ci: update codeql

oBusk · Mar 1, 2021 · b1db45a · b1db45a
1 parent a5b7f6a
commit b1db45a
Showing 1 changed file with 4 additions and 14 deletions.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -7,7 +7,7 @@ on:
         # The branches below must be a subset of the branches above
         branches: [main]
     schedule:
-        - cron: "0 19 * * 3"
+        - cron: "23 4 * * 0"
 
 jobs:
     analyze:
@@ -17,24 +17,14 @@ jobs:
         strategy:
             fail-fast: false
             matrix:
-                # Override automatic language detection by changing the below list
-                # Supported options are ['csharp', 'cpp', 'go', 'java', 'javascript', 'python']
                 language: ["javascript"]
-                # Learn more...
-                # https://docs.github.com/en/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#overriding-automatic-language-detection
+                # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python' ]
+                # Learn more:
+                # https://docs.github.com/en/free-pro-team@latest/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#changing-the-languages-that-are-analyzed
 
         steps:
             - name: Checkout repository
               uses: actions/checkout@v2
-              with:
-                  # We must fetch at least the immediate parents so that if this is
-                  # a pull request then we can checkout the head.
-                  fetch-depth: 2
-
-            # If this run was triggered by a pull request event, then checkout
-            # the head of the pull request instead of the merge commit.
-            - run: git checkout HEAD^2
-              if: ${{ github.event_name == 'pull_request' }}
 
             # Initializes the CodeQL tools for scanning.
             - name: Initialize CodeQL