This is the standard workflow file used to enable GitHub's new Code Scanning feature. I've tested it on some repositories under my personal account and it has been quite promising so far with a high true-positive rate. We're free to play with the scan scheduling and parameters so we can tune to our needs moving forward.
We'll have to see how many Actions minutes these scans use. On smaller repositories in my personal account the average has been near 3 minutes per scan. I'm not sure how many Actions minutes we're allotted now or what the cost would be past that. If we like what we see we can enable it on all of our public repositories, but will have to talk to sales about using it on private repositories.
This is the standard workflow file used to enable GitHub's new Code Scanning feature. I've tested it on some repositories under my personal account and it has been quite promising so far with a high true-positive rate. We're free to play with the scan scheduling and parameters so we can tune to our needs moving forward.
We'll have to see how many Actions minutes these scans use. On smaller repositories in my personal account the average has been near 3 minutes per scan. I'm not sure how many Actions minutes we're allotted now or what the cost would be past that. If we like what we see we can enable it on all of our public repositories, but will have to talk to sales about using it on private repositories.