.github/workflows/static-analysis.yml

   1 name: Static analysis
   2 on:
   3   - push
   4   - pull_request
   5 permissions:
   6   contents: read
   7
   8 jobs:
   9   test:
  10     runs-on: ubuntu-22.04
  11     steps:
  12       - name: Checkout code
  13         uses: actions/checkout@v2
  14
  15       - name: Install dependencies
  16         run: |
  17           sudo apt-get update -qq
  18           sudo apt-get install -qq coccinelle
  19
  20       - name: Confirm coccinelle output is clean
  21         run: |
  22           ./coccinelle/run-coccinelle.sh -i
  23           git diff --exit-code
  24
  25       - name: Confirm apparmor profile is up to date
  26         run: |
  27           cd config/apparmor/
  28           ./lxc-generate-aa-rules.py container-rules.base > container-rules
  29           git diff --exit-code