name: "code scans"
on: [push, pull_request] #runs on pushes to any branch

jobs:
  scans:
    runs-on: test
    steps:
      - uses: actions/checkout@v4

      - name: "dependency scan and static code analysis"
        uses: https://code.jakeyoungdev.com/actions/donotpassgo@v1.0.0