Skip to content

CodeQL

CodeQL #100

Workflow file for this run

# For most projects, this workflow file will not need changing; you simply need
# to commit it to your repository.
#
# You may wish to alter this file to override the set of languages analyzed,
# or to provide custom queries or build logic.
#
# ******** NOTE ********
# We have attempted to detect the languages in your repository. Please check
# the `language` matrix defined below to confirm you have the correct set of
# supported CodeQL languages.
#
name: CodeQL
on:
pull_request:
push:
tags: "*"
branches: "*"
schedule:
- cron: "38 0 * * 5"
workflow_dispatch:
jobs:
Analyze:
name: Analyze
if: ${{ !contains(github.event.head_commit.message, '[skip ci]') }}
runs-on: ${{ matrix.os }}
permissions:
actions: read
contents: read
security-events: write
strategy:
fail-fast: false
matrix:
os:
- ubuntu-22.04
compiler:
- gcc-13
build_type:
- Debug
developer_mode:
- ON
steps:
# Use this if a fairly large library is requried, like building and using llvm as a library.
# - name: Linux - Maximize build disk space
# uses: easimon/maximize-build-space@v10
# if: runner.os == 'Linux'
# with:
# root-reserve-mb: 30720
# swap-size-mb: 1024
# remove-android: "true"
# remove-docker-images: "true"
# remove-dotnet: "true"
- uses: actions/checkout@v4
- name: Parse environment
id: parsed
uses: ./.github/actions/parse_environment
with:
os: ${{ matrix.os }}
compiler: ${{ matrix.compiler }}
- name: Setup cache
uses: ./.github/actions/setup_cache
with:
key: ${{ steps.parsed.outputs.os_name }}-${{ steps.parsed.outputs.os_version }}-${{ steps.parsed.outputs.compiler_name }}-${{ steps.parsed.outputs.compiler_version }}-${{ matrix.build_type }}-${{ matrix.developer_mode }}
restore_key: ${{ steps.parsed.outputs.os_name }}-${{ steps.parsed.outputs.os_version }}-${{ steps.parsed.outputs.compiler_name }}-${{ steps.parsed.outputs.compiler_version }}-${{ matrix.build_type }}
- name: Setup Cpp
uses: aminya/[email protected]
with:
compiler: ${{ matrix.compiler }}
vcvarsall: ${{ contains(matrix.os, 'windows') }}
cmake: true
ninja: true
ccache: true
python: true
cppcheck: false
clangtidy: false
gcovr: false
opencppcoverage: false
- name: Setup conan
uses: ./.github/actions/setup_conan
id: conan
with:
os_name: ${{ steps.parsed.outputs.os_name }}
os_version: ${{ steps.parsed.outputs.os_version }}
arch: ${{ steps.parsed.outputs.arch }}
compiler_name: ${{ steps.parsed.outputs.compiler_name }}
compiler_version: ${{ steps.parsed.outputs.compiler_version }}
build_type: ${{ matrix.build_type }}
# Fix "ASan runtime does not come first in initial library list; you should either link runtime to your application or manually preload it with LD_PRELOAD."
# Learnt from https://github.com/igraph/igraph/issues/1181
args: -c tools.build:cflags+=-static-libasan -c tools.build:cxxflags+=-static-libasan
- name: Configure cmake
run: |
cmake --preset ${{ steps.parsed.outputs.compiler_name }} ${{ steps.parsed.outputs.compiler_name == 'msvc' && '-A x64 -T v143' || '' }} -D ENABLE_DEVELOPER_MODE:BOOL=${{ matrix.developer_mode }} -D OPT_ENABLE_COVERAGE:BOOL=${{ matrix.build_type == 'Debug' }} -D OPT_ENABLE_CLANG_TIDY:BOOL=OFF -D OPT_ENABLE_CPPCHECK:BOOL=OFF -D OPT_ENABLE_INCLUDE_WHAT_YOU_USE:BOOL=OFF
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: cpp
- name: Build and test
run: |
conan build . ${{ steps.conan.outputs.args }}
- name: Perform CodeQL analysis
uses: github/codeql-action/analyze@v3