Commit Graph

7 Commits

Author SHA1 Message Date
Peter Mescalchin 8062e2ab19 Bump `actions/checkout@v3` 2022-04-27 12:08:40 +10:00
Brian Cristante 2368feccd5
Avoid triggering push for Dependabot branches (again) (#223) 2021-06-16 10:31:46 -04:00
Brian Cristante 8507687653
avoid triggering push for Dependabot branches 2021-06-16 10:05:05 -04:00
Robin Neatherway a1af2e8f43
Add on: pull_request trigger to CodeQL workflow (#165)
From February 2021, in order to provide feedback on pull requests, Code Scanning workflows must be configured with both `push` and `pull_request` triggers. This is because Code Scanning compares the results from a pull request against the results for the base branch to tell you only what has changed between the two.

Early in the beta period we supported displaying results on pull requests for workflows with only `push` triggers, but have discontinued support as this proved to be less robust.

See https://docs.github.com/en/free-pro-team@latest/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#scanning-pull-requests for more information on how best to configure your Code Scanning workflows.
2021-01-15 12:19:21 +01:00
Nick Schonning 9bcc1e21d0
chore: Remove CodeQL strategy (#79)
The job isn't using a matrix, so this value isn't allowed
2020-05-13 11:17:32 +02:00
Josh Gross d6636db5bd
Add paths-ignore for md files 2020-05-11 09:48:08 -04:00
Josh Gross 1c797a4e6c
Create codeql-analysis.yml 2020-05-11 09:27:19 -04:00