Skip to content

CodeQL

CodeQL #3557

#
# Copyright 2022 Davide Bettio <[email protected]>
#
# SPDX-License-Identifier: Apache-2.0 OR LGPL-2.1-or-later
#
name: "CodeQL"
on:
push:
paths-ignore:
- 'src/platforms/emscripten/**'
- 'src/platforms/esp32/**'
- 'src/platforms/rp2040/**'
- 'src/platforms/stm32/**'
- 'libs/**'
- 'doc/**'
- 'LICENSES/**'
- '*.Md'
- '*.md'
pull_request:
paths-ignore:
- 'src/platforms/emscripten/**'
- 'src/platforms/esp32/**'
- 'src/platforms/rp2040/**'
- 'src/platforms/stm32/**'
- 'libs/**'
- 'doc/**'
- 'LICENSES/**'
- '*.Md'
- '*.md'
schedule:
- cron: '45 18 * * 5'
concurrency:
group: ${{ github.workflow }}-${{ github.ref != 'refs/heads/main' && github.ref || github.run_id }}
cancel-in-progress: true
jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write
strategy:
fail-fast: false
matrix:
language: [ 'cpp' ]
steps:
- name: "APT update"
run: sudo apt update -y
- name: "Install deps"
run: sudo apt install -y cmake gperf zlib1g-dev ninja-build erlang
- name: "Checkout repository"
uses: actions/checkout@v4
- name: "Initialize CodeQL"
uses: github/codeql-action/init@v2
with:
languages: ${{ matrix.language }}
queries: +./code-queries/term-to-non-term-func.ql,./code-queries/non-term-to-term-func.ql
- name: "Build"
run: |
mkdir build
cd build
cmake .. -G Ninja
ninja
- name: "Perform CodeQL Analysis"
uses: github/codeql-action/analyze@v2