From 5ccf0c1d6dc0d5227b6c0fd2cb1da714f9479fd5 Mon Sep 17 00:00:00 2001 From: Yuriy Andamasov Date: Tue, 14 Jul 2026 14:50:42 +0300 Subject: ci: T9082: onboard CodeQL scanning via central reusable workflow MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Caller temporarily pinned to the Track-A feature SHA for pre-merge validation; first commit exercises the legacy autobuild path on codeql-action v4. Flipped to @production before merge. 🤖 Generated by [robots](https://vyos.io) --- .github/workflows/codeql.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .github/workflows/codeql.yml (limited to '.github/workflows/codeql.yml') diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml new file mode 100644 index 0000000..31bfba7 --- /dev/null +++ b/.github/workflows/codeql.yml @@ -0,0 +1,22 @@ +name: "Perform CodeQL Analysis" + +on: + push: + branches: + - rolling + pull_request: + branches: + - rolling + schedule: + - cron: '28 13 * * 0' + +permissions: + actions: read + contents: read + security-events: write + +jobs: + codeql-analysis-call: + uses: vyos/.github/.github/workflows/codeql-analysis.yml@b0082401423f12eb68200266227edc8bb54c9937 + with: + languages: "['c-cpp']" -- cgit v1.2.3