Skip to content

CodeQL

CodeQL #2190

Workflow file for this run

name: CodeQL
on:
push:
branches:
- main
pull_request:
branches:
- main
schedule:
- cron: '42 20 * * 4'
jobs:
analyze-cuda:
name: Analyze (CUDA)
strategy:
fail-fast: false
matrix:
language: [ 'cpp' ]
concurrency:
group: ${{ github.workflow }}-cuda-${{ github.ref }}
cancel-in-progress: true
runs-on: ubuntu-latest
container:
image: ghcr.io/microsoft/ark/ark:base-dev-cuda12.2
permissions:
actions: read
contents: read
security-events: write
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Check disk space
run: |
df -h
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
- name: Dubious ownership exception
run: |
git config --global --add safe.directory /__w/ark/ark
- name: Build
run: |
mkdir build && cd build
cmake -DCMAKE_BUILD_TYPE=Debug -DARK_BYPASS_GPU_CHECK=ON -DARK_USE_CUDA=ON -DARK_BUILD_TESTS=OFF ..
make build ark_py
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{matrix.language}}"
analyze-rocm:
name: Analyze (ROCM)
strategy:
fail-fast: false
matrix:
language: [ 'cpp' ]
concurrency:
group: ${{ github.workflow }}-rocm-${{ github.ref }}
cancel-in-progress: true
runs-on: ubuntu-latest
container:
image: ghcr.io/microsoft/ark/ark:build-rocm6.1
permissions:
actions: read
contents: read
security-events: write
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Check disk space
run: |
df -h
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
- name: Dubious ownership exception
run: |
git config --global --add safe.directory /__w/ark/ark
- name: Build
run: |
mkdir build && cd build
CXX=/opt/rocm/bin/hipcc cmake -DCMAKE_BUILD_TYPE=Debug -DARK_BYPASS_GPU_CHECK=ON -DARK_USE_ROCM=ON -DARK_BUILD_TESTS=OFF ..
make -j build ark_py
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{matrix.language}}"