Run analyzer on Juliet tests on CI

UnitTestBot · Sep 18, 2023 · fae288b · fae288b
1 parent 1ec2e62
commit fae288b
Showing 1 changed file with 70 additions and 0 deletions.
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -43,6 +43,8 @@ jobs:
       - name: Publish to local Maven repository
         run: ./gradlew :core:publishToMavenLocal :gradle:publish
 
+      # NpeExamples
+
       - name: Run analysis on sample project
         working-directory: examples/byteflow-plugin-usage
         run: ./gradlew runAnalyzer
@@ -57,3 +59,71 @@ jobs:
         uses: github/codeql-action/upload-sarif@v2
         with:
           sarif_file: examples/byteflow-plugin-usage/report.sarif
+
+      # Juliet (CWE476 - NPE)
+
+      - name: Run analysis on sample project (Juliet CWE476)
+        working-directory: examples/byteflow-juliet
+        run: ./gradlew analyzeJulietCwe476
+
+      - name: Upload SARIF report as artifact (Juliet CWE476)
+        uses: actions/upload-artifact@v3
+        with:
+          name: sarif-report-juliet-cwe476
+          path: examples/byteflow-juliet/report-cwe476.sarif
+
+      - name: Upload SARIF report (Juliet CWE476)
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: examples/byteflow-juliet/report-cwe476.sarif
+
+      # Juliet (CWE690 - NPE)
+
+      - name: Run analysis on sample project (Juliet CWE690)
+        working-directory: examples/byteflow-juliet
+        run: ./gradlew analyzeJulietCwe690
+
+      - name: Upload SARIF report as artifact (Juliet CWE690)
+        uses: actions/upload-artifact@v3
+        with:
+          name: sarif-report-juliet-cwe690
+          path: examples/byteflow-juliet/report-cwe690.sarif
+
+      - name: Upload SARIF report (Juliet CWE690)
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: examples/byteflow-juliet/report-cwe690.sarif
+
+      # Juliet (CWE563 - Unused)
+
+      - name: Run analysis on sample project (Juliet CWE563)
+        working-directory: examples/byteflow-juliet
+        run: ./gradlew analyzeJulietCwe563
+
+      - name: Upload SARIF report as artifact (Juliet CWE563)
+        uses: actions/upload-artifact@v3
+        with:
+          name: sarif-report-juliet-cwe563
+          path: examples/byteflow-juliet/report-cwe563.sarif
+
+      - name: Upload SARIF report (Juliet CWE563)
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: examples/byteflow-juliet/report-cwe563.sarif
+
+      # Juliet (CWE89 - SQL)
+
+      - name: Run analysis on sample project (Juliet CWE89)
+        working-directory: examples/byteflow-juliet
+        run: ./gradlew analyzeJulietCwe89
+
+      - name: Upload SARIF report as artifact (Juliet CWE89)
+        uses: actions/upload-artifact@v3
+        with:
+          name: sarif-report-juliet-cwe89
+          path: examples/byteflow-juliet/report-cwe89.sarif
+
+      - name: Upload SARIF report (Juliet CWE89)
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: examples/byteflow-juliet/report-cwe89.sarif