From 9acb982333f35f001538c51be1a63849357eb59a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?C=C3=B4me=20Chilliet?= Date: Tue, 3 Jan 2023 14:27:21 +0100 Subject: [PATCH] Prettify static-code-analysis.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Côme Chilliet --- .github/workflows/static-code-analysis.yml | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/.github/workflows/static-code-analysis.yml b/.github/workflows/static-code-analysis.yml index e09cf082589..dbe3dce3e15 100644 --- a/.github/workflows/static-code-analysis.yml +++ b/.github/workflows/static-code-analysis.yml @@ -27,8 +27,10 @@ jobs: - name: Psalm run: composer run psalm -- --monochrome --no-progress --output-format=github --update-baseline --report=results.sarif + - name: Show potential changes in Psalm baseline run: git diff -- . ':!lib/composer' + - name: Upload Analysis results to GitHub if: always() uses: github/codeql-action/upload-sarif@v2 @@ -37,21 +39,26 @@ jobs: static-code-analysis-security: runs-on: ubuntu-latest + steps: - name: Checkout code uses: actions/checkout@v3 with: - submodules: recursive + submodules: true + - name: Set up php uses: shivammathur/setup-php@master with: php-version: '8.0' extensions: ctype,curl,dom,fileinfo,gd,intl,json,mbstring,openssl,pdo_sqlite,posix,sqlite,xml,zip coverage: none + - name: Composer install run: composer i + - name: Psalm taint analysis run: composer run psalm -- --monochrome --no-progress --output-format=github --report=results.sarif --taint-analysis + - name: Upload Security Analysis results to GitHub if: always() uses: github/codeql-action/upload-sarif@v2 @@ -81,5 +88,6 @@ jobs: - name: Psalm run: composer run psalm -- -c psalm-ocp.xml --monochrome --no-progress --output-format=github --update-baseline + - name: Show potential changes in Psalm baseline run: git diff -- . ':!lib/composer'