testfx/azure-pipelines-codeql.yml

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

74 строки
1.7 KiB
YAML
Исходник Обычный вид История

2024-09-09 22:46:37 +03:00
parameters:
# Optionally do not publish to TSA. Useful for e.g. verifying fixes before PR.
- name: TSAEnabled
displayName: Publish results to TSA
type: boolean
default: true
variables:
- template: /eng/common/templates/variables/pool-providers.yml
# CG is handled in the primary CI pipeline
- name: skipComponentGovernanceDetection
value: true
# Force CodeQL enabled so it may be run on any branch
- name: Codeql.Enabled
value: true
# Do not let CodeQL 3000 Extension gate scan frequency
- name: Codeql.Cadence
value: 0
# CodeQL needs this plumbed along as a variable to enable TSA
- name: Codeql.TSAEnabled
value: ${{ parameters.TSAEnabled }}
2024-09-10 10:14:22 +03:00
# Default expects tsaoptions.json under SourceRoot.
- name: Codeql.TSAOptionsPath
value: '$(Build.SourcesDirectory)/.config/tsaoptions.json'
2024-09-09 22:46:37 +03:00
# Build variables
- name: _BuildConfig
value: Release
trigger: none
schedules:
- cron: 0 12 * * 1
displayName: Weekly Monday CodeQL run
branches:
include:
- main
- rel/3.6
always: true
jobs:
- job: codeql
displayName: CodeQL
pool:
name: $(DncEngInternalBuildPool)
demands: ImageOverride -equals 1es-windows-2022
timeoutInMinutes: 90
steps:
- task: UseDotNet@2
inputs:
useGlobalJson: true
2024-09-10 12:24:20 +03:00
- task: PowerShell@2
displayName: 'Install Windows SDK'
inputs:
targetType: filePath
filePath: './eng/install-windows-sdk.ps1'
failOnStderr: true
showWarnings: true
2024-09-09 22:46:37 +03:00
- task: CodeQL3000Init@0
displayName: CodeQL Initialize
- script: eng\common\cibuild.cmd
-configuration $(_BuildConfig)
-prepareMachine
/p:Test=false
displayName: Windows Build
- task: CodeQL3000Finalize@0
displayName: CodeQL Finalize