name: "Analyze backend using CodeQL" on: push: branches: [ main ] paths: - "backend/**" pull_request: branches: [ main ] paths: - "backend/**" jobs: analyze: name: "Analyze backend" runs-on: ubuntu-latest permissions: actions: read contents: read security-events: write steps: - name: Checkout repository uses: actions/checkout@v2 - name: Initialize CodeQL uses: github/codeql-action/init@v1 with: languages: "python" - name: Perform CodeQL Analysis uses: github/codeql-action/analyze@v1