adds code scanning with CodeQL

dassencio · dassencio · commit 89cf4f7dde5d · 2020-12-28T18:28:05.000+01:00
diff --git a/.github/workflows/static-code-analysis.yml b/.github/workflows/static-code-analysis.yml
@@ -0,0 +1,34 @@
+name: Static code analysis
+
+on:
+  push:
+    branches: [master]
+  pull_request:
+    branches: [master]
+  workflow_dispatch:
+
+jobs:
+  codeql:
+    name: Scan code with CodeQL
+    runs-on: ubuntu-latest
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v2
+
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v1
+      with:
+        languages: cpp
+        queries: security-and-quality
+
+    - name: Build problem solvers
+      run: |
+        IFS=$'\n'
+        for makefile in $(find . -name Makefile)
+        do
+          make -C "$(dirname "$makefile")"
+        done
+
+    - name: Perform CodeQL analysis
+      uses: github/codeql-action/analyze@v1
diff --git a/README.md b/README.md
@@ -1,4 +1,5 @@
 ![Functional tests](https://github.com/dassencio/cracking-the-coding-interview/workflows/Functional%20tests/badge.svg)
+![Static code analysis](https://github.com/dassencio/cracking-the-coding-interview/workflows/Static%20code%20analysis/badge.svg)
 
 # Description
 

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,5 @@`
`1`	`1`	`![Functional tests](https://github.com/dassencio/cracking-the-coding-interview/workflows/Functional%20tests/badge.svg)`
	`2`	`+![Static code analysis](https://github.com/dassencio/cracking-the-coding-interview/workflows/Static%20code%20analysis/badge.svg)`
`2`	`3`
`3`	`4`	`# Description`
`4`	`5`