on:
schedule:
- cron: "0 0 * * *"
+ workflow_dispatch:
jobs:
scan:
- runs-on: ubuntu-20.04
- if: ${{ github.repository_owner == 'gost-engine' }}
+ runs-on: ubuntu-latest
+ if: ${{ github.repository_owner == 'gost-engine' || github.event_name == 'workflow_dispatch' }}
env:
- COVERITY_SCAN_PROJECT_NAME: 'gost-engine'
- COVERITY_SCAN_BRANCH_PATTERN: '*'
- COVERITY_SCAN_NOTIFICATION_EMAIL: 'chipitsine@gmail.com'
- COVERITY_SCAN_BUILD_COMMAND_PREPEND: ".github/before_script.sh"
- COVERITY_SCAN_BUILD_COMMAND: ".github/script.sh"
OPENSSL_BRANCH: openssl-3.0
USE_RPATH: yes
- uses: actions/checkout@v2
with:
submodules: true
- - name: Run Coverity Scan
- env:
- COVERITY_SCAN_TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}
+
+ - name: Download Coverity build tool
+ run: |
+ wget -c -N https://scan.coverity.com/download/linux64 --post-data "token=${{ secrets.COVERITY_SCAN_TOKEN }}&project=gost-engine" -O coverity_tool.tar.gz
+ mkdir coverity_tool
+ tar xzf coverity_tool.tar.gz --strip 1 -C coverity_tool
+ - name: Build with Coverity build tool
+ run: |
+ export PATH=`pwd`/coverity_tool/bin:$PATH
+ .github/before_script.sh
+ cov-build --dir cov-int .github/script.sh
+ - name: Submit build result to Coverity Scan
run: |
- curl -fsSL "https://scan.coverity.com/scripts/travisci_build_coverity_scan.sh" | bash || true
+ tar czvf cov.tar.gz cov-int
+ curl --form token=${{ secrets.COVERITY_SCAN_TOKEN }} \
+ --form email=chipitsine@gmail.com \
+ --form file=@cov.tar.gz \
+ --form version="Commit $GITHUB_SHA" \
+ --form description="Build submitted via CI" \
+ https://scan.coverity.com/builds?project=gost-engine
\ No newline at end of file
projects / openssl-gost / engine.git / commitdiff