Extend CI to build project with sanitizers and set up code scanning #304
Labels
build
Task related to the compilation and execution of the project
ci
Task related to the Continuous Integration (configuration, service etc.)
code-quality
Task related to the code quality (refactor, enhancements etc.)
security
Flag a security issue in the project
Comments
AntoineRondelet
added
build
AntoineRondelet
added
the
ci
AntoineRondelet
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
As described in the title, it would be nice to support compilation with sanitizers to detect potential unsound memory accesses and race conditions on the CI server. Likewise, Github seems to support "code scanning" out of the box to detect potential vulnerabilities in the code.
Extending the CI to automate these type of checks as much as possible is a good way to maintain high security standards (along with high "code quality"/"stylistic"/"consistency" standards as currently ensured by the use of
clang-format/clang-format)The text was updated successfully, but these errors were encountered: