ci(codeql): enable CodeQL for GitHub Actions

Support for scanning GitHub Actions was added in 2024-12-17, see https://github.blog/changelog/2024-12-17-find-and-fix-actions-workflows-vulnerabilities-with-codeql-public-preview/
2025-09-26 10:49:38 +02:00 · 2025-09-25 17:17:12 +09:00
parent d5c4eff251
commit 6e67515f41
1 changed files with 2 additions and 2 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -26,8 +26,8 @@ jobs:
    strategy:
      fail-fast: false
      matrix:
-        language: ['javascript']
+        language: ['javascript', 'actions']
-        # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ]
+        # CodeQL supports [ 'actions', 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ]
        # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support
    steps: