Closed CyberFlameGO closed 2 years ago
Thanks @Elierrr; in hindsight I should’ve probably checked the workflow, though how can I reuse the autobuild from the other workflow run, in the “Analyze” job, without shifting the “Analyze” job (and therefore all of its extra permissions) into the main job?
You should be able to just move the workflows (except for autobuild) and permissions to the main workflow. The init workflow should be at the start, while the analyze being after it compiles
That doesn’t quite make sense; wouldn’t the autobuild need to be part of the same job? Also, I feel like it’s foolish to have permissions unnecessarily being given to the other job when only the CodeQL job needs it
I see you're using a matrix.. but for what? A matrix for a single item is absolutely useless.
I see you're using a matrix.. but for what? A matrix for a single item is absolutely useless.
It’s what’s generated with the template setup file, I see no reason to replace it
LGTM, you should probably also fix the check failures as well.
Check failures aren’t related to the build but more the security, as outlined in the code scanning results. I’d fix those, but they’re out of scope for this PR, and may need dismissal/suppression due to compatibility.
Not sure why this wasn't merged yet, merging it now. Thank you!
adds CodeQL codescanning