name: GitHub CodeQL ๐Ÿ”ฌ on: workflow_call: inputs: commit: required: true type: string jobs: analyze: name: Analyze ${{ matrix.language }} ๐Ÿ”ฌ runs-on: ubuntu-latest strategy: fail-fast: false matrix: language: - javascript-typescript steps: - name: Checkout repository โฌ‡๏ธ uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: ref: ${{ inputs.commit }} show-progress: false - name: Initialize CodeQL ๐Ÿ› ๏ธ uses: github/codeql-action/init@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13 with: queries: security-and-quality languages: ${{ matrix.language }} - name: Autobuild ๐Ÿ“ฆ uses: github/codeql-action/autobuild@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13 - name: Perform CodeQL Analysis ๐Ÿงช uses: github/codeql-action/analyze@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13 with: category: '/language:${{matrix.language}}'