches above + branches: [ 3.0 ] + schedule: + - cron: '18 8 * * 4' + +permissions: + contents: read + +jobs: + codacy-security-scan: + permissions: + contents: read # for actions/checkout to fetch code + security-events: write # for github/codeql-action/upload-sarif to upload SARIF results + name: Codacy Security Scan + runs-on: ubuntu-latest + steps: + # Checkout the repository to the GitHub Actions runner + - name: Checkout code + uses: actions/checkout@v3 + + # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis + - name: Run Codacy Analysis CLI + uses: codacy/codacy-analysis-cli-action@d840f886c4bd4edc059706d09c6a1586111c540b + with: + # Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository + # You can also omit the token and run the tools that support default configurations + project-token: ${{ secrets.CODACY_PROJECT_TOKEN }} + verbose: true + output: results.sarif + format: sarif + # Adjust severity of non-security issues + gh-code-scanning-compat: true + # Force 0 exit code to allow SARIF file generation + # This will handover control about PR rejection to the GitHub side + max-allowed-issues: 2147483647 + + # Upload the SARIF file generated in the previous step + - name: Upload SARIF results file + uses: github/codeql-action/upload-sarif@v2 + with: + sarif_file: results.sarif |