build: Add a CI support for Coverity Scan #19
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Coverity Scan | |
| on: | |
| push: | |
| branches: [ ci-coverity ] | |
| workflow_dispatch: | |
| jobs: | |
| build: | |
| runs-on: ubuntu-22.04 | |
| container: debian:sid | |
| env: | |
| COVERITY_SCAN_TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }} | |
| COVERITY_SCAN_PROG_URL: https://scan.coverity.com/download/linux64 | |
| COVERITY_SCAN_PROJECT_NAME: guillemj/dpkg | |
| COVERITY_SCAN_NOTIFICATION_EMAIL: [email protected] | |
| steps: | |
| # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it | |
| - uses: actions/checkout@v3 | |
| - name: Get build dependencies | |
| run: | | |
| apt update | |
| apt install -qq -y --no-install-recommends git ca-certificates curl | |
| apt build-dep -qq -y . | |
| - name: Get coverity scan | |
| run: | | |
| curl -o cov-analysis.tgz \ | |
| $COVERITY_SCAN_PROG_URL \ | |
| --form project=$COVERITY_SCAN_PROJECT_NAME \ | |
| --form token=$COVERITY_SCAN_TOKEN | |
| tar xfz cov-analysis.tgz | |
| - name: Configure | |
| run: | | |
| echo "1.22.x" >.dist-version | |
| ./autogen && ./configure | |
| - name: Analyze | |
| run: cov-analysis-*/bin/cov-build --dir cov-int make -j4 | |
| - name: Submit result | |
| run: | | |
| tar cfz cov-int.tar.gz cov-int | |
| curl \ | |
| https://scan.coverity.com/builds?project=$COVERITY_SCAN_PROJECT_NAME \ | |
| --form token=$COVERITY_SCAN_TOKEN \ | |
| --form email=$COVERITY_SCAN_NOTIFICATION_EMAIL \ | |
| --form [email protected] \ | |
| --form version="`git describe --tags`" \ | |
| --form description="`git describe --tags` / $CI_COMMIT_TITLE / $CI_COMMIT_REF_NAME:$CI_PIPELINE_ID" |