spring-io
diff --git a/‎.github/workflows/codeql-analysis.yml
Lines changed: 46 additions & 0 deletions b/‎.github/workflows/codeql-analysis.yml
Lines changed: 46 additions & 0 deletions
diff --git a/‎.idea/.gitignore
Lines changed: 10 additions & 0 deletions b/‎.idea/.gitignore
Lines changed: 10 additions & 0 deletions
diff --git a/‎.idea/main.iml
Lines changed: 9 additions & 0 deletions b/‎.idea/main.iml
Lines changed: 9 additions & 0 deletions
diff --git a/‎.idea/misc.xml
Lines changed: 6 additions & 0 deletions b/‎.idea/misc.xml
Lines changed: 6 additions & 0 deletions
diff --git a/‎.idea/modules.xml
Lines changed: 8 additions & 0 deletions b/‎.idea/modules.xml
Lines changed: 8 additions & 0 deletions
diff --git a/‎.idea/vcs.xml
Lines changed: 6 additions & 0 deletions b/‎.idea/vcs.xml
Lines changed: 6 additions & 0 deletions
diff --git a/‎README.adoc
Lines changed: 21 additions & 0 deletions b/‎README.adoc
Lines changed: 21 additions & 0 deletions
@@ -0,0 +1,46 @@
+# Based off of https://github.com/actions/reusable-workflows/blob/95d9656793415e47f574f7967f3850ea3bf5a7ed/.github/workflows/codeql-analysis.yml
+# This is modified to simplify the configuration for Spring Projects
+# This workflow helps to analyze repository code for vulnerabilities, bugs, and other errors using CodeQL.
+# For that CodeQL Action is used: https://github.com/github/codeql-action
+# Learn more about CodeQL at https://codeql.github.com/
+
+name: CodeQL
+
+on:
+  push:
+  pull_request:
+  workflow_dispatch:
+  workflow_call:
+  schedule:
+    - cron: '39 13 * * 4'
+
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      # Initializes the CodeQL tools for scanning.
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v3
+        with:
+          languages: 'actions'
+          build-mode: 'none'
+          # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
+          queries: security-extended,security-and-quality
+
+      # We are only doing actions which does not require a build
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v3
@@ -0,0 +1,21 @@
+= A Workflow for Running CodeQL Actions
+
+Based off of GitHub's https://github.com/actions/reusable-workflows/blob/95d9656793415e47f574f7967f3850ea3bf5a7ed/.github/workflows/codeql-analysis.yml[reusable workflow], this action is modified to run CodeQL for the actions language.
+
+.github/workflows/codeql.yml
+[source,yaml]
+----
+name: "CodeQL Advanced"
+
+on:
+  push:
+  pull_request:
+  workflow_dispatch:
+  schedule:
+    # https://docs.github.com/en/actions/writing-workflows/choosing-when-your-workflow-runs/events-that-trigger-workflows#schedule
+    - cron: '0 5 * * *'
+
+jobs:
+  codeql-analysis-call:
+    uses: spring-io/codeql-actions/.github/workflows/codeql-analysis.yml@1
+----