maint: locking in ubuntu version on linux gha images #1330
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: qa | |
on: | |
pull_request: | |
branches: | |
- main | |
jobs: | |
cpp-linter: | |
name: c++ linter | |
defaults: | |
run: | |
shell: bash -el {0} | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Set up miniconda | |
uses: conda-incubator/setup-miniconda@v3 | |
with: | |
python-version: 3.9 | |
auto-update-conda: false | |
channels: andrsd,defaults | |
- uses: actions/checkout@v4 | |
- name: Install dependencies | |
run: | | |
conda install \ | |
cmake \ | |
make \ | |
mpich-mpicxx \ | |
mpicpp-lite==1.3 \ | |
fmt==9.1.0 \ | |
petsc==3.20.6 \ | |
yaml-cpp==0.8.0 \ | |
exodusIIcpp==2.0 | |
- name: Configure | |
run: | | |
cmake -S ${{ github.workspace }} -B ${{ github.workspace }}/build \ | |
-DGODZILLA_BUILD_EXAMPLES=YES \ | |
-DGODZILLA_BUILD_TESTS=YES \ | |
-DCMAKE_EXPORT_COMPILE_COMMANDS=on | |
- uses: cpp-linter/cpp-linter-action@v2 | |
with: | |
style: file | |
tidy-checks: "" | |
version: 14 | |
lines-changed-only: true | |
ignore: "contrib" | |
step-summary: true | |
database: build | |
analyze: | |
name: CodeQL | |
runs-on: ubuntu-22.04 | |
permissions: | |
actions: read | |
contents: read | |
security-events: write | |
defaults: | |
run: | |
shell: bash -el {0} | |
strategy: | |
fail-fast: false | |
matrix: | |
language: ["cpp"] | |
steps: | |
- name: Set up miniconda | |
uses: conda-incubator/setup-miniconda@v3 | |
with: | |
python-version: ${{ matrix.python-version }} | |
auto-update-conda: false | |
channels: andrsd,defaults | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
- name: Install dependencies | |
run: | | |
conda install \ | |
cmake \ | |
make \ | |
mpich-mpicxx \ | |
mpicpp-lite==1.3 \ | |
fmt==9.1.0 \ | |
petsc==3.20.6 \ | |
yaml-cpp==0.8.0 \ | |
exodusIIcpp==2.0 | |
- name: Configure | |
run: | | |
cmake -S ${{ github.workspace }} -B ${{ github.workspace }}/build \ | |
-DGODZILLA_BUILD_EXAMPLES=YES \ | |
-DGODZILLA_BUILD_TESTS=YES | |
- name: Initialize CodeQL | |
uses: github/codeql-action/init@v3 | |
with: | |
languages: ${{ matrix.language }} | |
- name: Build | |
run: make -C ${{ github.workspace }}/build | |
- name: Perform CodeQL Analysis | |
uses: github/codeql-action/analyze@v3 | |
codacy-security-scan: | |
permissions: | |
contents: read | |
security-events: write | |
actions: read | |
name: Codacy Security Scan | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Checkout code | |
uses: actions/checkout@v4 | |
- name: Run Codacy Analysis CLI | |
uses: codacy/codacy-analysis-cli-action@master | |
with: | |
project-token: ${{ secrets.CODACY_PROJECT_TOKEN }} | |
verbose: true | |
output: results.sarif | |
format: sarif | |
gh-code-scanning-compat: true | |
max-allowed-issues: 2147483647 | |
- name: Upload SARIF results file | |
uses: github/codeql-action/upload-sarif@v3 | |
with: | |
sarif_file: results.sarif | |
check-spdx-tags: | |
name: check spdx tags | |
defaults: | |
run: | |
shell: bash -el {0} | |
runs-on: ubuntu-22.04 | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: kt3k/[email protected] |