From 314d1e18462716f96570b8952abce02b81825f50 Mon Sep 17 00:00:00 2001 From: sebthom Date: Sat, 19 Feb 2022 21:58:58 +0100 Subject: [PATCH] update codeql config --- .github/workflows/build.yml | 1 + .github/workflows/codeql-analysis.yml | 23 +++++++++++++++-------- 2 files changed, 16 insertions(+), 8 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 903b6d0..3a1bc48 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -13,6 +13,7 @@ on: paths-ignore: - '**/*.md' - '.github/*.yml' + - '.github/workflows/codeql-analysis.yml' pull_request: workflow_dispatch: # https://github.blog/changelog/2020-07-06-github-actions-manual-triggers-with-workflow_dispatch/ diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 0461b4f..a16ae71 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -9,6 +9,7 @@ on: - '**' paths-ignore: - '**/*.md' + - '.github/workflows/build.yml' pull_request: paths-ignore: - '**/*.md' @@ -21,6 +22,9 @@ defaults: run: shell: bash +env: + PYTHON_VERSION: "3.10" + jobs: analyze: name: Analyze @@ -34,19 +38,22 @@ jobs: - uses: actions/setup-python@v2 with: - python-version: "3.10" + python-version: "${{ env.PYTHON_VERSION }}" - name: Install python dependencies run: | - set -eux + set -eux - python --version + python --version - pip install .[dev] - - # Set the `CODEQL-PYTHON` environment variable to the Python executable - # that includes the dependencies - echo "CODEQL_PYTHON=$(which python)" >> $GITHUB_ENV + pip install pdm + + # don't install dependencies for now, as this makes CodeQL run forever + # pdm install -v + + # Set the `CODEQL-PYTHON` environment variable to the Python executable + # that includes the dependencies + echo "CODEQL_PYTHON=$(which python)" >> $GITHUB_ENV - name: Initialize CodeQL uses: github/codeql-action/init@v1