From 3d5f05b963ac99db141bfb343caa30e38864f902 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jan=20Grome=C5=A1?= Date: Sun, 17 Mar 2024 18:10:54 +0100 Subject: [PATCH] Static check (#1019) * Update CodeQL action * [CI] Added workflow dispatch for codeql * [CI] Use v4 checkout action * [CI] Add cppcheck action (#1018) --- .github/workflows/codeql-analysis.yml | 18 ++++++------------ .github/workflows/cppcheck.yml | 27 +++++++++++++++++++++++++++ .github/workflows/doxygen.yml | 2 +- .github/workflows/main.yml | 10 +++++----- 4 files changed, 39 insertions(+), 18 deletions(-) create mode 100644 .github/workflows/cppcheck.yml diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 78230b256..c90f7c9d7 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -5,11 +5,14 @@ on: branches: [master] pull_request: branches: [master] + workflow_dispatch: jobs: analyze: name: Analyze runs-on: ubuntu-latest + permissions: + security-events: write strategy: fail-fast: false @@ -18,20 +21,11 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v2 - with: - # We must fetch at least the immediate parents so that if this is - # a pull request then we can checkout the head. - fetch-depth: 2 - - # If this run was triggered by a pull request event, then checkout - # the head of the pull request instead of the merge commit. - - run: git checkout HEAD^2 - if: ${{ github.event_name == 'pull_request' }} + uses: actions/checkout@v4 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v1 + uses: github/codeql-action/init@v3 with: languages: ${{ matrix.language }} @@ -63,4 +57,4 @@ jobs: arduino-cli compile --libraries /home/runner/work/RadioLib --fqbn arduino:avr:uno $PWD/examples/SX126x/SX126x_Transmit_Blocking/SX126x_Transmit_Blocking.ino --warnings=all - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v1 + uses: github/codeql-action/analyze@v3 diff --git a/.github/workflows/cppcheck.yml b/.github/workflows/cppcheck.yml new file mode 100644 index 000000000..684e11f9c --- /dev/null +++ b/.github/workflows/cppcheck.yml @@ -0,0 +1,27 @@ +name: "Cppcheck" + +on: + push: + branches: [master] + pull_request: + branches: [master] + workflow_dispatch: + +jobs: + check: + name: Perform static code check + runs-on: ubuntu-latest + + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + - name: Install cppcheck + run: + | + sudo apt-get update + sudo apt-get install -y cppcheck + + - name: Run cppcheck + run: + cppcheck src --enable=all --force diff --git a/.github/workflows/doxygen.yml b/.github/workflows/doxygen.yml index ae6456679..5ebdd8608 100644 --- a/.github/workflows/doxygen.yml +++ b/.github/workflows/doxygen.yml @@ -13,7 +13,7 @@ jobs: run: | sudo apt-get update sudo apt-get install -y doxygen - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Generate docs run: doxygen Doxyfile diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index ce1032973..6dfb1a823 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -158,7 +158,7 @@ jobs: - name: Checkout repository if: ${{ env.run-build == 'true' }} - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Build examples if: ${{ env.run-build == 'true' }} @@ -186,7 +186,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Install dependencies run: | @@ -214,7 +214,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v2 + uses: actions/checkout@v4 with: submodules: recursive @@ -235,7 +235,7 @@ jobs: runs-on: [self-hosted, ARM64] steps: - name: Checkout repository - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Install dependencies run: | @@ -270,7 +270,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Install dependencies run: |