Keycloak

Форк
0
/
codeql-analysis.yml 
105 строк · 2.5 Кб
1
name: CodeQL
2

3
on:
4
  push:
5
    branches-ignore:
6
      - main
7
      - dependabot/**
8
      - quarkus-next
9
  pull_request:
10
     branches: [main]
11
  workflow_dispatch:
12

13
env:
14
  MAVEN_ARGS: "-B -nsu -Daether.connector.http.connectionMaxTtl=25"
15

16
concurrency:
17
  # Only cancel jobs for PR updates
18
  group: codeql-analysis-${{ github.ref }}
19
  cancel-in-progress: true
20

21
defaults:
22
  run:
23
    shell: bash
24

25
jobs:
26

27
  conditional:
28
    name: Check conditional workflows and jobs
29
    runs-on: ubuntu-latest
30
    outputs:
31
      java: ${{ steps.conditional.outputs.codeql-java }}
32
      themes: ${{ steps.conditional.outputs.codeql-themes }}
33
    steps:
34
      - uses: actions/checkout@v4
35

36
      - id: conditional
37
        uses: ./.github/actions/conditional
38
        with:
39
          token: ${{ secrets.GITHUB_TOKEN }}
40

41
  java:
42
    name: CodeQL Java
43
    needs: conditional
44
    runs-on: ubuntu-latest
45
    if: needs.conditional.outputs.java == 'true'
46
    outputs:
47
      conclusion: ${{ steps.check.outputs.conclusion }}
48

49
    steps:
50
      - uses: actions/checkout@v4
51

52
      - name: Initialize CodeQL
53
        uses: github/codeql-action/init@v3
54
        with:
55
          languages: java
56

57
      - name: Build Keycloak
58
        uses: ./.github/actions/build-keycloak
59

60
      - name: Perform CodeQL Analysis
61
        uses: github/codeql-action/analyze@v3
62
        with:
63
          wait-for-processing: true
64
        env:
65
          CODEQL_ACTION_EXTRA_OPTIONS: '{"database":{"interpret-results":["--max-paths",0]}}'
66

67
  themes:
68
    name: CodeQL Themes
69
    needs: conditional
70
    runs-on: ubuntu-latest
71
    if: needs.conditional.outputs.themes == 'true'
72
    outputs:
73
      conclusion: ${{ steps.check.outputs.conclusion }}
74

75
    steps:
76
      - uses: actions/checkout@v4
77

78
      - name: Initialize CodeQL
79
        uses: github/codeql-action/init@v3
80
        env:
81
          CODEQL_ACTION_EXTRA_OPTIONS: '{"database":{"finalize":["--no-run-unnecessary-builds"]}}'
82
        with:
83
          languages: javascript
84
          source-root: themes/src/main/
85

86
      - name: Perform CodeQL Analysis
87
        uses: github/codeql-action/analyze@v3
88
        with:
89
          wait-for-processing: true
90
        env:
91
          CODEQL_ACTION_EXTRA_OPTIONS: '{"database":{"interpret-results":["--max-paths",0]}}'
92

93
  check:
94
    name: Status Check - CodeQL
95
    if: always()
96
    needs:
97
      - conditional
98
      - java
99
      - themes
100
    runs-on: ubuntu-latest
101
    steps:
102
      - uses: actions/checkout@v4
103
      - uses: ./.github/actions/status-check
104
        with:
105
          jobs: ${{ toJSON(needs) }}
106

Использование cookies

Мы используем файлы cookie в соответствии с Политикой конфиденциальности и Политикой использования cookies.

Нажимая кнопку «Принимаю», Вы даете АО «СберТех» согласие на обработку Ваших персональных данных в целях совершенствования нашего веб-сайта и Сервиса GitVerse, а также повышения удобства их использования.

Запретить использование cookies Вы можете самостоятельно в настройках Вашего браузера.