File tree Expand file tree Collapse file tree 2 files changed +76
-0
lines changed
Expand file tree Collapse file tree 2 files changed +76
-0
lines changed Original file line number Diff line number Diff line change 1+ version : 2
2+ updates :
3+ # npm dependencies
4+ - package-ecosystem : " npm"
5+ directory : " /"
6+ schedule :
7+ interval : " weekly"
8+ day : " monday"
9+ open-pull-requests-limit : 5
10+ labels :
11+ - " dependencies"
12+ - " npm"
13+ commit-message :
14+ prefix : " chore(deps)"
15+
16+ # Docker dependencies
17+ - package-ecosystem : " docker"
18+ directory : " /"
19+ schedule :
20+ interval : " weekly"
21+ day : " monday"
22+ open-pull-requests-limit : 3
23+ labels :
24+ - " dependencies"
25+ - " docker"
26+ commit-message :
27+ prefix : " chore(deps)"
28+
29+ # GitHub Actions
30+ - package-ecosystem : " github-actions"
31+ directory : " /"
32+ schedule :
33+ interval : " weekly"
34+ day : " monday"
35+ open-pull-requests-limit : 3
36+ labels :
37+ - " dependencies"
38+ - " ci"
39+ commit-message :
40+ prefix : " chore(ci)"
Original file line number Diff line number Diff line change 1+ name : CodeQL Security Analysis
2+
3+ on :
4+ push :
5+ branches : [main]
6+ pull_request :
7+ branches : [main]
8+ schedule :
9+ - cron : ' 0 0 * * 1'
10+
11+ jobs :
12+ analyze :
13+ name : Analyze
14+ runs-on : ubuntu-latest
15+ permissions :
16+ actions : read
17+ contents : read
18+ security-events : write
19+
20+ steps :
21+ - name : Checkout repository
22+ uses : actions/checkout@v4
23+
24+ - name : Initialize CodeQL
25+ uses : github/codeql-action/init@v3
26+ with :
27+ languages : javascript-typescript
28+ queries : security-extended
29+
30+ - name : Autobuild
31+ uses : github/codeql-action/autobuild@v3
32+
33+ - name : Perform CodeQL Analysis
34+ uses : github/codeql-action/analyze@v3
35+ with :
36+ category : " /language:javascript-typescript"
You can’t perform that action at this time.
0 commit comments