-
Notifications
You must be signed in to change notification settings - Fork 4
113 lines (97 loc) · 2.88 KB
/
make.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
name: build
on:
push:
branches: [master]
jobs:
build:
strategy:
fail-fast: false
matrix:
runs-on: [ubuntu, macos, windows]
config: [Release]
include:
- nul: /dev/null
- runs-on: macos
os-name: macos
- runs-on: windows
os-name: windows
exe: .exe
- runs-on: ubuntu
os-name: linux
runs-on: ${{matrix.runs-on}}-latest
steps:
- name: Checkout project
uses: actions/checkout@v4
with:
submodules: recursive
fetch-depth: 0
fetch-tags: true
- name: Build project
run: make release
- name: Test project
run: make test
continue-on-error: true
- name: Upload artifact
uses: actions/upload-artifact@v4
with:
name: ${{matrix.os-name}}-convbin
path: bin/convbin${{matrix.exe}}
coverity-scan:
runs-on: ubuntu-latest
if: "contains(github.event.head_commit.message, 'coverity')"
steps:
- name: Checkout project
uses: actions/checkout@v1
with:
submodules: true
fetch-depth: 1
- name: Download Coverity Build Tool
run: |
wget -q https://scan.coverity.com/download/cxx/linux64 --post-data "token=$TOKEN&project=mateoconlechuga%2Fconvbin" -O cov-analysis-linux64.tar.gz
mkdir cov-analysis-linux64
tar xzf cov-analysis-linux64.tar.gz --strip 1 -C cov-analysis-linux64
env:
TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}
- name: Build project with cov-build
run: |
export PATH=`pwd`/cov-analysis-linux64/bin:$PATH
cov-build --dir cov-int make release
- name: Submit project build to Coverity Scan
run: |
tar czvf convbin.tgz cov-int
curl \
--form token=$TOKEN \
--form email="[email protected]" \
--form [email protected] \
--form version="Major Release" \
--form description="`./bin/convbin -v`" \
https://scan.coverity.com/builds?project=mateoconlechuga%2Fconvbin
env:
TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}
codeql-scan:
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write
strategy:
fail-fast: false
matrix:
language: [ 'cpp' ]
steps:
- name: Checkout repository
uses: actions/checkout@v4
with:
submodules: recursive
fetch-depth: 1
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: cpp
config-file: ./.github/codeql/codeql-config.yml
- name: Autobuild
uses: github/codeql-action/autobuild@v3
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{matrix.language}}"