2021-10-27 13:16:25 +00:00
|
|
|
# This workflow uses actions that are not certified by GitHub.
|
|
|
|
# They are provided by a third-party and are governed by
|
|
|
|
# separate terms of service, privacy policy, and support
|
|
|
|
# documentation.
|
|
|
|
#
|
|
|
|
# Find more information at:
|
|
|
|
# https://github.com/microsoft/msvc-code-analysis-action
|
|
|
|
|
|
|
|
name: Microsoft C++ Code Analysis
|
|
|
|
|
|
|
|
on:
|
|
|
|
push:
|
2023-08-14 08:58:56 +00:00
|
|
|
paths-ignore:
|
|
|
|
- 'docker-compose/**'
|
|
|
|
- 'docs/**'
|
|
|
|
- 'README.md'
|
|
|
|
|
2021-10-27 13:16:25 +00:00
|
|
|
pull_request:
|
2023-08-14 08:58:56 +00:00
|
|
|
|
2021-10-27 13:16:25 +00:00
|
|
|
schedule:
|
|
|
|
- cron: '40 10 * * 0'
|
|
|
|
|
|
|
|
env:
|
|
|
|
# Path to the CMake build directory.
|
|
|
|
build: '${{ github.workspace }}/build'
|
2022-01-20 12:36:15 +00:00
|
|
|
config: 'Release'
|
2021-10-27 13:16:25 +00:00
|
|
|
|
|
|
|
jobs:
|
|
|
|
analyze:
|
|
|
|
name: Analyze
|
2024-02-12 10:19:59 +00:00
|
|
|
timeout-minutes: 240
|
2021-10-27 13:16:25 +00:00
|
|
|
runs-on: windows-latest
|
|
|
|
|
|
|
|
steps:
|
|
|
|
- name: Checkout repository
|
2024-01-26 14:31:52 +00:00
|
|
|
uses: actions/checkout@v4
|
2021-10-27 13:16:25 +00:00
|
|
|
with:
|
2024-01-27 20:29:12 +00:00
|
|
|
submodules: recursive
|
2021-10-27 13:16:25 +00:00
|
|
|
|
|
|
|
- name: Configure CMake
|
2022-01-20 12:36:15 +00:00
|
|
|
run: cmake -B ${{ env.build }} -DCMAKE_BUILD_TYPE=${{ env.config }}
|
2021-10-27 13:16:25 +00:00
|
|
|
|
|
|
|
# Build is not required unless generated source files are used
|
|
|
|
# - name: Build CMake
|
|
|
|
# run: cmake --build ${{ env.build }}
|
|
|
|
|
|
|
|
- name: Initialize MSVC Code Analysis
|
2024-01-26 14:31:52 +00:00
|
|
|
uses: microsoft/msvc-code-analysis-action@96315324a485db21449515180214ecb78c16a1c5
|
2021-10-27 13:16:25 +00:00
|
|
|
# Provide a unique ID to access the sarif output path
|
|
|
|
id: run-analysis
|
|
|
|
with:
|
|
|
|
cmakeBuildDirectory: ${{ env.build }}
|
2022-01-20 12:36:15 +00:00
|
|
|
buildConfiguration: ${{ env.config }}
|
2021-10-27 13:16:25 +00:00
|
|
|
# Ruleset file that will determine what checks will be run
|
|
|
|
ruleset: NativeRecommendedRules.ruleset
|
2024-02-12 14:29:42 +00:00
|
|
|
ignoredPaths: ${{ github.workspace }}/external
|
2021-10-27 13:16:25 +00:00
|
|
|
|
|
|
|
# Upload SARIF file to GitHub Code Scanning Alerts
|
|
|
|
- name: Upload SARIF to GitHub
|
2024-01-26 14:31:52 +00:00
|
|
|
uses: github/codeql-action/upload-sarif@v3
|
2021-10-27 13:16:25 +00:00
|
|
|
with:
|
|
|
|
sarif_file: ${{ steps.run-analysis.outputs.sarif }}
|
|
|
|
|
|
|
|
# Upload SARIF file as an Artifact to download and view
|
|
|
|
- name: Upload SARIF as an Artifact
|
2024-01-26 14:31:52 +00:00
|
|
|
uses: actions/upload-artifact@v4
|
2021-10-27 13:16:25 +00:00
|
|
|
with:
|
|
|
|
name: sarif-file
|
|
|
|
path: ${{ steps.run-analysis.outputs.sarif }}
|