branch-names/.github/workflows/codacy-analysis.yml

# This workflow checks out code, performs a Codacy security scan
# and integrates the results with the
# GitHub Advanced Security code scanning feature.  For more information on
# the Codacy security scan action usage and parameters, see
# https://github.com/codacy/codacy-analysis-cli-action.
# For more information on Codacy Analysis CLI in general, see
# https://github.com/codacy/codacy-analysis-cli.

name: Codacy Security Scan

on:
  push:
    branches: [ main ]
  pull_request:
    # The branches below must be a subset of the branches above
    branches: [ main ]
  schedule:
    - cron: '15 16 * * 2'

jobs:
  codacy-security-scan:
    # Cancel other workflows that are running for the same branch
    # https://docs.github.com/en/actions/reference/workflow-syntax-for-github-actions#concurrency
    concurrency:
      group: ${{ github.workflow }}-${{ github.ref }}
      cancel-in-progress: true
    name: Codacy Security Scan
    runs-on: ubuntu-latest
    steps:
      # Checkout the repository to the GitHub Actions runner
      - name: Checkout code
        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4

      # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
      - name: Run Codacy Analysis CLI
        continue-on-error: true
        uses: codacy/codacy-analysis-cli-action@v4.4.1
        with:
          # Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository
          # You can also omit the token and run the tools that support default configurations
          project-token: ${{ secrets.CODACY_PROJECT_TOKEN }}
          verbose: true
          output: results.sarif
          format: sarif
          # Adjust severity of non-security issues
          gh-code-scanning-compat: true
          # Force 0 exit code to allow SARIF file generation
          # This will hand over control about PR rejection to the GitHub side
          max-allowed-issues: 2147483647

      # Upload the SARIF file generated in the previous step
      - name: Upload SARIF results file
        continue-on-error: true
        uses: github/codeql-action/upload-sarif@v3
        with:
          sarif_file: results.sarif
Added .github/workflows/codacy-analysis.yml 2021-07-31 01:34:39 +08:00			`# This workflow checks out code, performs a Codacy security scan`
			`# and integrates the results with the`
			`# GitHub Advanced Security code scanning feature. For more information on`
			`# the Codacy security scan action usage and parameters, see`
			`# https://github.com/codacy/codacy-analysis-cli-action.`
			`# For more information on Codacy Analysis CLI in general, see`
			`# https://github.com/codacy/codacy-analysis-cli.`

			`name: Codacy Security Scan`

			`on:`
			`push:`
			`branches: [ main ]`
			`pull_request:`
			`# The branches below must be a subset of the branches above`
			`branches: [ main ]`
			`schedule:`
			`- cron: '15 16 * * 2'`

			`jobs:`
			`codacy-security-scan:`
Updated .github/workflows/codacy-analysis.yml 2022-09-20 11:00:57 +08:00			`# Cancel other workflows that are running for the same branch`
			`# https://docs.github.com/en/actions/reference/workflow-syntax-for-github-actions#concurrency`
			`concurrency:`
			`group: ${{ github.workflow }}-${{ github.ref }}`
			`cancel-in-progress: true`
Added .github/workflows/codacy-analysis.yml 2021-07-31 01:34:39 +08:00			`name: Codacy Security Scan`
			`runs-on: ubuntu-latest`
			`steps:`
			`# Checkout the repository to the GitHub Actions runner`
			`- name: Checkout code`
chore(deps): update actions/checkout digest to 44c2b7a 2024-05-09 07:19:47 +08:00			`uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4`
Added .github/workflows/codacy-analysis.yml 2021-07-31 01:34:39 +08:00
			`# Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis`
			`- name: Run Codacy Analysis CLI`
Updated .github/workflows/codacy-analysis.yml 2022-09-20 10:31:08 +08:00			`continue-on-error: true`
chore(deps): update codacy/codacy-analysis-cli-action action to v4.4.1 2024-05-08 18:58:22 +08:00			`uses: codacy/codacy-analysis-cli-action@v4.4.1`
Added .github/workflows/codacy-analysis.yml 2021-07-31 01:34:39 +08:00			`with:`
			`# Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository`
			`# You can also omit the token and run the tools that support default configurations`
			`project-token: ${{ secrets.CODACY_PROJECT_TOKEN }}`
			`verbose: true`
			`output: results.sarif`
			`format: sarif`
			`# Adjust severity of non-security issues`
			`gh-code-scanning-compat: true`
			`# Force 0 exit code to allow SARIF file generation`
Updated .github/workflows/codacy-analysis.yml 2022-09-20 10:31:08 +08:00			`# This will hand over control about PR rejection to the GitHub side`
Added .github/workflows/codacy-analysis.yml 2021-07-31 01:34:39 +08:00			`max-allowed-issues: 2147483647`

			`# Upload the SARIF file generated in the previous step`
			`- name: Upload SARIF results file`
Updated .github/workflows/codacy-analysis.yml 2022-09-20 10:31:08 +08:00			`continue-on-error: true`
chore(deps): update github/codeql-action action to v3 2023-12-14 02:36:52 +08:00			`uses: github/codeql-action/upload-sarif@v3`
Added .github/workflows/codacy-analysis.yml 2021-07-31 01:34:39 +08:00			`with:`
			`sarif_file: results.sarif`