-
Notifications
You must be signed in to change notification settings - Fork 117
53 lines (45 loc) · 1.79 KB
/
coverity.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
#
# Copyright (C) 2023 Intel Corporation
#
# Part of the Unified-Runtime Project, under the Apache License v2.0 with LLVM Exceptions.
# See LICENSE.TXT
# SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
#
name: coverity-unified-runtime
# It runs static analysis build - Coverity. It requires special token (set in CI's secret).
on:
push:
branches: ["main"]
workflow_dispatch:
env:
WORKDIR: ${{ github.workspace }}
COVERITY_SCAN_NOTIFICATION_EMAIL: ${{ secrets.COVERITY_SCAN_NOTIFICATION_EMAIL }}
COVERITY_SCAN_TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}
COVERITY_SCAN_PROJECT_NAME: ${{ github.repository }}
COVERITY_SCAN_BUILD_COMMAND: "cmake --build ${{github.workspace}}/build"
COVERITY_SCAN_BRANCH_PATTERN: "main"
TRAVIS_BRANCH: ${{ github.ref_name }}
jobs:
linux:
name: Coverity
runs-on: ubuntu-latest
steps:
- name: Clone the git repo
uses: actions/checkout@v3
- name: Install apt packages
run: |
sudo apt-get update
sudo apt-get install -y doxygen
- name: Install pip packages
run: pip install -r third_party/requirements.txt
- name: Configure CMake
run: cmake -B $WORKDIR/build -DUR_ENABLE_TRACING=ON -DUR_DEVELOPER_MODE=ON -DUR_BUILD_TESTS=ON -DUR_FORMAT_CPP_STYLE=ON
- name: Generate source from spec, check for uncommitted diff
run: |
cmake --build $WORKDIR/build --target check-generated
- name: Run Coverity
run: |
cd $WORKDIR/build
wget https://scan.coverity.com/scripts/travisci_build_coverity_scan.sh
patch < "../.github/scripts/0001-travis-fix-travisci_build_coverity_scan.sh.patch"
bash ./travisci_build_coverity_scan.sh