Add codeql GitHub Action

gohugoio / gohugoioTheme

A [wip] theme for the gohugo.io home page, docs and theme sites.

MIT License

107 stars 63 forks source link

Add codeql GitHub Action #250

Open coliff opened 2 years ago

coliff commented 2 years ago

Runs once per month (or manually from Actions tab)

REF: github/codeql-action#codeql-action

bep commented 1 year ago

What does it do?

coliff commented 1 year ago

This action runs GitHub's industry-leading semantic code analysis engine, CodeQL, against a repository's source code to find security vulnerabilities. It then automatically uploads the results to GitHub so they can be displayed in the repository's security tab. CodeQL runs an extensible set of queries, which have been developed by the community and the GitHub Security Lab to find common vulnerabilities in your code.

REF: https://github.com/github/codeql-action#codeql-action