This is an automated email from the ASF dual-hosted git repository.
pkarwasz pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/logging-parent.git
The following commit(s) were added to refs/heads/main by this push:
new 4a4b2e7 Add CodeQL Analysis
4a4b2e7 is described below
commit 4a4b2e77dbc33edc6ce6a5875a42e71e2d0bb76c
Author: Piotr P. Karwasz <piotr.git...@karwasz.org>
AuthorDate: Wed Oct 11 20:37:40 2023 +0200
Add CodeQL Analysis
---
.github/workflows/codeql-analysis-reusable.yaml | 66 +++++++++++++++++++++++++
1 file changed, 66 insertions(+)
diff --git a/.github/workflows/codeql-analysis-reusable.yaml
b/.github/workflows/codeql-analysis-reusable.yaml
new file mode 100644
index 0000000..b7bfee9
--- /dev/null
+++ b/.github/workflows/codeql-analysis-reusable.yaml
@@ -0,0 +1,66 @@
+#
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to you under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+name: codeql-analysis
+
+on:
+ workflow_call:
+ inputs:
+ java-version:
+ description: The Java compiler version
+ default: 17
+ type: string
+ # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript',
'kotlin', 'python', 'ruby' ]
+ # Learn more about CodeQL language support at
https://git.io/codeql-language-support
+ language:
+ description:
+ default: java
+ type: string
+
+jobs:
+
+ analyze:
+ name: Analyze
+ runs-on: ubuntu-latest
+
+ steps:
+
+ - name: Checkout repository
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 #
4.1.0
+
+ - name: Initialize CodeQL
+ uses:
github/codeql-action/init@2cb752a87e96af96708ab57187ab6372ee1973ab # 2.22.0
+ with:
+ languages: ${{ inputs.language }}
+
+ - name: Setup JDK
+ uses: actions/setup-java@0ab4596768b603586c0de567f2430c30f5b0d2b0 #
3.13.0
+ with:
+ distribution: temurin
+ java-version: ${{ inputs.java-version }}
+ cache: maven
+
+ - name: Build with Maven
+ shell: bash
+ run: |
+ ./mvnw \
+ --show-version --batch-mode --errors --no-transfer-progress \
+ -DskipTests \
+ clean verify
+
+ - name: Perform CodeQL Analysis
+ uses:
github/codeql-action/analyze@2cb752a87e96af96708ab57187ab6372ee1973ab #
2.22.0
