fix after review from @henrymercer

2023-04-18 05:43:21 +02:00 · 2023-04-18 05:43:21 +02:00 · f398a65921
commit f398a65921
parent fc374f5e9a
7 changed files with 39 additions and 37 deletions
--- a/README.md
+++ b/README.md
@ -137,41 +137,35 @@ By default, this will override any queries specified in a config file. If you wi

 ### Configuration via `config` input

-
 You can alternatively configure CodeQL using the `config` input to the `init` Action. The value of this input must be a YAML string that follows the configuration file format documented at "[Using a custom configuration file](https://help.github.com/en/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#using-a-custom-configuration-file)."

+#### Example configuration
+
+```yaml
+- uses: github/codeql-action/init@v2
+  with:
+    languages: ${{ matrix.language }}
+    config: |
+      disable-default-queries: true
+      queries:
+        - uses: security-extended
+        - uses: security-and-quality
+      query-filters:
+        - include:
+      tags: /cwe-020/
+```


- **Complete Configuration**
-
-    ```yaml
-    - uses: github/codeql-action/init@v2
-      with:
-        languages: ${{ matrix.language }}
-        config: |
-          disable-default-queries: true
-          queries:
-            - uses: security-extended
-            - uses: security-and-quality
-          query-filters:
-            - include:
-          tags: /cwe-020/
-    ```
-
-
- **Actions Variables**
+#### Sharing configuration across multiple repositories
  
-  You can use actions or environment variables to share configuration across multiple repositories and to modify configuration without needing to edit the workflow file.
+You can use Actions or environment variables to share configuration across multiple repositories and to modify configuration without needing to edit the workflow file.  In the following example, `vars.CODEQL_CONF` is an [Actions configuration variable](https://docs.github.com/en/actions/learn-github-actions/variables#defining-configuration-variables-for-multiple-workflows):

-  ```yaml
-  - uses: github/codeql-action/init@v2
-    with:
-      languages: ${{ matrix.language }}
-      config: ${{ vars.CODEQL_CONF }}
-  ```
-
-
-  where `vars.CODEQL_CONF` references an [Actions configuration variable](https://docs.github.com/en/actions/learn-github-actions/variables#defining-configuration-variables-for-multiple-workflows).
+```yaml
+- uses: github/codeql-action/init@v2
+  with:
+    languages: ${{ matrix.language }}
+    config: ${{ vars.CODEQL_CONF }}
+```

 ## Troubleshooting