2021-11-14 12:37:54 +03:00
---
# vi: ts=2 sw=2 et:
# SPDX-License-Identifier: LGPL-2.1-or-later
#
2021-11-11 02:02:05 +03:00
name : "CodeQL"
on :
2021-11-16 13:46:16 +03:00
pull_request :
2022-09-13 20:11:25 +03:00
branches :
2022-09-13 22:18:44 +03:00
- main
- v[0-9]+-stable
2022-09-13 22:30:10 +03:00
paths :
- '**/meson.build'
- '.github/**/codeql*'
- 'src/**'
- 'test/**'
- 'tools/**'
2022-09-13 22:18:44 +03:00
push :
branches :
2022-09-13 20:11:25 +03:00
- main
- v[0-9]+-stable
2021-11-11 02:02:05 +03:00
2021-11-14 12:41:42 +03:00
permissions :
contents : read
2021-11-11 02:02:05 +03:00
jobs :
analyze :
name : Analyze
2022-11-30 13:28:34 +03:00
if : github.repository != 'systemd/systemd-security'
2024-06-07 11:55:53 +03:00
runs-on : ubuntu-24.04
2021-11-11 02:02:05 +03:00
concurrency :
group : ${{ github.workflow }}-${{ matrix.language }}-${{ github.ref }}
cancel-in-progress : true
permissions :
actions : read
security-events : write
strategy :
fail-fast : false
matrix :
2022-09-13 20:11:25 +03:00
language : [ 'cpp' , 'python' ]
2021-11-11 02:02:05 +03:00
steps :
- name : Checkout repository
2024-11-01 12:01:41 +03:00
uses : actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
2021-11-11 02:02:05 +03:00
- name : Initialize CodeQL
2024-12-01 12:53:11 +03:00
uses : github/codeql-action/init@f09c1c0a94de965c15400f5634aa42fac8fb8f88
2021-11-11 02:02:05 +03:00
with :
languages : ${{ matrix.language }}
2021-12-07 14:06:29 +03:00
config-file : ./.github/codeql-config.yml
2021-11-11 02:02:05 +03:00
- run : sudo -E .github/workflows/unit_tests.sh SETUP
- name : Autobuild
2024-12-01 12:53:11 +03:00
uses : github/codeql-action/autobuild@f09c1c0a94de965c15400f5634aa42fac8fb8f88
2021-11-11 02:02:05 +03:00
- name : Perform CodeQL Analysis
2024-12-01 12:53:11 +03:00
uses : github/codeql-action/analyze@f09c1c0a94de965c15400f5634aa42fac8fb8f88
