1*60a517b6SEd Maste# Copyright (c) 2022 Yubico AB. All rights reserved. 2*60a517b6SEd Maste# Use of this source code is governed by a BSD-style 3*60a517b6SEd Maste# license that can be found in the LICENSE file. 4*60a517b6SEd Maste# SPDX-License-Identifier: BSD-2-Clause 5*60a517b6SEd Maste 6*60a517b6SEd Mastename: "codeql" 7*60a517b6SEd Maste 8*60a517b6SEd Masteon: 9*60a517b6SEd Maste pull_request: 10*60a517b6SEd Maste branches: 11*60a517b6SEd Maste - main 12*60a517b6SEd Maste push: 13*60a517b6SEd Maste branches: 14*60a517b6SEd Maste - main 15*60a517b6SEd Maste - '*-ci' 16*60a517b6SEd Maste schedule: 17*60a517b6SEd Maste - cron: '0 0 * * 0' 18*60a517b6SEd Maste 19*60a517b6SEd Mastepermissions: 20*60a517b6SEd Maste security-events: write 21*60a517b6SEd Maste 22*60a517b6SEd Mastejobs: 23*60a517b6SEd Maste codeql-build: 24*60a517b6SEd Maste if: github.repository == 'Yubico/libfido2' 25*60a517b6SEd Maste runs-on: ubuntu-22.04 26*60a517b6SEd Maste steps: 27*60a517b6SEd Maste - name: checkout 28*60a517b6SEd Maste uses: actions/checkout@v4 29*60a517b6SEd Maste with: 30*60a517b6SEd Maste fetch-depth: 2 31*60a517b6SEd Maste - name: init codeql 32*60a517b6SEd Maste uses: github/codeql-action/init@v2 33*60a517b6SEd Maste - name: build 34*60a517b6SEd Maste env: 35*60a517b6SEd Maste CC: gcc 36*60a517b6SEd Maste run: | 37*60a517b6SEd Maste sudo apt -q update 38*60a517b6SEd Maste sudo apt install -q -y libcbor-dev libudev-dev libz-dev original-awk \ 39*60a517b6SEd Maste libpcsclite-dev 40*60a517b6SEd Maste ./.actions/build-linux-gcc 41*60a517b6SEd Maste - name: perform codeql analysis 42*60a517b6SEd Maste uses: github/codeql-action/analyze@v2 43