fix(kuramoto): canonicalise signed-community labels for recalibration… #100
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # SPDX-License-Identifier: MIT | |
| # | |
| # CodeQL — static application security testing (SAST). | |
| # | |
| # Runs on every push to `main` and weekly. Intentionally decoupled from the | |
| # synchronous PR gate so SARIF uploads and long-running analysis do not block | |
| # fast-path merges. Findings surface in the Security tab. | |
| name: CodeQL | |
| on: | |
| push: | |
| branches: [main] | |
| schedule: | |
| # Every Monday at 02:23 UTC — off-peak, staggered against other scans. | |
| - cron: '23 2 * * 1' | |
| workflow_dispatch: | |
| permissions: | |
| contents: read | |
| security-events: write | |
| env: | |
| FORCE_JAVASCRIPT_ACTIONS_TO_NODE24: 'true' | |
| concurrency: | |
| group: codeql-${{ github.ref }} | |
| cancel-in-progress: true | |
| jobs: | |
| analyze: | |
| name: codeql-${{ matrix.language }} | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 45 | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| language: [python, javascript, go] | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 | |
| - name: Initialize CodeQL | |
| uses: github/codeql-action/init@45c373516f557556c15d420e3f5e0aa3d64366bc # v3 | |
| with: | |
| languages: ${{ matrix.language }} | |
| queries: security-and-quality | |
| - name: Set up Go | |
| if: matrix.language == 'go' | |
| uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c # v5 | |
| with: | |
| go-version-file: 'go.work' | |
| cache: false | |
| - name: Autobuild | |
| uses: github/codeql-action/autobuild@45c373516f557556c15d420e3f5e0aa3d64366bc # v3 | |
| - name: Analyze | |
| uses: github/codeql-action/analyze@45c373516f557556c15d420e3f5e0aa3d64366bc # v3 | |
| with: | |
| category: '/language:${{ matrix.language }}' |