name: GitHub CodeQL ๐Ÿ”ฌ on: workflow_call: inputs: commit: required: true type: string jobs: analyze: name: Analyze ${{ matrix.language }} ๐Ÿ”ฌ runs-on: ubuntu-latest strategy: fail-fast: false matrix: language: - javascript-typescript steps: - name: Checkout repository โฌ‡๏ธ uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: ref: ${{ inputs.commit }} show-progress: false - name: Initialize CodeQL ๐Ÿ› ๏ธ uses: github/codeql-action/init@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10 with: queries: security-and-quality languages: ${{ matrix.language }} - name: Autobuild ๐Ÿ“ฆ uses: github/codeql-action/autobuild@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10 - name: Perform CodeQL Analysis ๐Ÿงช uses: github/codeql-action/analyze@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10 with: category: '/language:${{matrix.language}}'