codeql-analysis.yml (1218B)
1 name: "CodeQL scan" 2 3 on: 4 push: 5 branches: [ "master stable next" ] 6 pull_request: 7 # The branches below must be a subset of the branches above 8 branches: [ "master stable next" ] 9 schedule: 10 - cron: '0 17 * * 2' 11 12 jobs: 13 analyze: 14 name: Analyze 15 runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }} 16 timeout-minutes: ${{ (matrix.language == 'swift' && 120) || 360 }} 17 permissions: 18 actions: read 19 contents: read 20 security-events: write 21 22 strategy: 23 fail-fast: false 24 matrix: 25 language: [ 'c-cpp' ] 26 27 steps: 28 - name: Checkout repository 29 uses: actions/checkout@v4 30 with: 31 fetch-depth: 2 32 33 # Initializes the CodeQL tools for scanning. 34 - name: Initialize CodeQL 35 uses: github/codeql-action/init@v2 36 with: 37 languages: ${{ matrix.language }} 38 39 - run: | 40 echo "Run, Build Application using script" 41 ./autogen.sh -s 42 env CPPFLAGS="-DDEV_MODE=1" ./configure --disable-dependency-tracking 43 make -j $(nproc) check 44 45 - name: Perform CodeQL Analysis 46 uses: github/codeql-action/analyze@v2 47 with: 48 category: "/language:${{matrix.language}}"