Add weekly schedule to CodeQL workflow #5
Conversation
There was a problem hiding this comment.
Pull request overview
This pull request adds a weekly schedule trigger to a CodeQL workflow file. The workflow is configured to run on pushes to main, pull requests to main, and now includes a cron schedule to run every Sunday at midnight UTC.
- Added schedule trigger with cron expression for weekly execution
- Configured to run on Sundays at 00:00 UTC
- Maintains existing push and pull_request triggers
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| on: | ||
| push: | ||
| branches: [ "main" ] | ||
| pull_request: | ||
| branches: [ "main" ] | ||
| schedule: | ||
| - cron: '0 0 * * 0' | ||
|
|
There was a problem hiding this comment.
This workflow file only defines triggers but is missing the actual workflow jobs and steps. A complete CodeQL workflow requires:
- A workflow name
- Job definitions with runner specifications
- Steps to checkout code
- CodeQL initialization and analysis actions
The workflow will not perform any security analysis in its current state. Consider using GitHub's standard CodeQL workflow template which includes all necessary components for security scanning.
|
@microsoft-github-policy-service agree |
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
No description provided.