From 54ed8884d3281a3b20cfe636330636e8d45747b0 Mon Sep 17 00:00:00 2001 From: Evgeny Vereshchagin Date: Sun, 16 Jan 2022 15:30:22 +0000 Subject: [PATCH 1/2] ci: get Coverity and CodeQL to analyze the "libxkbcommon" part By analogy with https://github.com/systemd/systemd/pull/22138, to get the static analyzers to analyze that part of code that package should be installed there as well. --- .github/workflows/unit_tests.sh | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/unit_tests.sh b/.github/workflows/unit_tests.sh index 5d9e9da562..37594cb95e 100755 --- a/.github/workflows/unit_tests.sh +++ b/.github/workflows/unit_tests.sh @@ -17,6 +17,7 @@ ADDITIONAL_DEPS=( libqrencode-dev libssl-dev libtss2-dev + libxkbcommon-dev libzstd-dev perl python3-libevdev From 992d7f341fa86306548d92c6e6dffae186241b5c Mon Sep 17 00:00:00 2001 From: Evgeny Vereshchagin Date: Mon, 17 Jan 2022 01:59:55 +0000 Subject: [PATCH 2/2] ci: trigger CodeQL on PRs when its dependencies change --- .github/workflows/codeql-analysis.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index cceb514510..5a2b6f4cfd 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -11,6 +11,8 @@ on: - .github/codeql-config.yml - .github/codeql-custom.qls - .github/workflows/codeql-analysis.yml + - .github/workflows/requirements.txt + - .github/workflows/unit_tests.sh # It takes the workflow approximately 30 minutes to analyze the code base # so it doesn't seem to make much sense to trigger it on every PR or commit. # It runs daily at 01:00 to avoid colliding with the Coverity workflow.