Add CodeQL analysis

This commit is contained in:
Robert Scheck 2023-02-05 00:50:29 +01:00
parent 4ceeb2efc9
commit 44e37fd7de
3 changed files with 43 additions and 1 deletions

View file

@ -19,7 +19,7 @@ jobs:
steps: steps:
- name: Checkout code - name: Checkout code
uses: actions/checkout@v3 uses: actions/checkout@v3
- name: ./autogen - name: ./autogen.sh
run: ./autogen.sh run: ./autogen.sh
- name: Compiler version - name: Compiler version
run: $CC -v run: $CC -v

41
.github/workflows/codeql-analysis.yml vendored Normal file
View file

@ -0,0 +1,41 @@
name: CodeQL analysis
on:
push:
branches: [ master ]
pull_request:
branches: [ master ]
schedule:
# build the main branch every Monday morning
- cron: '46 9 * * 1'
workflow_dispatch:
jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write
strategy:
fail-fast: false
matrix:
language: [ 'cpp' ]
steps:
- name: Checkout repository
uses: actions/checkout@v3
- name: Initialize CodeQL
uses: github/codeql-action/init@v2
with:
languages: ${{ matrix.language }}
- name: Build Application using script
run: |
./autogen.sh
sudo apt-get install autoconf libtls-dev libpcap-dev libnet1-dev libjson-c-dev
./configure
make
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v2
with:
category: "/language:${{matrix.language}}"

View file

@ -1,6 +1,7 @@
# ssldump - (de-facto repository gathering patches around the cyberspace) # ssldump - (de-facto repository gathering patches around the cyberspace)
[![Build CI](https://github.com/adulau/ssldump/actions/workflows/build.yml/badge.svg)](https://github.com/adulau/ssldump/actions/workflows/build.yml) [![Build CI](https://github.com/adulau/ssldump/actions/workflows/build.yml/badge.svg)](https://github.com/adulau/ssldump/actions/workflows/build.yml)
[![CodeQL analysis](https://github.com/adulau/ssldump/actions/workflows/codeql-analysis.yml/badge.svg)](https://github.com/adulau/ssldump/actions/workflows/codeql-analysis.yml)
# Release and tagging # Release and tagging