codeql-analysis.yml

name: "Sjekk kodekvalitet"

on:
    push:
        branches: [main]
    pull_request:
        branches: [main]
        paths:
            - "**/*.js"
            - "**/*.ts"
            - "**/*.tsx"
            - "pnpm-lock.yaml"
    schedule:
        - cron: "0 18 * * 3"

run-name: Sjekk kodekvalitet for commit ${{ github.sha }}

jobs:
    analyze:
        name: Analyze
        runs-on: ubuntu-latest
        strategy:
            fail-fast: false
            matrix:
                language: ["javascript"]
        permissions:
            contents: read
            security-events: write
            pull-requests: read
        steps:
            - name: Checkout repository
              uses: actions/checkout@v3

            - name: Initialize CodeQL
              if: ${{ !contains(github.event.head_commit.message, '[ci skip release]') }}
              uses: github/codeql-action/init@v2
              with:
                  languages: ${{ matrix.language }}

            - name: Perform CodeQL Analysis
              if: ${{ !contains(github.event.head_commit.message, '[ci skip release]') }}
              uses: github/codeql-action/analyze@v2