Enable Prefast for WebGPU native (#22588)
### Description Enable Prefast for WebGPU native ### Motivation and Context Increase static analysis coverage
This commit is contained in:
Changming Sun
GitHub
Родитель
374022e988
Коммит
d94066a8de
|
|
@ -30,7 +30,7 @@ jobs:
|
|||
|
||||
- uses: actions/setup-node@v4
|
||||
with:
|
||||
node-version: 18
|
||||
node-version: 20
|
||||
|
||||
- name: Download cuda
|
||||
run: azcopy.exe cp --recursive "https://lotusscus.blob.core.windows.net/models/cuda_sdk/v11.8" cuda_sdk
|
||||
|
|
@ -57,6 +57,45 @@ jobs:
|
|||
sarif_file: ${{ github.workspace }}\output\MergeResult.sarif
|
||||
category: VS_SCA
|
||||
|
||||
# With WebGPU, Without python
|
||||
Onnxruntime-SCA-win32-WebGPU-x64:
|
||||
permissions:
|
||||
security-events: write
|
||||
runs-on: ["self-hosted", "1ES.Pool=onnxruntime-github-vs2022-mms"]
|
||||
steps:
|
||||
- uses: actions/checkout@v4
|
||||
with:
|
||||
submodules: false
|
||||
- uses: actions/setup-python@v5
|
||||
with:
|
||||
python-version: '3.11.x'
|
||||
architecture: 'x64'
|
||||
|
||||
- uses: actions/setup-node@v4
|
||||
with:
|
||||
node-version: 20
|
||||
|
||||
- name: Delete build folder
|
||||
run: |
|
||||
if (Test-Path D:\b) { Remove-Item -Recurse -Force D:\b }
|
||||
|
||||
|
||||
- name: Build code
|
||||
env:
|
||||
CAExcludePath: 'C:\Program Files;D:\b;${{ github.workspace }}\cmake'
|
||||
run: python tools\ci_build\build.py --compile_no_warning_as_error --config Debug --build_dir D:\b --skip_submodule_sync --update --build --parallel --cmake_generator "Visual Studio 17 2022" --build_shared_lib --cmake_extra_defines onnxruntime_USE_CUSTOM_STATIC_ANALYSIS_RULES=ON --cmake_extra_defines onnxruntime_ENABLE_STATIC_ANALYSIS=ON --cmake_extra_defines onnxruntime_REDIRECT_STATIC_ANALYSIS_OUTPUTS_TO_FILE=ON --use_webgpu
|
||||
|
||||
- name: Generate sarif
|
||||
working-directory: D:\b
|
||||
run: npx @microsoft/sarif-multitool merge *.sarif --recurse --output-directory=${{ github.workspace }}\output --output-file=MergeResult.sarif --merge-runs && dir ${{ github.workspace }}\output
|
||||
|
||||
- name: Upload SARIF to GitHub
|
||||
uses: github/codeql-action/upload-sarif@v3
|
||||
continue-on-error: true
|
||||
with:
|
||||
sarif_file: ${{ github.workspace }}\output\MergeResult.sarif
|
||||
category: VS_SCA_WIN32_WEBGPU_X64
|
||||
|
||||
# No python
|
||||
Onnxruntime-SCA-win32-WINML-x64:
|
||||
permissions:
|
||||
|
|
@ -73,7 +112,7 @@ jobs:
|
|||
|
||||
- uses: actions/setup-node@v4
|
||||
with:
|
||||
node-version: 18
|
||||
node-version: 20
|
||||
|
||||
- name: Delete build folder
|
||||
run: |
|
||||
|
|
@ -113,7 +152,7 @@ jobs:
|
|||
|
||||
- uses: actions/setup-node@v4
|
||||
with:
|
||||
node-version: 18
|
||||
node-version: 20
|
||||
|
||||
- name: Delete build folder
|
||||
run: |
|
||||
|
|
|
|||
Загрузка…
Ссылка в новой задаче