romenskiy2012/curl
1
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2026-04-28 15:32:13 +03:00
Code Issues Projects Releases Packages Wiki Activity

GHA/checksrc: pass zizmor a GH token, fix warnings found

Browse source 
For a complete, online, check.

After this patch the check takes 30s, up from a fraction of a second.

Also bump CodeQL actions to their latest version.

Closes #18827
This commit is contained in:
Viktor Szakats 2025-10-03 11:43:10 +02:00
parent 4e2edde102
commit 2e5993ab08
No known key found for this signature in database
GPG key ID: B5ABD165E2AEF201
3 changed files with 7 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

8
.github/workflows/codeql.yml vendored
View file

@ -48,13 +48,13 @@ jobs:
persist-credentials: false
- name: 'initialize'
uses: github/codeql-action/init@303c0aef88fc2fe5ff6d63d3b1596bfd83dfa1f9 # v3
uses: github/codeql-action/init@3599b3baa15b485a2e49ef411a7a4bb2452e7f93 # v3.30.5
with:
languages: actions, python
queries: security-extended
- name: 'perform analysis'
uses: github/codeql-action/analyze@303c0aef88fc2fe5ff6d63d3b1596bfd83dfa1f9 # v3
uses: github/codeql-action/analyze@3599b3baa15b485a2e49ef411a7a4bb2452e7f93 # v3.30.5
c:
name: 'C'
@ -84,7 +84,7 @@ jobs:
persist-credentials: false
- name: 'initialize'
uses: github/codeql-action/init@303c0aef88fc2fe5ff6d63d3b1596bfd83dfa1f9 # v3
uses: github/codeql-action/init@3599b3baa15b485a2e49ef411a7a4bb2452e7f93 # v3.30.5
with:
languages: cpp
build-mode: manual
@ -130,4 +130,4 @@ jobs:
fi
- name: 'perform analysis'
uses: github/codeql-action/analyze@303c0aef88fc2fe5ff6d63d3b1596bfd83dfa1f9 # v3
uses: github/codeql-action/analyze@3599b3baa15b485a2e49ef411a7a4bb2452e7f93 # v3.30.5