From f2f3c440f000315171f8ff5c071a4347ea9acb1a Mon Sep 17 00:00:00 2001 From: Luis Blanco Date: Sat, 24 Sep 2022 19:30:21 +0400 Subject: [PATCH 1/3] Try codeql --- .github/workflows/codeql-analysis.yml | 52 +++++++++++++++++++++++++++ 1 file changed, 52 insertions(+) create mode 100644 .github/workflows/codeql-analysis.yml diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml new file mode 100644 index 0000000..4fc4b03 --- /dev/null +++ b/.github/workflows/codeql-analysis.yml @@ -0,0 +1,52 @@ +name: "CodeQL" + +on: + push: + branches: + - master + pull_request: + branches: + - master + +jobs: + analyze: + name: Analyze + runs-on: ubuntu-latest + permissions: + actions: read + contents: read + security-events: write + + strategy: + fail-fast: false + matrix: + language: ['cpp', 'javascript'] + + steps: + - name: Fetch Repository + uses: actions/checkout@v3 + with: + persist-credentials: false + + - name: Install Node.js + uses: actions/setup-node@v3 + with: + node-version: 16.17.0 + cache: 'npm' + + - name: Install Modules + run: npm ci + + - name: Build Sample Addon + run: npm run test-build + + - name: Initialize CodeQL + uses: github/codeql-action/init@v2 + with: + languages: ${{ matrix.language }} + queries: +security-and-quality + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v2 + with: + category: "/language:${{matrix.language}}" From 4ed13bb471ff1cd3e246873029d39f824fbd0b05 Mon Sep 17 00:00:00 2001 From: Luis Blanco Date: Sat, 24 Sep 2022 19:38:39 +0400 Subject: [PATCH 2/3] Adjust codeql --- .github/workflows/codeql-analysis.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 4fc4b03..4d9a1fa 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -46,6 +46,9 @@ jobs: languages: ${{ matrix.language }} queries: +security-and-quality + - name: Autobuild + uses: github/codeql-action/autobuild@v2 + - name: Perform CodeQL Analysis uses: github/codeql-action/analyze@v2 with: From a7028c006257d1ba3552dcfd693c27a28fef1c4e Mon Sep 17 00:00:00 2001 From: Luis Blanco Date: Sat, 24 Sep 2022 19:44:32 +0400 Subject: [PATCH 3/3] remove codeql --- .github/workflows/codeql-analysis.yml | 55 --------------------------- 1 file changed, 55 deletions(-) delete mode 100644 .github/workflows/codeql-analysis.yml diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml deleted file mode 100644 index 4d9a1fa..0000000 --- a/.github/workflows/codeql-analysis.yml +++ /dev/null @@ -1,55 +0,0 @@ -name: "CodeQL" - -on: - push: - branches: - - master - pull_request: - branches: - - master - -jobs: - analyze: - name: Analyze - runs-on: ubuntu-latest - permissions: - actions: read - contents: read - security-events: write - - strategy: - fail-fast: false - matrix: - language: ['cpp', 'javascript'] - - steps: - - name: Fetch Repository - uses: actions/checkout@v3 - with: - persist-credentials: false - - - name: Install Node.js - uses: actions/setup-node@v3 - with: - node-version: 16.17.0 - cache: 'npm' - - - name: Install Modules - run: npm ci - - - name: Build Sample Addon - run: npm run test-build - - - name: Initialize CodeQL - uses: github/codeql-action/init@v2 - with: - languages: ${{ matrix.language }} - queries: +security-and-quality - - - name: Autobuild - uses: github/codeql-action/autobuild@v2 - - - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v2 - with: - category: "/language:${{matrix.language}}"