Update codeql-analysis.yml (#334)

anupsv · web-flow · commit 3facd1835f52 · 2025-06-05T15:44:34.000-07:00
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -25,18 +25,8 @@ jobs:
       uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # 4.2.2
       with:
         submodules: recursive
-
-    - name: Install golang
-      uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # 5.3.0
-      with:
-        go-version: '1.21.11'
-        
-    # Initializes the CodeQL tools for scanning.
-    - name: Initialize CodeQL with Trail of Bits Go Queries as well
-      uses: github/codeql-action/init@dd746615b3b9d728a6a37ca2045b68ca76d4841a #3.28.8
+          
+    - name: Run shared CodeQL scan
+      uses: Layr-Labs/security-shared-workflows/actions/codeql-scans@418d735c1c4e5cc650c8addaeb8909b36b9dca27
       with:
-        languages: go
-        packs: trailofbits/go-queries
-        
-    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@dd746615b3b9d728a6a37ca2045b68ca76d4841a #3.28.8
+        github-token: ${{ secrets.GITHUB_TOKEN }}
