Skip to content

Commit

Permalink
chore: apply ci hardening (#1)
Browse files Browse the repository at this point in the history 
- chore: apply 'Harden Runner' auditing to all ci tasks
- chore: apply `persist-credentials: false` to checkout tasks
- chore: publish dependency graph and add dependency review check
- chore: add codeql scan job (temp)

Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Signed-off-by: Sam Gammon <sam@elide.ventures>
  • Loading branch information
@step-security-bot @sgammon
step-security-bot authored and sgammon committed Mar 8, 2024
1 parent cd4c643 commit 7894664
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion .github/workflows/codeql.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@ jobs:
strategy:
fail-fast: false
matrix:
language: ["java", "javascript"]
language: ["java"]
# CodeQL supports [ $supported-codeql-languages ]
# Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support

Expand Down

0 comments on commit 7894664

Please sign in to comment.