diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml new file mode 100644 index 000000000..d2edb97b1 --- /dev/null +++ b/.github/workflows/codeql.yml @@ -0,0 +1,88 @@ +name: CodeQL +on: [push, pull_request] + +jobs: + codeql: + name: CodeQL Analyze + runs-on: ubuntu-latest + + container: + image: opensuse/tumbleweed + + steps: + + - name: Refresh repositories + run: zypper -n --gpg-auto-import-keys ref + + - name: Upgrade packages + run: zypper -n --gpg-auto-import-keys dup + + - name: Install packages + run: > + zypper -n --gpg-auto-import-keys in + lsb-release + rpm-build + git + tar + gcc + gcc-c++ + make + cmake + gettext-tools + glibc-devel + libboost_headers-devel + boost-devel + glib2-devel + glib2-tools + dbus-1-devel + alsa-devel + libnotify-devel + libgnutls-devel + protobuf-devel + sqlite3-devel + libpulse-devel + gstreamer-devel + gstreamer-plugins-base-devel + vlc-devel + taglib-devel + libicu-devel + libcdio-devel + libgpod-devel + libmtp-devel + libchromaprint-devel + qt6-core-devel + qt6-gui-devel + qt6-widgets-devel + qt6-concurrent-devel + qt6-network-devel + qt6-sql-devel + qt6-dbus-devel + qt6-test-devel + qt6-base-common-devel + qt6-sql-sqlite + qt6-linguist-devel + desktop-file-utils + update-desktop-files + appstream-glib + hicolor-icon-theme + + - name: Checkout repository + uses: actions/checkout@v3 + with: + fetch-depth: 0 + + - name: Add safe git directory + run: git config --global --add safe.directory ${GITHUB_WORKSPACE} + + - name: Initialize CodeQL + uses: github/codeql-action/init@v2 + with: + languages: cpp + + - name: Autobuild + uses: github/codeql-action/autobuild@v2 + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v2 + with: + category: "/language:cpp"