scan-with-codeql.yml

name: JavaScript CodeQL Analysis

on:
  pull_request:
    branches:
      - development
      - main

jobs:
  analyze:
    name: Analyze JavaScript code with CodeQL
    runs-on: ubuntu-latest
    needs: init
    permissions:
      actions: read
      contents: read
      security-events: write
    steps:
      - name: Checkout code
        uses: actions/checkout@v4
        if: github.event.pull_request.head.sha == github.event.pull_request.base.sha

      - name: Initialize CodeQL
        id: initialize-codeql
        uses: github/codeql-action/init@v3
        with:
          languages: javascript

      - name: Perform CodeQL Analysis
        uses: github/codeql-action/analyze@v3
        if: github.event.pull_request.head.sha == github.event.pull_request.base.sha
        with:
          category: "JavaScript CodeQL Analysis"
          
  init:
    name: Initialize CodeQL environment
    runs-on: ubuntu-latest
    steps:
      - name: Checkout code
        uses: actions/checkout@v4

      - name: Initialize CodeQL
        id: initialize-codeql
        uses: github/codeql-action/init@v3
        with:
          languages: javascript

    outputs:
      needs: initialize-codeql
      codeql-version: ${{ steps.initialize-codeql.outputs.codeql-version }}