diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 7f89179bb4..00a0aad885 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -1,4 +1,4 @@ -name: "Code scanning - action" +name: "CodeQL" on: # push: @@ -27,14 +27,13 @@ permissions: # added using https://github.com/step-security/secure-workflows contents: read jobs: - CodeQL-Build: - - # CodeQL runs on ubuntu-latest and windows-latest + analyze: + name: Analyze + runs-on: ubuntu-latest permissions: actions: read # for github/codeql-action/init to get workflow details contents: read # for actions/checkout to fetch code security-events: write # for github/codeql-action/autobuild to send a status report - runs-on: ubuntu-latest # CodeQL fails to run pull requests from dependabot due to missing write access to upload results. if: ${{ !contains(github.event.head_commit.message, '[DOC]') && !contains(github.event.pull_request.labels.*.name, 'Documentation') && github.event.head_commit.pusher.name != 'dependabot[bot]' }}