Skip to content

[Java] Run Mockito as Agent, i.e. fix the following warning. #252

[Java] Run Mockito as Agent, i.e. fix the following warning.

[Java] Run Mockito as Agent, i.e. fix the following warning. #252

Workflow file for this run

name: "CodeQL"
on:
workflow_call:
workflow_dispatch:
push:
branches:
- master
- release/**
pull_request:
types: [opened, synchronize]
branches:
- master
- release/**
concurrency:
group: codeql-${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
jobs:
analyze:
name: Analyze
runs-on: ubuntu-24.04
permissions:
actions: read
contents: read
security-events: write
strategy:
fail-fast: false
matrix:
language: [ java ]
steps:
- name: Checkout
uses: actions/checkout@v4
with:
ref: ${{ github.sha }}
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
queries: +security-and-quality
config-file: ./.github/codeql/codeql-config.yml
packs: "codeql/${{ matrix.language }}-queries:AlertSuppression.ql"
- name: Autobuild
uses: github/codeql-action/autobuild@v3
if: ${{ matrix.language == 'java' }}
- name: Perform CodeQL Analysis
id: analyze
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{ matrix.language }}"
upload: false
output: sarif-results
- name: Upload SARIF
id: upload
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: sarif-results/${{ matrix.language }}.sarif
wait-for-processing: true
# optional: for debugging the uploaded sarif
- name: Upload loc as a Build Artifact
uses: actions/upload-artifact@v4
with:
name: sarif-results-${{ matrix.language }}
path: sarif-results
retention-days: 1
- name: Dismiss alerts
if: github.ref == 'refs/heads/master'
uses: advanced-security/dismiss-alerts@v1
with:
sarif-id: ${{ steps.upload.outputs.sarif-id }}
sarif-file: sarif-results/${{ matrix.language }}.sarif
env:
GITHUB_TOKEN: ${{ github.token }}