Disable CodeQL analysis on Linux #36
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Linux-CI | ||
| run-name: "${{ github.ref_name }} - ${{ github.run_number }}" | ||
| on: | ||
| workflow_dispatch: | ||
| push: | ||
| branches: | ||
| - master | ||
| - release/** | ||
| - github-mirror | ||
| paths: | ||
| - "**" | ||
| - "*" | ||
| - ".globalconfig" | ||
| - "!.github/ISSUE_TEMPLATE/**" | ||
| - "!.dependabot/config.yml" | ||
| - "!.pipelines/**" | ||
| - "!test/perf/**" | ||
| pull_request: | ||
| branches: | ||
| - master | ||
| - release/** | ||
| - github-mirror | ||
| - "*-feature" | ||
| # Path filters for PRs need to go into the changes job | ||
| concurrency: | ||
| group: ${{ github.workflow }}-${{ github.event_name }}-${{ github.ref }} | ||
| cancel-in-progress: ${{ contains(github.ref, 'merge')}} | ||
| env: | ||
| DOTNET_CLI_TELEMETRY_OPTOUT: 1 | ||
| DOTNET_NOLOGO: 1 | ||
| FORCE_FEATURE: 'False' | ||
| FORCE_PACKAGE: 'False' | ||
| NUGET_KEY: none | ||
| POWERSHELL_TELEMETRY_OPTOUT: 1 | ||
| __SuppressAnsiEscapeSequences: 1 | ||
| nugetMultiFeedWarnLevel: none | ||
| system_debug: 'false' | ||
| jobs: | ||
| changes: | ||
| if: startsWith(github.repository_owner, 'azure') || github.repository_owner == 'PowerShell' | ||
| name: Change Detection | ||
| runs-on: ubuntu-latest | ||
| # Required permissions | ||
| permissions: | ||
| pull-requests: read | ||
| contents: read | ||
| # Set job outputs to values from filter step | ||
| outputs: | ||
| source: ${{ steps.filter.outputs.source }} | ||
| packagingChanged: ${{ steps.filter.outputs.packagingChanged }} | ||
| steps: | ||
| - name: checkout | ||
| uses: actions/checkout@v5 | ||
| with: | ||
| persist-credentials: false | ||
| - name: Change Detection | ||
| id: filter | ||
| uses: "./.github/actions/infrastructure/path-filters" | ||
| with: | ||
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | ||
| ci_build: | ||
| name: Build PowerShell | ||
| runs-on: ubuntu-latest | ||
| needs: changes | ||
| if: ${{ needs.changes.outputs.source == 'true' }} | ||
| steps: | ||
| - name: checkout | ||
| uses: actions/checkout@v5 | ||
| with: | ||
| fetch-depth: 1000 | ||
| - name: Build | ||
| uses: "./.github/actions/build/ci" | ||
| linux_test_unelevated_ci: | ||
| name: Linux Unelevated CI | ||
| needs: | ||
| - ci_build | ||
| - changes | ||
| if: ${{ needs.changes.outputs.source == 'true' }} | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| - name: checkout | ||
| uses: actions/checkout@v5 | ||
| with: | ||
| fetch-depth: 1000 | ||
| - name: Linux Unelevated CI | ||
| uses: "./.github/actions/test/nix" | ||
| with: | ||
| purpose: UnelevatedPesterTests | ||
| tagSet: CI | ||
| linux_test_elevated_ci: | ||
| name: Linux Elevated CI | ||
| needs: | ||
| - ci_build | ||
| - changes | ||
| if: ${{ needs.changes.outputs.source == 'true' }} | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| - name: checkout | ||
| uses: actions/checkout@v5 | ||
| with: | ||
| fetch-depth: 1000 | ||
| - name: Linux Elevated CI | ||
| uses: "./.github/actions/test/nix" | ||
| with: | ||
| purpose: ElevatedPesterTests | ||
| tagSet: CI | ||
| linux_test_unelevated_others: | ||
| name: Linux Unelevated Others | ||
| needs: | ||
| - ci_build | ||
| - changes | ||
| if: ${{ needs.changes.outputs.source == 'true' }} | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| - name: checkout | ||
| uses: actions/checkout@v5 | ||
| with: | ||
| fetch-depth: 1000 | ||
| - name: Linux Unelevated Others | ||
| uses: "./.github/actions/test/nix" | ||
| with: | ||
| purpose: UnelevatedPesterTests | ||
| tagSet: Others | ||
| linux_test_elevated_others: | ||
| name: Linux Elevated Others | ||
| needs: | ||
| - ci_build | ||
| - changes | ||
| if: ${{ needs.changes.outputs.source == 'true' }} | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| - name: checkout | ||
| uses: actions/checkout@v5 | ||
| with: | ||
| fetch-depth: 1000 | ||
| - name: Linux Elevated Others | ||
| uses: "./.github/actions/test/nix" | ||
| with: | ||
| purpose: ElevatedPesterTests | ||
| tagSet: Others | ||
| xunit_tests: | ||
| name: xUnit Tests | ||
| needs: | ||
| - changes | ||
| if: ${{ needs.changes.outputs.source == 'true' }} | ||
| uses: ./.github/workflows/xunit-tests.yml | ||
| with: | ||
| runner_os: ubuntu-latest | ||
| test_results_artifact_name: testResults-xunit | ||
| ## Temporarily disable the CodeQL analysis on Linux as it doesn't work for .NET SDK 10-rc.2. | ||
| # analyze: | ||
| # name: CodeQL Analysis | ||
| # needs: changes | ||
| # if: ${{ needs.changes.outputs.source == 'true' }} | ||
| # uses: ./.github/workflows/analyze-reusable.yml | ||
| # permissions: | ||
| # actions: read | ||
| # contents: read | ||
| # security-events: write | ||
| # with: | ||
| # runner_os: ubuntu-latest | ||
| ready_to_merge: | ||
| name: Linux ready to merge | ||
| needs: | ||
| - xunit_tests | ||
| - linux_test_elevated_ci | ||
| - linux_test_elevated_others | ||
| - linux_test_unelevated_ci | ||
| - linux_test_unelevated_others | ||
| - analyze | ||
| - linux_packaging | ||
| if: always() | ||
| uses: PowerShell/compliance/.github/workflows/[email protected] | ||
| with: | ||
| needs_context: ${{ toJson(needs) }} | ||
| linux_packaging: | ||
| name: Linux Packaging | ||
| needs: | ||
| - changes | ||
| if: ${{ needs.changes.outputs.packagingChanged == 'true' }} | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| - name: checkout | ||
| uses: actions/checkout@v5 | ||
| with: | ||
| fetch-depth: 0 | ||
| - name: Linux Packaging | ||
| uses: "./.github/actions/test/linux-packaging" | ||
