From fb6fb9ccf91a495f1a6f750d983c1d16ab615d57 Mon Sep 17 00:00:00 2001 From: Kilian von Pflugk Date: Sat, 28 Sep 2024 00:59:05 +0200 Subject: [PATCH] ci: run codeql only in public repos --- .github/workflows/codeql.yml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 6599f69..db0dbcb 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -25,6 +25,9 @@ jobs: name: Analyze runs-on: ubuntu-latest + # This job will only run if the repository is public + if: ${{ github.event.repository.private == false }} + strategy: fail-fast: false matrix: @@ -49,7 +52,9 @@ jobs: with: languages: ${{ matrix.language }} queries: +security-extended + - name: Autobuild uses: github/codeql-action/autobuild@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8 + - name: Perform CodeQL Analysis uses: github/codeql-action/analyze@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8