Add a CodeQL-scanning workflow (#372)

author: Jon Parise <jon@pinterest.com> 2022-02-14 11:55:38 -0800
committer: GitHub <noreply@github.com> 2022-02-14 11:55:38 -0800
commit: 4611e0b01589cb7b4c18455fd0805204d320e11e (patch)
tree: 0e91c78c4e472e6634c088c0b33d6a11ac412cfd
parent: cb96bb04c450d7462d5836a5b0fcc8ca5b5bb7b9 (diff)
download: pymemcache-4611e0b01589cb7b4c18455fd0805204d320e11e.tar.gz
1 files changed, 42 insertions, 0 deletions
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
new file mode 100644
index 0000000..1dc7bb1
--- /dev/null
+++ b/.github/workflows/codeql.yml
@@ -0,0 +1,42 @@
+---
+name: "CodeQL"
+
+on:
+  push:
+    branches:
+      - master
+  pull_request:
+    branches:
+      - master
+  schedule:
+    - cron: '45 8 * * 4'
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language:
+          - 'python'
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v2
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v1
+        with:
+          languages: ${{ matrix.language }}
+
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v1
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v1
author	Jon Parise <jon@pinterest.com>	2022-02-14 11:55:38 -0800
committer	GitHub <noreply@github.com>	2022-02-14 11:55:38 -0800
commit	4611e0b01589cb7b4c18455fd0805204d320e11e (patch)
tree	0e91c78c4e472e6634c088c0b33d6a11ac412cfd
parent	cb96bb04c450d7462d5836a5b0fcc8ca5b5bb7b9 (diff)
download	pymemcache-4611e0b01589cb7b4c18455fd0805204d320e11e.tar.gz