-
Notifications
You must be signed in to change notification settings - Fork 24
122 lines (97 loc) · 4.32 KB
/
analyzers.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
name: Analyzers/sanitizers
on:
workflow_run:
workflows:
- "CI v2"
types:
- completed
jobs:
pvs:
runs-on: ubuntu-latest
timeout-minutes: 10
if: false && github.repository_owner == 'victimsnino' && github.event.workflow_run.conclusion == 'success'
steps:
- uses: haya14busa/action-workflow_run-status@v1
- uses: actions/checkout@v3
with:
token: ${{ secrets.GITHUB_TOKEN }}
fetch-depth: 0
repository: ${{ github.event.workflow_run.head_repository.full_name }}
ref: ${{ github.event.workflow_run.head_branch }}
- name: Install tools
run: |
wget -q -O - https://files.pvs-studio.com/etc/pubkey.txt \
| sudo gpg --no-default-keyring --keyring gnupg-ring:/etc/apt/trusted.gpg.d/PVS.gpg --import
sudo apt-key adv --refresh-keys
sudo chmod 644 /etc/apt/trusted.gpg.d/PVS.gpg
sudo wget -O /etc/apt/sources.list.d/viva64.list \
https://files.pvs-studio.com/etc/viva64.list
sudo apt update
sudo apt install pvs-studio
pvs-studio-analyzer credentials ${{ secrets.PVS_STUDIO_CREDENTIALS }}
- name: Run CMake
uses: lukka/run-cmake@v10
with:
configurePreset: ci-ubuntu-clang-tests-no-checks
buildPreset: ci-build
- name: Analyze and prepare report
run: |
pvs-studio-analyzer analyze -f build/compile_commands.json -j -e build/_deps/
plog-converter -t sarif -o pvs-report.sarif PVS-Studio.log
- name: Publish report
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: pvs-report.sarif
category: PVS-Studio
sonarcloud_and_coverage:
runs-on: ubuntu-latest
if: github.repository_owner == 'victimsnino' && github.event.workflow_run.conclusion == 'success'
env:
BUILD_WRAPPER_OUT_DIR: build_wrapper_output_directory # Directory where build-wrapper output will be placed
steps:
- uses: haya14busa/action-workflow_run-status@v1
- uses: actions/checkout@v3
with:
token: ${{ secrets.GITHUB_TOKEN }}
fetch-depth: 0
repository: ${{ github.event.workflow_run.head_repository.full_name }}
ref: ${{ github.event.workflow_run.head_branch }}
- name: Install llvm
run: sudo apt-get update -q && sudo apt-get install llvm -q -y
- name: Install sonar-scanner and build-wrapper
uses: sonarsource/sonarcloud-github-c-cpp@v1
- name: Run build-wrapper
run: |
mkdir build
cmake --preset=ci-coverage-clang
build-wrapper-linux-x86-64 --out-dir ${{ env.BUILD_WRAPPER_OUT_DIR }} cmake --build --preset=ci-build
ctest --preset=ci-tests
- name: Process coverage info
run: cmake --build build -t coverage
- name: "Get PR information"
uses: potiuk/get-workflow-origin@v1_3
id: source-run-info
with:
token: ${{ secrets.GITHUB_TOKEN }}
sourceRunId: ${{ github.event.workflow_run.id }}
- name: Submit to codecov.io
uses: codecov/codecov-action@v3
with:
file: build/test_results/coverage.txt
override_branch: ${{ github.event.workflow_run.head_branch }}
override_pr: ${{ steps.source-run-info.outputs.pullRequestNumber }}
override_commit: ${{ github.event.workflow_run.head_sha }}
- name: Run sonar-scanner on PUSH
if: github.event.workflow_run.event == 'push'
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
run: |
sonar-scanner --define sonar.cfamily.build-wrapper-output="${{ env.BUILD_WRAPPER_OUT_DIR }}" --define sonar.scm.revision=${{ github.event.workflow_run.head_sha }}
- name: Run sonar-scanner on PullRequest
if: github.event.workflow_run.event != 'push'
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
run: |
sonar-scanner --define sonar.cfamily.build-wrapper-output="${{ env.BUILD_WRAPPER_OUT_DIR }}" --define sonar.scm.revision=${{ github.event.workflow_run.head_sha }} --define sonar.pullrequest.key=${{ steps.source-run-info.outputs.pullRequestNumber }} --define sonar.pullrequest.branch=${{ steps.source-run-info.outputs.sourceHeadBranch }} --define sonar.pullrequest.base=${{ steps.source-run-info.outputs.targetBranch }}