Mercurial > octave

changeset 30263:48198770412e

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
CodeQL: Run analysis also on Windows. * .github/workflows/codeql-analysis.yaml (windows): Add rules to run on Windows.
author Markus Mützel <markus.muetzel@gmx.de>
date Sun, 31 Oct 2021 17:13:01 +0100
parents f43902a87bf1
children de3275323dff
files .github/workflows/codeql-analysis.yaml
diffstat 1 files changed, 119 insertions(+), 3 deletions(-) [+]
line wrap: on
line diff
--- a/.github/workflows/codeql-analysis.yaml	Sun Oct 31 12:13:23 2021 +0100
+++ b/.github/workflows/codeql-analysis.yaml	Sun Oct 31 17:13:01 2021 +0100
@@ -6,8 +6,8 @@
     - cron: '30 16 * * 1,4'
 
 jobs:
-  analyze:
-    name: CodeQL analysis
+  ubuntu:
+    name: CodeQL analysis (Ubuntu)
     runs-on: ubuntu-latest
 
     strategy:
@@ -55,7 +55,7 @@
         with:
           languages: ${{ matrix.language }}
           # If you wish to specify custom queries, you can do so here or in a config file.
-          # By default, queries listed here will override any specified in a config file. 
+          # By default, queries listed here will override any specified in a config file.
           # Prefix the list here with "+" to use these queries and those in the config file.
           # queries: ./path/to/local/query, your-org/your-repo/queries@main
 
@@ -64,3 +64,119 @@
 
       - name: perform CodeQL analysis
         uses: github/codeql-action/analyze@v1
+
+
+  windows:
+    name: CodeQL analysis (Windows)
+    runs-on: windows-latest
+
+    defaults:
+      run:
+        # Use MSYS2 as default shell
+        shell: msys2 {0}
+
+    strategy:
+      fail-fast: false
+      matrix:
+        # Override automatic language detection by changing the below list
+        # Supported options are ['csharp', 'cpp', 'go', 'java', 'javascript', 'python']
+        language: ['cpp']
+        # Learn more...
+        # https://docs.github.com/en/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#overriding-automatic-language-detection
+        msystem: ['MINGW64']
+        include:
+          - msystem: 'MINGW64'
+            target-prefix: 'mingw-w64-x86_64'
+            target-triplet: 'x86_64-w64-mingw32'
+
+    env:
+      CHERE_INVOKING: 1
+      TARGET_TRIPLET:  ${{ matrix.target-triplet }}
+      # perl uses cmd shell by default
+      PERL5SHELL: bash -l -c
+
+    steps:
+      - uses: msys2/setup-msys2@v2
+        with:
+          update: true
+
+          # Use pre-installed version to save disc space on partition with source.
+          # We need that space for building.
+          release: false
+
+          # The packages are listed in (alphabetically sorted) blocks:
+          # The first block is for mandatory dependencies.
+          # The second block is for optional dependencies needed when building from a release tarball.
+          # The third block is for additional dependencies needed when building from a repository checkout.
+          install: >-
+            base-devel
+            ${{ matrix.target-prefix }}-toolchain
+            ${{ matrix.target-prefix }}-lapack
+            ${{ matrix.target-prefix }}-openblas
+            ${{ matrix.target-prefix }}-pcre
+
+            ${{ matrix.target-prefix }}-arpack
+            ${{ matrix.target-prefix }}-curl
+            ${{ matrix.target-prefix }}-fftw
+            ${{ matrix.target-prefix }}-fltk
+            ${{ matrix.target-prefix }}-gl2ps
+            ${{ matrix.target-prefix }}-glpk
+            ${{ matrix.target-prefix }}-ghostscript
+            ${{ matrix.target-prefix }}-gnuplot
+            ${{ matrix.target-prefix }}-graphicsmagick
+            ${{ matrix.target-prefix }}-hdf5
+            ${{ matrix.target-prefix }}-libsndfile
+            ${{ matrix.target-prefix }}-portaudio
+            ${{ matrix.target-prefix }}-qhull
+            ${{ matrix.target-prefix }}-qrupdate
+            ${{ matrix.target-prefix }}-qscintilla
+            ${{ matrix.target-prefix }}-qt5
+            ${{ matrix.target-prefix }}-rapidjson
+            ${{ matrix.target-prefix }}-suitesparse
+            ${{ matrix.target-prefix }}-sundials
+
+            git
+            ${{ matrix.target-prefix }}-ccache
+            ${{ matrix.target-prefix }}-icoutils
+            ${{ matrix.target-prefix }}-librsvg
+            texinfo
+
+          msystem: ${{ matrix.msystem }}
+
+      - name: checkout repository
+        uses: actions/checkout@v2
+
+      - name: bootstrap
+        run: ./bootstrap
+
+      - name: configure
+        # configure sometimes hangs while compiling 32bit Fortran.
+        # It should take much less than 30 minutes. Cancel the step if it takes longer.
+        timeout-minutes: 30
+        # FIXME: Fix building with Java support. Override JAVA_HOME for now.
+        # FIXME: How do we get a working TeX environment in MSYS2? Disable building the documentation for now.
+        # Linking with ncurses fails. Use termcap library instead.
+        run: |
+          mkdir .build
+          cd .build && ../configure \
+            JAVA_HOME="" \
+            --disable-docs \
+            ac_cv_search_tputs=-ltermcap
+
+      - name: initialize CodeQL
+        # Initialize the CodeQL tools for scanning.
+        uses: github/codeql-action/init@v1
+        with:
+          languages: ${{ matrix.language }}
+          # If you wish to specify custom queries, you can do so here or in a config file.
+          # By default, queries listed here will override any specified in a config file.
+          # Prefix the list here with "+" to use these queries and those in the config file.
+          # queries: ./path/to/local/query, your-org/your-repo/queries@main
+
+      - name: build
+        # Spawning processes seems to have a big overhead on this platform.
+        # Use a somewhat larger number of parallel processes to compensate for that.
+        run: make -C ./.build all -j8 V=1
+
+      - name: perform CodeQL analysis
+        uses: github/codeql-action/analyze@v1