1--- 2# vi: ts=2 sw=2 et: 3 4name: "CodeQL" 5 6on: 7 push: 8 branches: 9 - master 10 pull_request: 11 branches: 12 - master 13 14permissions: 15 contents: read 16 17jobs: 18 analyze: 19 name: Analyze 20 runs-on: ubuntu-22.04 21 concurrency: 22 group: ${{ github.workflow }}-${{ matrix.language }}-${{ github.ref }} 23 cancel-in-progress: true 24 permissions: 25 actions: read 26 security-events: write 27 28 strategy: 29 fail-fast: false 30 matrix: 31 language: ['cpp', 'python'] 32 33 steps: 34 - name: Checkout repository 35 uses: actions/checkout@v3 36 37 - name: Initialize CodeQL 38 uses: github/codeql-action/init@v2 39 with: 40 languages: ${{ matrix.language }} 41 queries: +security-extended,security-and-quality 42 43 - name: Setup 44 uses: ./.github/actions/setup 45 46 - name: Build 47 run: | 48 source /tmp/ci_setup 49 make -C ./src 50 51 - name: Perform CodeQL Analysis 52 uses: github/codeql-action/analyze@v2 53