Just to make sure we didn't break anything.
on:
pull_request:
branches: [main]
+ paths:
+ - .github/codeql-config.yml
+ - .github/codeql-custom.qls
+ - .github/workflows/codeql-analysis.yml
# It takes the workflow approximately 30 minutes to analyze the code base
# so it doesn't seem to make much sense to trigger it on every PR or commit.
# It runs daily at 01:00 to avoid colliding with the Coverity workflow.
analyze:
name: Analyze
runs-on: ubuntu-latest
- if: github.event_name == 'schedule' || github.event.pull_request.user.login == 'dependabot[bot]'
concurrency:
group: ${{ github.workflow }}-${{ matrix.language }}-${{ github.ref }}
cancel-in-progress: true