PrismLauncher/.github/workflows/codeql.yml

name: "CodeQL Code Scanning"

concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true

on:
  merge_group:
    types: [checks_requested]
  pull_request:
    paths:
      # File types
      - "**.cpp"
      - "**.h"
      - "**.java"
      - "**.ui"

      # Directories
      - "buildconfig/**"
      - "cmake/**"
      - "launcher/**"
      - "libraries/**"
      - "program_info/**"
      - "tests/**"

      # Files
      - "CMakeLists.txt"
      - "COPYING.md"

      # Workflows
      - ".github/codeql/**"
      - ".github/workflows/codeql.yml"
      - ".github/actions/setup-dependencies/**"
  workflow_dispatch:

jobs:
  CodeQL:
    runs-on: ubuntu-latest

    steps:
      - name: Checkout repository
        uses: actions/checkout@v6
        with:
          submodules: "true"

      - name: Initialize CodeQL
        uses: github/codeql-action/init@v4
        with:
          config-file: ./.github/codeql/codeql-config.yml
          queries: security-and-quality
          languages: cpp, java

      - name: Setup dependencies
        uses: ./.github/actions/setup-dependencies
        with:
          build-type: Debug
          qt-version: 6.4.3

      - name: Configure and Build
        run: |
          cmake --preset linux
          cmake --build --preset linux --config Debug

      - name: Run tests
        run: |
          ctest --preset linux --build-config Debug

      - name: Perform CodeQL Analysis
        uses: github/codeql-action/analyze@v4