summaryrefslogtreecommitdiff
path: root/.github/workflows/codeql.yml
diff options
context:
space:
mode:
authorYuriy Andamasov <yuriy@vyos.io>2026-07-14 14:50:57 +0300
committerYuriy Andamasov <yuriy@vyos.io>2026-07-14 15:08:07 +0300
commit8f6bb858609902b10474b8c17081dfed98c4c635 (patch)
tree97eca2c5870966b88b551e2f2c0ff21a39dca311 /.github/workflows/codeql.yml
parentdb8c9bdef5d524ce92c7068514a87a4b36a3ddd8 (diff)
downloadrest.vyos-8f6bb858609902b10474b8c17081dfed98c4c635.tar.gz
rest.vyos-8f6bb858609902b10474b8c17081dfed98c4c635.zip
ci: T9082: onboard CodeQL scanning via central reusable workflow
Caller temporarily pinned to the Track-A feature SHA for pre-merge validation of the legacy interpreted path. Flipped to @production before merge. 🤖 Generated by [robots](https://vyos.io)
Diffstat (limited to '.github/workflows/codeql.yml')
-rw-r--r--.github/workflows/codeql.yml22
1 files changed, 22 insertions, 0 deletions
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
new file mode 100644
index 0000000..380d47a
--- /dev/null
+++ b/.github/workflows/codeql.yml
@@ -0,0 +1,22 @@
+name: "Perform CodeQL Analysis"
+
+on:
+ push:
+ branches:
+ - main
+ pull_request:
+ branches:
+ - main
+ schedule:
+ - cron: '10 11 * * 0'
+
+permissions:
+ actions: read
+ contents: read
+ security-events: write
+
+jobs:
+ codeql-analysis-call:
+ uses: vyos/.github/.github/workflows/codeql-analysis.yml@b0082401423f12eb68200266227edc8bb54c9937
+ with:
+ languages: "['python']"