fix(ci): make skills security scan manual only

This commit is contained in:
Vincent Koc
2026-04-30 03:49:27 -07:00
parent 678db6f0dc
commit 9300bb3ac4
-25
View File
@@ -2,28 +2,6 @@ name: CodeQL Skills High Severity
on:
workflow_dispatch:
pull_request:
types: [opened, synchronize, reopened, ready_for_review]
paths:
- ".github/CODEOWNERS"
- ".github/codeql/**"
- ".github/scripts/**"
- ".github/workflows/**"
push:
branches:
- main
- "security/**"
paths:
- ".github/CODEOWNERS"
- ".github/codeql/**"
- ".github/scripts/**"
- ".github/workflows/**"
schedule:
- cron: "20 7 * * *"
concurrency:
group: codeql-skills-high-${{ github.event_name == 'workflow_dispatch' && github.run_id || github.event_name == 'pull_request' && github.event.pull_request.number || github.sha }}
cancel-in-progress: ${{ github.event_name == 'pull_request' }}
permissions:
actions: read
@@ -33,7 +11,6 @@ permissions:
jobs:
workflow-actions:
name: Actions workflow security
if: ${{ github.event_name != 'pull_request' || !github.event.pull_request.draft }}
runs-on: ubuntu-24.04
timeout-minutes: 10
steps:
@@ -59,7 +36,6 @@ jobs:
skill-shard:
name: Skill shard (${{ matrix.shard }}, ${{ matrix.language }})
if: ${{ github.event_name != 'pull_request' || !github.event.pull_request.draft }}
runs-on: ubuntu-24.04
timeout-minutes: 60
strategy:
@@ -175,7 +151,6 @@ jobs:
skill-audit:
name: Skill audit (${{ matrix.shard }})
if: ${{ github.event_name != 'pull_request' || !github.event.pull_request.draft }}
runs-on: ubuntu-24.04
timeout-minutes: 30
strategy: