[cxf] branch master updated: Add security-and-quality codeQL query

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

[cxf] branch master updated: Add security-and-quality codeQL query

coheigea
Administrator
This is an automated email from the ASF dual-hosted git repository.

coheigea pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/cxf.git


The following commit(s) were added to refs/heads/master by this push:
     new 70cca20  Add security-and-quality codeQL query
70cca20 is described below

commit 70cca209c7dfbb70e20d26d2b491687e089f8f97
Author: Colm O hEigeartaigh <[hidden email]>
AuthorDate: Thu Oct 15 07:17:28 2020 +0100

    Add security-and-quality codeQL query
---
 .github/codeql/codeql-cxf-config.yml  | 7 ++-----
 .github/workflows/codeql-analysis.yml | 7 ++++---
 2 files changed, 6 insertions(+), 8 deletions(-)

diff --git a/.github/codeql/codeql-cxf-config.yml b/.github/codeql/codeql-cxf-config.yml
index 4b21841..7d4aabd 100644
--- a/.github/codeql/codeql-cxf-config.yml
+++ b/.github/codeql/codeql-cxf-config.yml
@@ -1,8 +1,5 @@
 
 name: "CXF CodeQL config"
 
-paths:
-  - src
-paths-ignore:
-  # Exclude tests
-  - '**/src/test/java/**'
+queries:
+  - uses: security-and-quality
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 1ecdbba..a4e10d1 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -61,8 +61,8 @@ jobs:
 
     # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
     # If this step fails, then you should remove it and run the build manually (see below)
-    - name: Autobuild
-      uses: github/codeql-action/autobuild@v1
+    #- name: Autobuild
+    #  uses: github/codeql-action/autobuild@v1
 
     # ℹī¸ Command-line programs to run using the OS shell.
     # 📚 https://git.io/JvXDl
@@ -71,7 +71,8 @@ jobs:
     #    and modify them (or add more) to build your code if your project
     #    uses a compiled language
 
-    #- run: |
+    - run: |
+        mvn clean install -Pnochecks -DskipTests
     #   make bootstrap
     #   make release