55 lines
1.4 KiB
YAML
55 lines
1.4 KiB
YAML
name: Nightly CodeQL analysis
|
|
|
|
on:
|
|
workflow_dispatch:
|
|
schedule:
|
|
- cron: '30 1 * * *'
|
|
|
|
jobs:
|
|
analyze:
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
- uses: actions/checkout@v3
|
|
|
|
- name: Setup Java 17
|
|
uses: actions/setup-java@v2
|
|
with:
|
|
distribution: temurin
|
|
java-version: 17
|
|
|
|
- name: Initialize CodeQL
|
|
uses: github/codeql-action/init@v1
|
|
with:
|
|
languages: java
|
|
|
|
- uses: gradle/gradle-build-action@v2
|
|
env:
|
|
# see https://github.com/github/codeql-action/issues/972
|
|
JAVA_TOOL_OPTIONS: "--add-opens=jdk.compiler/com.sun.tools.javac.api=ALL-UNNAMED"
|
|
with:
|
|
# skipping build cache is needed so that all modules will be analyzed
|
|
arguments: assemble --no-build-cache
|
|
|
|
- name: Perform CodeQL Analysis
|
|
uses: github/codeql-action/analyze@v1
|
|
|
|
issue:
|
|
name: Open issue on failure
|
|
needs: analyze
|
|
runs-on: ubuntu-latest
|
|
if: always()
|
|
steps:
|
|
# run this action to get workflow conclusion
|
|
# You can get conclusion by env (env.WORKFLOW_CONCLUSION)
|
|
- uses: technote-space/workflow-conclusion-action@v2.2
|
|
|
|
- uses: actions/checkout@v3
|
|
|
|
- uses: JasonEtco/create-an-issue@v2.6
|
|
if: env.WORKFLOW_CONCLUSION == 'failure' # notify only if failure
|
|
env:
|
|
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
with:
|
|
filename: .github/templates/workflow-failed.md
|