mirror of
https://github.com/github/codeql-action.git
synced 2026-04-27 17:39:15 +00:00
Henry Mercer
77 lines
2.5 KiB
TypeScript
77 lines
2.5 KiB
TypeScript
/**
|
|
* This file is the entry point for the `post:` hook of `analyze-action.yml`.
|
|
* It will run after the all steps in this job, in reverse order in relation to
|
|
* other `post:` hooks.
|
|
*/
|
|
import * as fs from "fs";
|
|
|
|
import * as core from "@actions/core";
|
|
|
|
import * as actionsUtil from "./actions-util";
|
|
import { getGitHubVersion } from "./api-client";
|
|
import { getCodeQL } from "./codeql";
|
|
import { getConfig } from "./config-utils";
|
|
import * as debugArtifacts from "./debug-artifacts";
|
|
import {
|
|
getCsharpTempDependencyDir,
|
|
getJavaTempDependencyDir,
|
|
} from "./dependency-caching";
|
|
import { EnvVar } from "./environment";
|
|
import { getActionsLogger } from "./logging";
|
|
import { checkGitHubVersionInRange, getErrorMessage } from "./util";
|
|
|
|
async function runWrapper() {
|
|
// To capture errors appropriately, keep as much code within the try-catch as
|
|
// possible, and only use safe functions outside.
|
|
|
|
try {
|
|
actionsUtil.restoreInputs();
|
|
const logger = getActionsLogger();
|
|
const gitHubVersion = await getGitHubVersion();
|
|
checkGitHubVersionInRange(gitHubVersion, logger);
|
|
|
|
// Upload SARIF artifacts if we determine that this is a first-party analysis run.
|
|
// For third-party runs, this artifact will be uploaded in the `upload-sarif-post` step.
|
|
if (process.env[EnvVar.INIT_ACTION_HAS_RUN] === "true") {
|
|
const config = await getConfig(
|
|
actionsUtil.getTemporaryDirectory(),
|
|
logger,
|
|
);
|
|
if (config !== undefined) {
|
|
const codeql = await getCodeQL(config.codeQLCmd);
|
|
const version = await codeql.getVersion();
|
|
await debugArtifacts.uploadCombinedSarifArtifacts(
|
|
logger,
|
|
config.gitHubVersion.type,
|
|
version.version,
|
|
);
|
|
}
|
|
}
|
|
|
|
// If we analysed Java or C# in build-mode: none, we may have downloaded dependencies
|
|
// to the temp directory. Clean these up so they don't persist unnecessarily
|
|
// long on self-hosted runners.
|
|
const tempDependencyDirs = [
|
|
getJavaTempDependencyDir(),
|
|
getCsharpTempDependencyDir(),
|
|
];
|
|
for (const tempDependencyDir of tempDependencyDirs) {
|
|
if (fs.existsSync(tempDependencyDir)) {
|
|
try {
|
|
fs.rmSync(tempDependencyDir, { recursive: true });
|
|
} catch (error) {
|
|
logger.info(
|
|
`Failed to remove temporary dependencies directory: ${getErrorMessage(error)}`,
|
|
);
|
|
}
|
|
}
|
|
}
|
|
} catch (error) {
|
|
core.setFailed(
|
|
`analyze post-action step failed: ${getErrorMessage(error)}`,
|
|
);
|
|
}
|
|
}
|
|
|
|
void runWrapper();
|