name: Clippy Analysis
run-name: Clippy Analysis
on:
push:
branches: [main]
pull_request:
permissions:
contents: read
jobs:
clippy:
runs-on: ubuntu-latest
permissions:
security-events: write
contents: read
steps:
- name: Harden the runner (Audit all outbound calls)
uses: step-security/harden-runner@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 with:
egress-policy: audit
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd - uses: dtolnay/rust-toolchain@631a55b12751854ce901bb631d5902ceb48146f7 with:
components: clippy
- run: cargo install clippy-sarif sarif-fmt
- run: cargo clippy --message-format=json -- -D warnings | clippy-sarif | tee results.sarif | sarif-fmt
continue-on-error: true
- uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc with:
sarif_file: results.sarif