1name: "CodeQL" 2 3on: 4 push: 5 branches: 6 - stable 7 - dev 8 pull_request: 9 branches: 10 - dev # No need for stable-pull-request, as that equals dev-push 11 12jobs: 13 analyze: 14 name: Analyze 15 runs-on: ubuntu-latest 16 container: # We use a previous image as it's expected to have all the dependencies 17 image: docker.io/aflplusplus/aflplusplus:dev 18 steps: 19 - name: Fix for using external repo in container build # https://github.com/actions/checkout/issues/760 20 run: git config --global --add safe.directory /__w/AFLplusplus/AFLplusplus 21 - name: Checkout 22 uses: actions/checkout@v3 23 - name: Initialize CodeQL 24 uses: github/codeql-action/init@v2 25 with: 26 languages: cpp, python 27 - name: Build AFLplusplus # Rebuild because CodeQL needs to monitor the build process 28 env: 29 CC: gcc # These are symlinked to the version used in the container build 30 CXX: g++ 31 run: make -i all # Best effort using -i 32 - name: Perform CodeQL Analysis 33 uses: github/codeql-action/analyze@v2 34