Analyze #300

	#
	# Repository analysis
	#

	# NOTES:
	# This workflow uses PSRule, and DevSkim.
	# You can read more about these linting tools and configuration options here:
	# PSRule - https://aka.ms/ps-rule and https://github.com/Microsoft/PSRule.Rules.MSFT.OSS
	# DevSkim - https://github.com/microsoft/DevSkim-Action and https://github.com/Microsoft/DevSkim

	name: Analyze
	on:
	push:
	branches: [ main, 'release/*' ]
	pull_request:
	branches: [ main, 'release/*' ]
	schedule:
	- cron: '23 20 * * 0' # At 08:23 PM, on Sunday each week
	workflow_dispatch:

	jobs:
	oss:
	name: Analyze with PSRule
	runs-on: ubuntu-latest
	permissions:
	contents: read
	steps:

	- name: Checkout
	uses: actions/checkout@v3

	- name: Run PSRule analysis
	uses: Microsoft/ps-rule@v2.7.0
	with:
	modules: PSRule.Rules.MSFT.OSS

	devskim:
	name: Analyze with DevSkim
	runs-on: ubuntu-latest
	permissions:
	actions: read
	contents: read
	security-events: write
	steps:

	- name: Checkout
	uses: actions/checkout@v3

	- name: Run DevSkim scanner
	uses: microsoft/DevSkim-Action@v1
	with:
	directory-to-scan: src/

	- name: Upload results to security tab
	uses: github/codeql-action/upload-sarif@v2
	with:
	sarif_file: devskim-results.sarif

Provide feedback