juice-shop

1
name: "CodeQL Scan"
2

3
on:
4
  push:
5
  pull_request:
6

7
jobs:
8
  analyze:
9
    name: Analyze
10
    runs-on: ubuntu-latest
11
    permissions:
12
      actions: read
13
      contents: read
14
      security-events: write
15
    strategy:
16
      fail-fast: false
17
      matrix:
18
        language: [ 'javascript-typescript' ]
19
    steps:
20
    - name: Checkout repository
21
      uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac #v4.0.0
22
    - name: Initialize CodeQL
23
      uses: github/codeql-action/init@v2
24
      with:
25
        languages: ${{ matrix.language }}
26
        queries: security-extended
27
        config: |
28
          paths-ignore:
29
            - 'data/static/codefixes'
30
    - name: Autobuild
31
      uses: github/codeql-action/autobuild@v2
32
    - name: Perform CodeQL Analysis
33
      uses: github/codeql-action/analyze@v2
34