Skip to content

Update codeql.yml

Update codeql.yml #36

Workflow file for this run

# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
# SPDX-FileCopyrightText: 2026 Kaito Udagawa <umireon@kaito.tokyo>
#
# SPDX-License-Identifier: Apache-2.0
name: CodeQL Advanced
# file: .github/workflows/codeql.yml
# author: Kaito Udagawa <umireon@kaito.tokyo>
# date: 2026-06-29
on:
push:
branches: [main]
pull_request:
branches: [main]
schedule:
- cron: '40 21 * * 4'
permissions: {}
env:
HOMEBREW_NO_ANALYTICS: '1'
HOMEBREW_NO_AUTO_UPDATE: '1'
HOMEBREW_NO_ENV_HINTS: '1'
HOMEBREW_NO_INSTALL_CLEANUP: '1'
jobs:
analyze-actions:
runs-on: ubuntu-24.04
permissions:
security-events: write
contents: read
steps:
- name: Checkout
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- name: Initialize CodeQL
uses: github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
with:
languages: actions
build-mode: none
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
with:
category: /language:actions
analyze-swift:
runs-on: macos-26
permissions:
security-events: write
contents: read
steps:
- name: Checkout
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- name: Generate project using XcodeGen
shell: bash --noprofile --norc -euo pipefail -O nullglob {0}
run: |
brew install xcodegen
xcodegen generate
- name: Initialize CodeQL
uses: github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
with:
languages: swift
build-mode: manual
- name: Build Xcode project
shell: bash --noprofile --norc -euo pipefail -O nullglob {0}
run: |
xcodebuild build \
-project LiveStreamerApplet.xcodeproj \
-target LiveStreamerAppletYT \
-sdk macosx \
-arch arm64 \
-configuration Debug \
ONLY_ACTIVE_ARCH=YES \
COMPILER_INDEX_STORE_ENABLE=NO \
CODE_SIGNING_REQUIRED=NO \
CODE_SIGNING_ALLOWED=NO
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
with:
category: /language:swift