.github/workflows/code-scanning.yml - third_party/github/pinterest/ktlint - Git at Google

 # Code scanning with CodeQL
 #
 name: "CodeQL Advanced"

 on:
   push:
     branches: [ "master" ]
   pull_request:
     branches: [ "master" ]
   schedule:
     - cron: '41 8 * * 3'

 jobs:
   analyze:
     name: Analyze (${{ matrix.language }})
     # Runner size impacts CodeQL analysis time. To learn more, please see:
     #   - https://gh.io/recommended-hardware-resources-for-running-codeql
     #   - https://gh.io/supported-runners-and-hardware-resources
     #   - https://gh.io/using-larger-runners (GitHub.com only)
     # Consider using larger runners or machines with greater resources for possible analysis time improvements.
     runs-on: ${{ 'ubuntu-latest' }}
     permissions:
       # required for all workflows
       security-events: write

       # required to fetch internal or private CodeQL packs
       packages: read

       # only required for workflows in private repositories
       actions: read
       contents: read

     strategy:
       fail-fast: false
       matrix:
         include:
           - language: actions
             build-mode: none
           - language: kotlin
             build-mode: manual
     steps:
       - name: Checkout repository
         uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5

       - if: matrix.language == 'kotlin'
         name: Setup Gradle build
         uses: ./.github/actions/setup-gradle-build

       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
         uses: github/codeql-action/init@v4
         with:
           languages: ${{ matrix.language }}
           build-mode: ${{ matrix.build-mode }}
           # If you wish to specify custom queries, you can do so here or in a config file.
           # By default, queries listed here will override any specified in a config file.
           # Prefix the list here with "+" to use these queries and those in the config file.

           # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
           # queries: security-extended,security-and-quality

       # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
       - if: matrix.language == 'kotlin'
         name: Build with release Kotlin version
         shell: bash
         run: ./gradlew build -x test --no-build-cache

       - name: Perform CodeQL Analysis
         uses: github/codeql-action/analyze@v4
         with:
           category: "/language:${{matrix.language}}"
	# Code scanning with CodeQL
	#
	name: "CodeQL Advanced"

	on:
	push:
	branches: [ "master" ]
	pull_request:
	branches: [ "master" ]
	schedule:
	- cron: '41 8 * * 3'

	jobs:
	analyze:
	name: Analyze (${{ matrix.language }})
	# Runner size impacts CodeQL analysis time. To learn more, please see:
	# - https://gh.io/recommended-hardware-resources-for-running-codeql
	# - https://gh.io/supported-runners-and-hardware-resources
	# - https://gh.io/using-larger-runners (GitHub.com only)
	# Consider using larger runners or machines with greater resources for possible analysis time improvements.
	runs-on: ${{ 'ubuntu-latest' }}
	permissions:
	# required for all workflows
	security-events: write

	# required to fetch internal or private CodeQL packs
	packages: read

	# only required for workflows in private repositories
	actions: read
	contents: read

	strategy:
	fail-fast: false
	matrix:
	include:
	- language: actions
	build-mode: none
	- language: kotlin
	build-mode: manual
	steps:
	- name: Checkout repository
	uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5

	- if: matrix.language == 'kotlin'
	name: Setup Gradle build
	uses: ./.github/actions/setup-gradle-build

	# Initializes the CodeQL tools for scanning.
	- name: Initialize CodeQL
	uses: github/codeql-action/init@v4
	with:
	languages: ${{ matrix.language }}
	build-mode: ${{ matrix.build-mode }}
	# If you wish to specify custom queries, you can do so here or in a config file.
	# By default, queries listed here will override any specified in a config file.
	# Prefix the list here with "+" to use these queries and those in the config file.

	# For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
	# queries: security-extended,security-and-quality

	# 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
	- if: matrix.language == 'kotlin'
	name: Build with release Kotlin version
	shell: bash
	run: ./gradlew build -x test --no-build-cache

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@v4
	with:
	category: "/language:${{matrix.language}}"